Using Seccomp to Limit the Kernel Attack Surface - Michael Kerrisk, man7.org Training and Consulting
Using Seccomp to Limit the Kernel Attack Surface - Michael Kerrisk, man7.org Training and Consulting
The seccomp (secure computing) facility is a means to select exactly which system calls a program is permitted to make and to restrict the arguments that may be passed to those system calls. System call filtering is achieved by writing BPF programs--programs written for a small in-kernel virtual machine that is able to examine system call numbers and arguments. Seccomp applications include sandboxing and failure-mode testing, and seccomp is by now used in a number of web browsers, container systems, and elsewhere. After outlining the basics of the BPF virtual machine, we look at some examples of filtering programs that restrict the set of permitted system calls, consider some productivity aids for seccomp writing filters, and note also some caveats to with respect to the use of seccomp.
About Michael Kerrisk
Michael Kerrisk is the author of the acclaimed book, "The Linux Programming Interface" (http://man7.org/tlpi/), a guide and reference for system programming on Linux and UNIX. He contributes to the Linux kernel primarily via documentation, review, and testing of new kernel-user-space interfaces. He has contributed to the Linux man-pages project (http://www.kernel.org/doc/man-pages/) since 2000, and been the project maintainer since 2004. Michael is a trainer and consultant, living in Munich, Germany.
Видео Using Seccomp to Limit the Kernel Attack Surface - Michael Kerrisk, man7.org Training and Consulting канала The Linux Foundation
The seccomp (secure computing) facility is a means to select exactly which system calls a program is permitted to make and to restrict the arguments that may be passed to those system calls. System call filtering is achieved by writing BPF programs--programs written for a small in-kernel virtual machine that is able to examine system call numbers and arguments. Seccomp applications include sandboxing and failure-mode testing, and seccomp is by now used in a number of web browsers, container systems, and elsewhere. After outlining the basics of the BPF virtual machine, we look at some examples of filtering programs that restrict the set of permitted system calls, consider some productivity aids for seccomp writing filters, and note also some caveats to with respect to the use of seccomp.
About Michael Kerrisk
Michael Kerrisk is the author of the acclaimed book, "The Linux Programming Interface" (http://man7.org/tlpi/), a guide and reference for system programming on Linux and UNIX. He contributes to the Linux kernel primarily via documentation, review, and testing of new kernel-user-space interfaces. He has contributed to the Linux man-pages project (http://www.kernel.org/doc/man-pages/) since 2000, and been the project maintainer since 2004. Michael is a trainer and consultant, living in Munich, Germany.
Видео Using Seccomp to Limit the Kernel Attack Surface - Michael Kerrisk, man7.org Training and Consulting канала The Linux Foundation
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Mentorship Session: Video Codecs and the Virtual Stateless Decoder Driver (visl)
Linux Foundation Announces New Projects To Help Telcos Innovate With Open Source | Arpit Joshipura
Open Source Has Become Increasingly Diversified | Lin Sun
IOMAP conversion status - Luis Chamberlain
Tutorial: Getting Started with eBPF - Liz Rice, Isovalent
Revamping ioctl with io_uring - Kanchan Joshi & Anuj Gupta, Samsung Semiconductor India Research
Getting to Know the Linux Kernel: A Beginner's Guide - Kelsey Steele & Nischala Yelchuri, Microsoft
LF Live Webinar: Kubernetes Called and it Wants Your IaC Back
Better, Faster, Stronger: How the Global Acceleration of OS Development Is Changing
What Does a CPU Do Before Going to Work (in an Embedded System)? - Josef Holzmayr, Mender.io
Basics of I2C on Linux - Luca Ceresoli, Bootlin
How ARM Systems are Booted: An Introduction to the ARM Boot Flow - Rouven Czerwinski
Tales from the Crypt: Implementing Secure Boot and Disk Encryption on Tegra Platforms - Tim Orling
Making Fuzzing Part of Your Software Development Lifecycle - Jonathan Metzman, Google
Being Systematic with systemd - Chris Simmonds, 2net Ltd
Linux on RISC-V and the New OS-A Platform - Drew Fustini, BayLibre
io_uring: So Fast. It's Scary. - Paul Moore, Microsoft
Booting Automotive ECUs Really Fast with Modern Security Features - Brendan Le Foll, BMW Car IT GmbH
The Evolution of Milvus: A Cloud-Native Vector Database - Frank Liu, Zilliz
Slirp is Dead, Long Live Slirp! A New Approach to User-mode Networking - Stefano Brivio & Alona Paz
Distrobox - Run Any App from Any Distro - Luca Di Maio, Contractor