|
|
|
|
|
|
by ongy
701 days ago
|
|
|
You can use SEccomp for some of it as well.
But for SEccomp something in the hierarchy needs to do this actively While SELinux can be set up somewhat orthogonal to the running system.
OTOH systemd should make it easy to confirm every service process |
|
|