On Fri, May 02, 2014 at 01:33:09PM -0400, Dave Jones wrote:

> Something else that might be worth thinking about would be a runtime
> method to disable syscalls.  That might actually be more useful in the
> general case, but less so for the "I want a smaller build" crowd.

It would be useful for the smaller build case to have a way of auditing
which syscalls are actually in use on a system so you can then go
through and construct a minimal config.