Seccomp Filters Coming to Linux

[Hungry Man]

http://outflux.net/teach-seccomp/

Quote:

The Linux kernel will (hopefully) soon support "seccomp filter" (or "mode 2 seccomp"). Ubuntu 12.04 LTS has it available now, and Chrome OS will be using it shortly. This document is designed as a quick-start guide for software authors that want to take advantage of this security feature. In the simplest terms, it allows a program to declare ahead of time which system calls it expects to use, so that if an attacker gains arbitrary code execution, they cannot poke at any unexpected system calls.

Very cool. Using this with AppArmor/SELinux/Chroot will provide an incredibly fine-grained sandbox. Hopefully we start getting profiles for common applications. It looks like applications are compiled with it as well.

[x942]

Quote:

Originally Posted by Hungry Man

http://outflux.net/teach-seccomp/



Very cool. Using this with AppArmor/SELinux/Chroot will provide an incredibly fine-grained sandbox. Hopefully we start getting profiles for common applications. It looks like applications are compiled with it as well.

Right when I started craving more security this happens Thanks for the post!

[Hungry Man]

http://scarybeastsecurity.blogspot.c...mp-filter.html

This program is now supporting it as well. The developer (smart guy, he's blogged a bit about security in the past) states that it would effectively prevent multiple kernel exploits (he lists a few examples) that have been used previously.

The seccomp filters really compliment LSM. Most sandboxes are bypassed either through a kernel exploit or design flaw and filters really drives up the cost of kernel exploitation.

In my opinion seccomp is the biggest security improvement since MAC policies through LSM.

[vasa1]

Quote:

Originally Posted by Hungry Man

... The developer (smart guy, he's blogged a bit about security in the past) ...

I think Chris Evans is quite senior in Google.