Netflix: BPF is a new type of software we use to run Linux apps securely in the kernel

Discussion in 'all things UNIX' started by mood, Dec 5, 2019.

  1. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    25,192
    Netflix: BPF is a new type of software we use to run Linux apps securely in the kernel
    ...BPF promises a fundamental change to a 50-year-old kernel model
    December 5, 2019

    https://www.zdnet.com/article/netfl...use-to-run-linux-apps-securely-in-the-kernel/
     
  2. fblais

    fblais Registered Member

    Joined:
    Jul 31, 2008
    Posts:
    1,211
    Location:
    Québec, Canada
    Is this really secureo_O
     
  3. reasonablePrivacy

    reasonablePrivacy Registered Member

    Joined:
    Oct 7, 2017
    Posts:
    1,049
    Location:
    Member state of European Union
    It is not intended to be used to run unknown, unverified, not-trusted programs from random sources.

    It is more secure to load BPF application than traditional Linux kernel module. Great for writing drivers and system services. Secure in this context means that accidental bugs in these BPF programs will likely be less endangering system reliability and security than similar bug in traditional Linux kernel module.
     
Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.