Y
Hacker News
new
|
ask
|
show
|
jobs
by
jagrsw
982 days ago
malloc can use mmap (aside from s/brk) - it's impossible these days to sandbox any more complex program and not allow mmap (arguments can be limited though to only a subset of flags).
1 comments
londons_explore
982 days ago
But that would be the same for both this proposed mseal() and my proposed seccomp solution.
link