Harald Svendberg

Any ETA for this? At the moment we have to manually call the API and set SNI for stream routes to support TLS. It would be nice to use the...

We use it in production to expose MQTT endpoints ( TCP ) with TLS for a multi-tenant solution. Right now, we use an ApisixRoute to create the upstream and a...

We observe the same issue in our AKS clusters, and apparently, other people are experiencing it as well. https://learn.microsoft.com/en-us/answers/questions/2113575/experiencing-critical-fileless-execution-via-memfd Well done, @borrelm, for identifying the root cause of the issue!

I don't think the changes [mentioned](https://github.com/falcosecurity/rules/pull/98/files#r1324235069) will solve the issue. In our case the process.name is reported as 5, not "runc", while process.pname is reported as "runc." ``` proc.name: 5...

We have modified our rules to ignore runc for now by adding this (we are using the Falco Helm chart). ```yaml customRules: rules-memfd.yaml: |- - list: known_memfd_execution_binaries items: [runc] override:...