Will this Linux kernel facility limit a Docker container’s access to host resources, such…

Question

Will this Linux kernel facility limit a Docker container’s access to host resources, such as CPU or memory? seccomp

Accepted Answer

Correct answer: B. B. No — The correct answer is B because seccomp is designed to filter system calls made by applications, not to limit resource usage such as CPU or memory. Other mechanisms like cgroups are used to control resource allocation, while seccomp focuses on enhancing security by restricting access to potentially dangerous system calls.

Docker Certified Associate (DCA) — Question 53

Answer options

Correct answer: B

Explanation