Matches in DBpedia 2016-04 for { <http://wikidata.dbpedia.org/resource/Q7442878> ?p ?o }
Showing triples 1 to 56 of
56
with 100 triples per page.
- Q7442878 subject Q13268096.
- Q7442878 subject Q7216528.
- Q7442878 abstract "seccomp (short for secure computing mode) is a computer security facility that provides an application sandboxing mechanism in the Linux kernel; it was merged into the Linux kernel mainline in kernel version 2.6.12, which was released on March 8, 2005. seccomp allows a process to make a one-way transition into a "secure" state where it cannot make any system calls except exit(), sigreturn(), read() and write() to already-open file descriptors. Should it attempt any other system calls, the kernel will terminate the process with SIGKILL. In this sense, it does not virtualize the system's resources but isolates the process from them entirely.seccomp mode is enabled via the prctl(2) system call using the PR_SET_SECCOMP argument, or (since Linux kernel 3.17) via the seccomp(2) system call. seccomp mode used to be enabled by writing to a file, /proc/self/seccomp, but this method was removed in favor of prctl(). In some kernel versions, seccomp disables the RDTSC x86 instruction.seccomp-bpf is an extension to seccomp that allows filtering of system calls using a configurable policy implemented using Berkeley Packet Filter rules. It is used by OpenSSH and vsftpd as well as the Google Chrome/Chromium web browsers on Chrome OS and Linux.Software products that use seccomp include the following: seccomp was first devised by Andrea Arcangeli in January 2005 for use in public grid computing and was originally intended as a means of safely running untrusted compute-bound programs. Arcangeli's CPUShare was the only known user of this feature. Writing in February 2009, Linus Torvalds expresses doubt whether seccomp is actually used by anyone. However, a Google engineer replied that Google is exploring using seccomp for sandboxing its Chrome web browser. As of Chrome version 20, seccomp-bpf is used to sandbox Adobe Flash Player. As of Chrome version 23, seccomp-bpf is used to sandbox the renderers. Vsftpd uses seccomp-bpf sandboxing as of version 3.0.0. OpenSSH has supported seccomp-bpf since version 6.0. Mbox uses ptrace along with seccomp-bpf to create a secure sandbox with less overhead than ptrace alone. LXD, which is a "hypervisor" for containers Firefox and FirefoxOS use seccomp-bpf to sandbox the child processes and certain plugins. Cjdns uses seccomp-bpf as one of its sandbox mechanisms, filtering the system calls it performs on a Linux system, and strictly limiting its access to the outside world. Tor supports seccomp since 0.2.5.1-alpha↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑ ↑".
- Q7442878 genre Q842193.
- Q7442878 license Q7603.
- Q7442878 operatingSystem Q388.
- Q7442878 programmingLanguage Q15777.
- Q7442878 status "mainlined".
- Q7442878 wikiPageExternalLink 347547.
- Q7442878 wikiPageExternalLink seccomp-nurse.
- Q7442878 wikiPageExternalLink overview.
- Q7442878 wikiPageExternalLink jt-ce-sid_linux.pdf.
- Q7442878 wikiPageExternalLink seccomp_filter.txt.
- Q7442878 wikiPageWikiLink Q1060813.
- Q7442878 wikiPageWikiLink Q13268096.
- Q7442878 wikiPageWikiLink Q1412443.
- Q7442878 wikiPageWikiLink Q14579.
- Q7442878 wikiPageWikiLink Q15777.
- Q7442878 wikiPageWikiLink Q182933.
- Q7442878 wikiPageWikiLink Q192726.
- Q7442878 wikiPageWikiLink Q202044.
- Q7442878 wikiPageWikiLink Q205663.
- Q7442878 wikiPageWikiLink Q2067684.
- Q7442878 wikiPageWikiLink Q249999.
- Q7442878 wikiPageWikiLink Q288762.
- Q7442878 wikiPageWikiLink Q3415128.
- Q7442878 wikiPageWikiLink Q34253.
- Q7442878 wikiPageWikiLink Q3510521.
- Q7442878 wikiPageWikiLink Q388.
- Q7442878 wikiPageWikiLink Q5124830.
- Q7442878 wikiPageWikiLink Q550303.
- Q7442878 wikiPageWikiLink Q698.
- Q7442878 wikiPageWikiLink Q7216528.
- Q7442878 wikiPageWikiLink Q722192.
- Q7442878 wikiPageWikiLink Q7603.
- Q7442878 wikiPageWikiLink Q777.
- Q7442878 wikiPageWikiLink Q79531.
- Q7442878 wikiPageWikiLink Q820849.
- Q7442878 wikiPageWikiLink Q842193.
- Q7442878 wikiPageWikiLink Q847062.
- Q7442878 genre Q842193.
- Q7442878 license Q7603.
- Q7442878 name "seccomp".
- Q7442878 operatingSystem Q388.
- Q7442878 programmingLanguage Q15777.
- Q7442878 status "mainlined".
- Q7442878 type CreativeWork.
- Q7442878 type Software.
- Q7442878 type Work.
- Q7442878 type Thing.
- Q7442878 type Q386724.
- Q7442878 type Q7397.
- Q7442878 comment "seccomp (short for secure computing mode) is a computer security facility that provides an application sandboxing mechanism in the Linux kernel; it was merged into the Linux kernel mainline in kernel version 2.6.12, which was released on March 8, 2005. seccomp allows a process to make a one-way transition into a "secure" state where it cannot make any system calls except exit(), sigreturn(), read() and write() to already-open file descriptors.".
- Q7442878 label "Seccomp".
- Q7442878 homepage overview.
- Q7442878 name "seccomp".