October 4-6 in Berlin, Germany
Register Now for LinuxCon+ContainerCon Europe
Back To Schedule
Wednesday, October 5 • 11:00 - 11:50
Locking Down Your Systemd Services - Lennart Poettering, Red Hat

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

systemd is the system and service manager of most of today's popular Linux distributions. This talk will focus on security features of systemd, that help developers and administrators to lock down system services in powerful ways, in order to build a more secure Operating System. Topics covered are: file system namespace features for services, networking lock-in, seccomp sandboxing, Linux security capabilities, integration with MAC security and many more. The talk will explain how many default services shipped in the various Linux distributions already make use of these security features to minimize impact of services, and how developers, devops engineers and administrators can enable this features easily for their own services, with just a few settings.


Lennart Poettering

Principal Software Engineer, Red Hat
Lennart works on systemd, for Red Hat.

Wednesday October 5, 2016 11:00 - 11:50 CEST