Containing an Attack with Linux Containers and AppArmor/SELinux

Containing an Attack with Linux Containers and AppArmor/SELinux

In the system hardening space, we’ve been using chroot jails to contain compromised programs. These jails were better than nothing, but were easily escaped by many attackers. As Linux containers become more mature, we can use them to replace these jails. This talk will teach you how to use Linux Containers, through both Docker and Ubuntu’s new LXD, to create far better jails for programs, containing their compromise. You will leave this demo-heavy talk immediately able to use both technologies to create containers for both attack containment and to rapidly develop and host software.

Presented by