seccomp — Your Next Layer of Defense (froscon2020)
Chaos Computer Club - archive feed · Philipp Krenn
August 23, 202044m 20s
Audio is streamed directly from the publisher (cdn.media.ccc.de) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Why should you allow all possible system calls from your application when you know that you only need some? If you have ever wondered the same then this is the right talk for you.
We are covering:
* What is seccomp in a nutshell and where could you use it.
* Practical example with Docker, Elasticsearch, and Beats.
* How to collect seccomp violations with Auditd.
Because your security approach can always use an additional layer of protection.
about this event: https://programm.froscon.de/2020/events/2614.html
Topics
froscon202026142020Security