search

Jip-Hop / jailmaker

Persistent Linux 'jails' on TrueNAS SCALE to install software (docker-compose, portainer, podman, etc.) with full access to all files via bind mounts thanks to systemd-nspawn!
GNU Lesser General Public License v3.0
313 stars 31 forks source link

seccomp documentation #171

Closed izenn closed 2 weeks ago

izenn commented 2 weeks ago

added documentation on seccomp and how to find what syscalls need to be added to --system-call-filter when a command errors out with "Operation not Permitted"

Jip-Hop commented 2 weeks ago

Great! If you could start the seccomp header with a capital S and end the last paragraph with a . then I can merge this from my phone :)

izenn commented 2 weeks ago

done, i thought i caught all the formatting stuff. thanks!

Jip-Hop commented 2 weeks ago

Thanks!