Overview
Explore the latest developments in Landlock, a Linux application sandboxing mechanism, through this 52-minute conference talk from Kernel Recipes 2023. Dive into the challenges of identifying denied access causes and learn about the in-development approaches for debugging security policies. Discover how logging denied accesses and their reasons can aid in attack detection. Understand the restrictions applied to these features due to Landlock's focus on unprivileged users, such as the absence of global rule identifiers and the implementation of scoped debugging. Gain insights into the intended features designed to assist developers in effectively sandboxing their applications, as presented by Mickaël Salaün.
Syllabus
Kernel Recipes 2023 - Update on Landlock: Audit, Debugging and Metrics
Taught by
Kernel Recipes