mastodon: @brauner@mastodon.social

Twitter: @brau_ner

github: brauner

• Feb 28, 2023

  Mounting into mount namespaces

• Jan 5, 2023

  An excursion into a mount propagation bug

• Jan 2, 2023

  Managing a kernel patch series with b4

• Aug 7, 2020

  The Seccomp Notifier - Cranking up the crazy with bpf()

• Jul 23, 2020

  The Seccomp Notifier - New Frontiers in Unprivileged Container Development

• Oct 1, 2019

  Slides for Kernel Recipes, Paris 2019: pidfd: Process file descriptors on Linux

• Aug 23, 2019

  Slides for Open Source Summit (OSS) North America, San Diego 2019: New Container Kernel Features

• Jun 28, 2019

  Linux Kernel VFSisms

• Feb 12, 2019

  Runtimes And the Curse of the Privileged Container

• Feb 5, 2019

  Video and Slides for FOSDEM, Brussels 2019: A Year of Container Kernel Work

• Jan 9, 2019

  Android Binderfs

• Oct 29, 2018

  Video and Slides for Linux Security Summit (LSS) Europe, Edinburgh 2018: Overview and Recent Developments: Namespaces and Capabilities

• Sep 15, 2018

  Video and Slides for OSDN, Kiev 2018: Filesystem mounts in user namespaces

• Sep 8, 2018

  Lenovo ThinkPad X1 6en: Enabling S3 Sleep for Linux after Firmware Update

• Aug 5, 2018

  Unprivileged File Capabilities

• Mar 23, 2018

  History Of Linux Containers By Serge Hallyn

• Mar 4, 2018

  Mutexes And fork()ing In Shared Libraries

• Feb 28, 2018

  On The Way To LXC 3.0: Moving The Cgroup Pam Module Into The LXC Tree (Including A Detour About Fully Unprivileged Containers)

• Feb 27, 2018

  On The Way To LXC 3.0: Splitting Out Templates And Language Bindings

• Feb 20, 2018

  On The Way To LXC 3.0: Removal of cgmanager And cgfs cgroup Drivers

• Feb 19, 2018

  LXC Lands Unified cgroup Hierarchy Support

• Jul 12, 2017

  Storage management in LXD 2.15

• Feb 20, 2017

  lxc exec vs ssh