Explore container security hardening approaches in this 31-minute conference talk that compares Secure Computing (seccomp) and eBPF technologies for limiting container access to shared Linux kernels in Kubernetes environments. Learn how to implement the principle of least privilege through live demonstrations showcasing both seccomp and eBPF solutions for restricting system calls, file access, binary execution, and external DNS name resolution. Discover the key differences between these two commonly used technologies and determine which approach best suits your container security needs. Through practical examples and hands-on demonstrations, gain essential knowledge about controlling process behaviors and implementing effective security measures in containerized environments.