home.social

#linuxsecuritysummit — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #linuxsecuritysummit, aggregated by home.social.

  1. I gave a (2nd) talk at #linuxsecuritysummit on a new configuration format, #Landlock Config, to define sandboxing security policies. The provided library (Rust and C for now) can also compose configurations to ease sharing and maintenance. This is especially useful to sandbox programs without modifying them, and to easily manage and audit Landlock policies. It could also be part of other configuration formats such as the OCI runtime specification.
    lsseu2025.sched.com/event/25GET

    github.com/landlock-lsm/landlo

  2. I gave a (2nd) talk at #linuxsecuritysummit on a new configuration format, #Landlock Config, to define sandboxing security policies. The provided library (Rust and C for now) can also compose configurations to ease sharing and maintenance. This is especially useful to sandbox programs without modifying them, and to easily manage and audit Landlock policies. It could also be part of other configuration formats such as the OCI runtime specification.
    lsseu2025.sched.com/event/25GET

    github.com/landlock-lsm/landlo

  3. I gave a (2nd) talk at #linuxsecuritysummit on a new configuration format, #Landlock Config, to define sandboxing security policies. The provided library (Rust and C for now) can also compose configurations to ease sharing and maintenance. This is especially useful to sandbox programs without modifying them, and to easily manage and audit Landlock policies. It could also be part of other configuration formats such as the OCI runtime specification.
    lsseu2025.sched.com/event/25GET

    github.com/landlock-lsm/landlo

  4. I gave a (2nd) talk at #linuxsecuritysummit on a new configuration format, #Landlock Config, to define sandboxing security policies. The provided library (Rust and C for now) can also compose configurations to ease sharing and maintenance. This is especially useful to sandbox programs without modifying them, and to easily manage and audit Landlock policies. It could also be part of other configuration formats such as the OCI runtime specification.
    lsseu2025.sched.com/event/25GET

    github.com/landlock-lsm/landlo

  5. I gave a (2nd) talk at #linuxsecuritysummit on a new configuration format, #Landlock Config, to define sandboxing security policies. The provided library (Rust and C for now) can also compose configurations to ease sharing and maintenance. This is especially useful to sandbox programs without modifying them, and to easily manage and audit Landlock policies. It could also be part of other configuration formats such as the OCI runtime specification.
    lsseu2025.sched.com/event/25GET

    github.com/landlock-lsm/landlo

  6. Script integrity: I gave a talk at #linuxsecuritysummit in Amsterdam on the latest news about Linux's AT_EXECVE_CHECK, useful to check the full file executability (including LSMs' policies), and the two new secbits to incrementally enforce restrictions and really control executable code.
    Feel free to let me know if you want to contribute by enlightening your favorite interpreter!
    lsseu2025.sched.com/event/25GEQ

  7. Script integrity: I gave a talk at #linuxsecuritysummit in Amsterdam on the latest news about Linux's AT_EXECVE_CHECK, useful to check the full file executability (including LSMs' policies), and the two new secbits to incrementally enforce restrictions and really control executable code.
    Feel free to let me know if you want to contribute by enlightening your favorite interpreter!
    lsseu2025.sched.com/event/25GEQ

  8. Script integrity: I gave a talk at #linuxsecuritysummit in Amsterdam on the latest news about Linux's AT_EXECVE_CHECK, useful to check the full file executability (including LSMs' policies), and the two new secbits to incrementally enforce restrictions and really control executable code.
    Feel free to let me know if you want to contribute by enlightening your favorite interpreter!
    lsseu2025.sched.com/event/25GEQ

  9. Script integrity: I gave a talk at #linuxsecuritysummit in Amsterdam on the latest news about Linux's AT_EXECVE_CHECK, useful to check the full file executability (including LSMs' policies), and the two new secbits to incrementally enforce restrictions and really control executable code.
    Feel free to let me know if you want to contribute by enlightening your favorite interpreter!
    lsseu2025.sched.com/event/25GEQ

  10. Script integrity: I gave a talk at #linuxsecuritysummit in Amsterdam on the latest news about Linux's AT_EXECVE_CHECK, useful to check the full file executability (including LSMs' policies), and the two new secbits to incrementally enforce restrictions and really control executable code.
    Feel free to let me know if you want to contribute by enlightening your favorite interpreter!
    lsseu2025.sched.com/event/25GEQ

  11. #Landlock now has a logo! I'm at #OSSummit Europe, #LinuxSecuritySummit Europe, and #LinuxPlumbers this week in Vienna. If you're there, Günther, Tahera and I have some stickers to give 🤓
    github.com/landlock-lsm/landlo

  12. #Landlock now has a logo! I'm at #OSSummit Europe, #LinuxSecuritySummit Europe, and #LinuxPlumbers this week in Vienna. If you're there, Günther, Tahera and I have some stickers to give 🤓
    github.com/landlock-lsm/landlo

  13. #Landlock now has a logo! I'm at #OSSummit Europe, #LinuxSecuritySummit Europe, and #LinuxPlumbers this week in Vienna. If you're there, Günther, Tahera and I have some stickers to give 🤓
    github.com/landlock-lsm/landlo

  14. #Landlock now has a logo! I'm at #OSSummit Europe, #LinuxSecuritySummit Europe, and #LinuxPlumbers this week in Vienna. If you're there, Günther, Tahera and I have some stickers to give 🤓
    github.com/landlock-lsm/landlo

  15. #Landlock now has a logo! I'm at #OSSummit Europe, #LinuxSecuritySummit Europe, and #LinuxPlumbers this week in Vienna. If you're there, Günther, Tahera and I have some stickers to give 🤓
    github.com/landlock-lsm/landlo

  16. But to mention some positive, LSS and LPC looks 🔥 this year.

    Tiny bit of SOSS sprinkled into it as well.

    #linuxsecuritysummit #LinuxPlumbers

  17. But to mention some positive, LSS and LPC looks 🔥 this year.

    Tiny bit of SOSS sprinkled into it as well.

    #linuxsecuritysummit #LinuxPlumbers

  18. But to mention some positive, LSS and LPC looks 🔥 this year.

    Tiny bit of SOSS sprinkled into it as well.

    #linuxsecuritysummit #LinuxPlumbers

  19. But to mention some positive, LSS and LPC looks 🔥 this year.

    Tiny bit of SOSS sprinkled into it as well.

    #linuxsecuritysummit #LinuxPlumbers

  20. But to mention some positive, LSS and LPC looks 🔥 this year.

    Tiny bit of SOSS sprinkled into it as well.

    #linuxsecuritysummit #LinuxPlumbers

  21. "#Landlock Workshop: Sandboxing Application for Fun and Protection" at #linuxsecuritysummit Europe: sched.co/1OLAi
    A practical sandboxing use case illustrated with the #ImageTragick vulnerability. All you need to build, test and patch: github.com/landlock-lsm/worksh

  22. "#Landlock Workshop: Sandboxing Application for Fun and Protection" at #linuxsecuritysummit Europe: sched.co/1OLAi
    A practical sandboxing use case illustrated with the #ImageTragick vulnerability. All you need to build, test and patch: github.com/landlock-lsm/worksh

  23. "#Landlock Workshop: Sandboxing Application for Fun and Protection" at #linuxsecuritysummit Europe: sched.co/1OLAi
    A practical sandboxing use case illustrated with the #ImageTragick vulnerability. All you need to build, test and patch: github.com/landlock-lsm/worksh

  24. "#Landlock Workshop: Sandboxing Application for Fun and Protection" at #linuxsecuritysummit Europe: sched.co/1OLAi
    A practical sandboxing use case illustrated with the #ImageTragick vulnerability. All you need to build, test and patch: github.com/landlock-lsm/worksh

  25. "#Landlock Workshop: Sandboxing Application for Fun and Protection" at #linuxsecuritysummit Europe: sched.co/1OLAi
    A practical sandboxing use case illustrated with the #ImageTragick vulnerability. All you need to build, test and patch: github.com/landlock-lsm/worksh

  26. Saw a lot of Aurora flying over Greenland on the way to Linux Security Summit EU. This is the best I could do with an older iPhone #linux #linuxsecuritysummit #space #spaceweather #hamradio #amateurradio
  27. Saw a lot of Aurora flying over Greenland on the way to Linux Security Summit EU. This is the best I could do with an older iPhone #linux #linuxsecuritysummit #space #spaceweather #hamradio #amateurradio
  28. Saw a lot of Aurora flying over Greenland on the way to Linux Security Summit EU. This is the best I could do with an older iPhone #linux #linuxsecuritysummit #space #spaceweather #hamradio #amateurradio
  29. Saw a lot of Aurora flying over Greenland on the way to Linux Security Summit EU. This is the best I could do with an older iPhone #linux #linuxsecuritysummit #space #spaceweather #hamradio #amateurradio
  30. Saw a lot of Aurora flying over Greenland on the way to Linux Security Summit EU. This is the best I could do with an older iPhone #linux #linuxsecuritysummit #space #spaceweather #hamradio #amateurradio
  31. Here are the slides and demo videos from my #linuxsecuritysummit talk about Hypervisor-Enforced Kernel Integrity for Linux, powered by KVM: github.com/heki-linux

  32. Here are the slides and demo videos from my #linuxsecuritysummit talk about Hypervisor-Enforced Kernel Integrity for Linux, powered by KVM: github.com/heki-linux

  33. Here are the slides and demo videos from my #linuxsecuritysummit talk about Hypervisor-Enforced Kernel Integrity for Linux, powered by KVM: github.com/heki-linux

  34. Here are the slides and demo videos from my #linuxsecuritysummit talk about Hypervisor-Enforced Kernel Integrity for Linux, powered by KVM: github.com/heki-linux

  35. Here are the slides and demo videos from my #linuxsecuritysummit talk about Hypervisor-Enforced Kernel Integrity for Linux, powered by KVM: github.com/heki-linux