YoVDO

The Why and How of libseccomp

Offered By: Linux Foundation via YouTube

Tags

Conference Talks Courses C Programming Courses Linux Kernel Security Courses BPF Courses

Course Description

Overview

Explore the fundamentals of libseccomp in this comprehensive tutorial led by Tom Hromatka from Oracle and Paul Moore from Cisco. Delve into the importance of the Linux Kernel's seccomp feature for restricting syscalls and enhancing process isolation. Learn how libseccomp simplifies the creation and maintenance of seccomp filters, crucial for container security. Follow along as the libseccomp maintainers guide you through practical examples, from basic C programs to advanced techniques like parameter addition and string matching. Gain insights into whitelist vs blacklist approaches, logging improvements, and troubleshooting with strace. Perfect for developers and system administrators looking to bolster their understanding of system call filtering and improve application security.

Syllabus

Introduction
Why use libseccomp
What is call filtering
Cisco filtering history
BPF
BPF Improvements
Documentation
Eye Chart
Questions
Whitelist vs Blacklist
Other considerations
Making a Simple C Program
Making mistakes
Improved logging
Strace
Exit
Question
Adding parameters
Strings
Printing
String Matching


Taught by

Linux Foundation

Tags

Related Courses

UNSW Computing 1 - The Art of Programming
OpenLearning
C++ For C Programmers, Part A
University of California, Santa Cruz via Coursera
Beginning Game Programming with C#
University of Colorado System via Coursera
Introduction to Computing 计算概论A
Peking University via Coursera
Comprendre les Microcontroleurs
École Polytechnique Fédérale de Lausanne via Coursera