WARNING: Version 5.2 of Elasticsearch has passed its EOL date.
This documentation is no longer being maintained and may be removed. If you are running this version, we strongly advise you to upgrade. For the latest information, see the current release documentation.
Elasticsearch installs system call filters of various flavors depending on the
operating system (e.g., seccomp on Linux). These system call filters are
installed to prevent the ability to execute system calls related to forking as
a defense mechanism against arbitrary code execution attacks on Elasticsearch
The system call filter check ensures that if system call filters are enabled,
then they were successfully installed. To pass the system call filter check you
must either fix any configuration errors on your system that prevented system
call filters from installing (check your logs), or at your own risk disable
system call filters by setting