September 20-21, 2023 | Bilbao, Spain + Virtual
View More Details & Registration

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Linux Security Summit Europe 2023 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Central European Summer Time (UTC +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right above "Filter by Date."

IMPORTANT NOTE: The timing of sessions is subject to change.

Back To Schedule
Thursday, September 21 • 14:00 - 16:00
Landlock Workshop: Sandboxing Application for Fun and Protection - Mickaël Salaün, Microsoft

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
The goal of this workshop is to understand how to sandbox an application with Landlock. We'll quickly explain what is Landlock and how it works, which will enable us to use the user space API and restrict a Linux process. We'll then exploit a vulnerable application (real exploit with an old version of ImageMagick), patch it to limit the scope of such an attack, and check how much effective it is.

Skills required for this workshop:
  • fluent in C
  • comfortable with Git

Attendees will need a working Linux system and to follow these instructions before the workshophttps://github.com/landlock-lsm/workshop-imagemagick
We cannot help you install or configure the requirements during the workshop.

avatar for Mickaël Salaün

Mickaël Salaün

Senior Software Engineer, Microsoft
Mickaël Salaün is a security researcher and open source enthusiast. He is mostly interested in Linux-based operating systems, especially from a security point of view. He has built security sandboxes before hacking into the kernel on a new LSM called Landlock, of which he is now... Read More →

Thursday September 21, 2023 14:00 - 16:00 CEST
Room 5A