SELinux All the Way Down: Namespaces for SELinux - Stephen Smalley, National Security Agency
Don't miss out! Join us at the next Open Source Summit in Hyderabad, India (August 5); Amsterdam, Netherland (August 25-29); Seoul, South Korea (November 4-5). Join us at the premier vendor-neutral open source conference, where developers and technologists come together to collaborate, share knowledge, and explore the latest innovations and advancements in open source technology. Learn more at https://events.linuxfoundation.org/ SELinux All the Way Down: Namespaces for SELinux - Stephen Smalley, National Security Agency At present, SELinux only supports defining and enforcing a single system-wide security policy. As a result, for Linux containers, SELinux is generally only used to provide coarse-grained sandboxing and isolation of entire containers, and Linux distributions cannot effectively leverage SELinux from within a container. With the increasing trend toward containerized applications and cloud-native container workloads, there is a growing need for SELinux to better support containers. SELinux namespaces are a proposed feature enhancement that are intended to enable per-container security policies, i.e. each SELinux namespace can load its own policy, while remaining confined by its parent (and other ancestor) policies. SELinux namespaces bring benefits for Linux developers and users by enabling full use of SELinux within containers, whether or not the host OS uses SELinux itself. In this talk we present the background, design, implementation, performance, and residual challenges associated with the work to bring SELinux namespaces to the mainline Linux kernel.

Stop disabling SELinux | RHEL Field Guide

Security-Enhanced Linux for mere mortals

Handling New Syscalls in Seccomp Filters - Tom Hromatka, Oracle Corporate & Paul Moore, Microsoft

Don’t Disable SELinux | Into the Terminal 102

Turing Award Winner: Disagreeing with Google, Postgres, Future Problems | Mike Stonebraker

eBPF as an Active Security Enforcement Layer Stop DNS Data Breaches : Beyond Pass... Vedang Parasnis

The World's Most Important Machine

Creator of C++: Bell Labs, Negative Overhead Abstraction, Mistakes | Bjarne Stroustrup

Linus Torvalds: AI Is Changing Linux Fast

SELinux in the containerized world - DevConf.CZ 2024

The Mind Behind Linux | Linus Torvalds | TED

ASMR Best Triggers For Sleep Collection (No Talking) 3 Hours of Tapping & Scratching

Co-Creator of Haskell: Functional Programming, Thinking in Types, Useless Languages | Simon Jones

SELinux: Unlock the Linux Security Tool You Didn’t Know You Needed

Andrej Karpathy: Software Is Changing (Again)

Billionaire's WARNING: I'm SELLING. The Crash Is Already Here!
![PINK & ORANGE GRADIENT IN HD [3 HOURS]](https://i.ytimg.com/vi/6ih8zppfQSQ/hqdefault.jpg?sqp=-oaymwE9CNACELwBSFryq4qpAy8IARUAAAAAGAElAADIQj0AgKJDeAHwAQH4Af4JgALQBYoCDAgAEAEYfyAsKBMwDw==&rs=AOn4CLDvw6mQM98bfl572zfE7r4GdUG8dg)
PINK & ORANGE GRADIENT IN HD [3 HOURS]

Android 17 sucks. So I put Linux on a phone.

Abstract Black and White wave pattern| Height Map Footage| 3 hours Topographic 4k Background

