chrony

History

Miroslav Lichvar 54c8732c46 sys_linux: use privops helper when running with seccomp filter Enable the PRV_Name2IPAddress() function with seccomp support and start the helper process before loading the seccomp filter (but after dropping root privileges). This will move the getaddrinfo() call outside the seccomp filter and should make it more reliable as the list of required system calls won't depend on what glibc NSS modules are used on the system.	2016-01-14 14:45:48 +01:00
..
faq.adoc	sys_linux: use privops helper when running with seccomp filter	2016-01-14 14:45:48 +01:00

Miroslav Lichvar 54c8732c46 sys_linux: use privops helper when running with seccomp filter

Enable the PRV_Name2IPAddress() function with seccomp support and start
the helper process before loading the seccomp filter (but after dropping
root privileges). This will move the getaddrinfo() call outside the
seccomp filter and should make it more reliable as the list of required
system calls won't depend on what glibc NSS modules are used on the
system.

2016-01-14 14:45:48 +01:00

faq.adoc

sys_linux: use privops helper when running with seccomp filter

2016-01-14 14:45:48 +01:00