|
|
|
|
|
|
by wiresurfer
702 days ago
|
|
|
Hey Brendan, > If your company is paying for commercial software that includes kernel drivers or kernel modules, you can make eBPF a requirement. Windows soon, may still be atleast a year ahead. Would that be a fair statement? atleast being the operating keyword here. Specifically in the context of network security software, for eBPF programs to be portable across windows/linux, we would need MSFT to add a lot more hooks and expose internal kernel stucts. Hopefully via a common libbpf definition.
Otherwise, I fear, having two versions of the same product, across two OSs would mean more secuirty and quality issues. I guess the point I am trying to make is, we would get there, but we are more than a few years away.
I would love to see something like cilium on vanilla windows for a Software defined Company Wide network. We can then start building enterprise network secutiry into it. Baby steps! --- btw, your talks and blog posts about bpftools is godsent! |
|
|