Seccomp Mode 2 Filters In Kernel 3.5

Just a note, the 3.5 Linux kernel now includes support for Seccomp Mode 2 Filters.

Seccomp is awesome. It reduces visible kernel attack surface and severely limits the ability for attackers to exploit the kernel, which would allow for privilege escalation.

So, rejoice, because that’s really cool.

