Debian Conference 2015 The annual Debian developer meeting

DebConf15 — Heidelberg, Germany
15–22 August 2015

Platinum Sponsor

    Hewlett-Packard

Gold Sponsors

  • credativ GmbH
  • sipgate GmbH
  • With encouragements of the Matanel Foundation
  • IBM
  • Google
  • Valve

Silver Sponsors

  • Farsight Security Inc.
  • Example42
  • Ubuntu supported by Canonical
  • Mirantis
  • 1&1 Internet AG
  • MySQL
  • Conova.com
  • Hudson River Trading
  • Cumulus Networks
  • Fujitsu TDS
  • ARM
  • Two Sigma Investments
  • BMW Group

Bronze Sponsors

  • godiug.net
  • Logilab
  • NETWAYS
  • Hetzner Online
  • University of Zurich, Department of Informatics
  • Deduktiva GmbH
  • Docker
  • DG-i
  • IT Support Group Electrical Engineering ETH Zurich
  • Univention
  • Dr. Markus Blatt - HPC-Simulation-Software & Services
  • MEINBERG Funkuhren GmbH & Co. KG
  • GUUG e.V.
  • teamix GmbH
  • Heroku, Inc.
  • PricewaterhouseCoopers AG

Supporters

  • Bitnami
  • elementary OS
  • Plat'Home
  • News
  • Wiki
  • Registration
  • Schedule
  • Sponsors
  • Contribute
  • Press / Contact
  • DebConf video streams

AppArmor Crash Course -- Christian Boltz

2015-08-20 15:00..15:45 in Berlin/London

AppArmor is an effective and easy-to-use Linux application security system. AppArmor proactively protects the operating system and applications from external or internal threats, even zero-day attacks, by enforcing good behavior and preventing even unknown application flaws from being exploited. AppArmor security policies, called profiles, completely define what system resources individual applications can access, and with what privileges. A number of default profiles are included with AppArmor, and using a combination of advanced static analysis and learning-based tools, AppArmor profiles for even very complex applications can be deployed successfully in a matter of hours.

This talk gives an introduction to AppArmor. I'll show the AppArmor tools to create and update profiles and also explain the profile syntax so that you can understand and manually edit profiles. I'll also show some advanced usage - securing a typical webserver, setting up read-only root access to do backups and how to (ab)use AppArmor for debugging.

URLs: http://wiki.apparmor.net/index.php/Main_Page (upstream AppArmor wiki) http://blog.cboltz.de/uploads/osc12/apparmor-english-2012-v2.pdf (slides from 2012, most of them still valid)

Speaker

Christian Boltz

Additional links

Video of AppArmor Crash Course

Links

Footer logo

The Summit Scheduler version 1.2.14 (revno: 560)

© Canonical Ltd., et al.

The source code for DebConf's version of Summit: http://anonscm.debian.org/gitweb/?p=debconf-data/summit.git

Report problems to the summit.debconf.org pseudo-package in the Debian Bug Tracking System