Tutorial: The Why and How of libseccomp - Tom Hromatka, Oracle & Paul Moore, Cisco
Tutorial: The Why and How of libseccomp - Tom Hromatka, Oracle & Paul Moore, Cisco The Linux Kernel's seccomp feature can restrict the syscalls available to agiven process, thus reducing the attack surface available to untrusted andpotentially malicious programs. It is a critical building block forcontainers and process isolation in general. However, writing a seccompfilter by hand is error prone and difficult to maintain.In this tutorial session, Paul Moore and Tom Hromatka (the libseccompmaintainers) will explain how libseccomp makes this process much easier andwill guide you through making your own seccomp filter using libseccomp.
▶︎
Subsystem Update: Linux Integrity Status Update - Mimi Zohar, IBM
▶︎
Seccomp: What Can It Do For You? - Justin Cormack, Docker
▶︎
Zig 2026: No-AI Policy, $670K Foundation, Left GitHub & Why Zig Isn’t 1.0 - Andrew Kelley Explains
▶︎
Keynote: After the AI Hype – What’s Real, and What’s Next - Richard Campbell - 2026
▶︎
Is the UK worse off because of Brexit? | BBC News
▶︎
Infoflow LSM - Roberto Sassu, Cyber Security and Privacy Lab (CSPL)
▶︎
How To Think SO CLEARLY People Assume You're A Genius
▶︎
Analogy as the Core of Cognition
▶︎
You Know This Song (but the Orchestra Doesn’t) | Jacob Collier & VSO School of Music Orchestra | TED
▶︎
Why are fewer people quitting their jobs? | The Global Story
▶︎
Turing Award Winner: Disagreeing with Google, Postgres, Future Problems | Mike Stonebraker
▶︎
Germany’s army chief on AI, drones and the future of the tank | The Economist
▶︎
Linux Command Line for Beginners
▶︎
Creator of C++: Bell Labs, Negative Overhead Abstraction, Mistakes | Bjarne Stroustrup
▶︎
AI Was Never About Helping You | Cory Doctorow
▶︎
Linux Full Course for Beginners | Learn Linux System Administration
▶︎
Why AI Hasn't Cured Anything...Yet, According to Jennifer Doudna | The Circuit
▶︎
Billionaire's WARNING: I'm SELLING. The Crash Is Already Here!
▶︎