YoVDO

Landlock Update: File Reparenting and Network Rules Support

Offered By: Linux Foundation via YouTube

Tags

Linux Security Courses Containerization Courses Security Policies Courses Network Access Control Courses Container Security Courses Landlock Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the latest developments in Landlock, a Linux security module, in this 40-minute conference talk. Discover how file reparenting limitations have been addressed, allowing for more flexible file operations within containers. Learn about the new LANDLOCK_ACCESS_FS_REFER right and its implications for security policies. Delve into the upcoming network access control features that will enable the creation of app-centric and container firewalls. Gain insights into Landlock's process composition, access control types, and API versioning. Witness a demonstration showcasing these new capabilities and their potential impact on Linux security.

Syllabus

Introduction
Important News
Lifting File Reparenting Limits
Challenges
Landlock Process Composition
File Reparenting Limitations
Current Network Rules
Access Control Types
EAccess and XDev
Landlock API Version
Network Rules
Demo


Taught by

Linux Foundation

Tags

Related Courses

EBPF Superpowers
Docker via YouTube Sandboxing Applications with Landlock
Linux Foundation via YouTube Deep Dive into Landlock Internals
Linux Foundation via YouTube Safely Restricting File Access with Landlock - A Programmatic Approach
Linux Foundation via YouTube Towards the Hardened Cloud-Native Cornerstone: Container Runtime Protection
CNCF [Cloud Native Computing Foundation] via YouTube