I'm giving up on seccomp
Gary E. Miller
gem at rellim.com
Wed Sep 2 23:47:14 UTC 2020
Yo Eric!
On Wed, 2 Sep 2020 19:39:05 -0400
"Eric S. Raymond via devel" <devel at ntpsec.org> wrote:
> > > Even without that, are you sure there are no bugs in Go?
>
> No, I'm not. But neither do I think seccomp is actually *possible*
> in Go at this point, which tends to relieve us of having to support
> it.
Already done:
https://github.com/seccomp/libseccomp-golang
Never underestimate the tenacity of people sticking to their brand of
security theater.
> > Maybe we should think harder about splitting NTS-KE out from ntpd.
>
> I lean against that - it seems like that split would make deploytment
> and configuration more complicated. But I could be persuaded.
Many people have asked for it. They want to be able to deploy the KE
part on on host and have the NTP part on other hosts.
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
gem at rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can't measure it, you can't improve it." - Lord Kelvin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 851 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20200902/4aa81d76/attachment.bin>
More information about the devel
mailing list