seccomp — Your Next Layer of Defense

Cite

Related Material

Free and Open Source Software Conference (FrOSCon) e.V.

Krenn, Philipp

Formal Metadata

Title

seccomp — Your Next Layer of Defense

Title of Series

FrOSCon 2020 Cloud-Edition

Number of Parts

Author

Krenn, Philipp

License

CC Attribution 4.0 International:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.

Identifiers

10.5446/51781 (DOI)

Publisher

Free and Open Source Software Conference (FrOSCon) e.V.

Release Date

2020

Language

English

Content Metadata

Subject Area

Computer Science

Genre

Conference/Talk

Abstract

Why should you allow all possible system calls from your application when you know that you only need some? If you have ever wondered the same then this is the right talk for you. We are covering: * What is seccomp in a nutshell and where could you use it. * Practical example with Docker, Elasticsearch, and Beats. * How to collect seccomp violations with Auditd. Because your security approach can always use an additional layer of protection.