Y
Hacker News
new
|
ask
|
show
|
jobs
by
hannesm
939 days ago
good news is that MirageOS can as well be executed in a seccomp context with only 5 or 7 system calls allowed -- see the spt target of solo5
https://github.com/solo5/solo5
-- also this great talk by mato
https://archive.fosdem.org/2019/schedule/event/solo5_unikern...