Let's thinking about openSUSE's security(in Japanese Program)
Improve system security and analyse files in the event of an incident
ciel1981
A system engineer of system analysis. I'm using openSUSE/SUSE Linux since S.u.S.E Linux 5 and perhaps one of oldest member openSUSE user's group of Japan.
No video of the event yet, sorry!
In recent years, large-scale attacks and other incidents have made the news. The key is how to prevent and detect malicious attacks from the Internet. Therefore, although this will be a personal study, we will explain the security mechanisms that the operating system has and the means to improve security without spending money by making full use of packages, etc.
Specifically, it will
Attack-related - Types of attacks and detection. - What information is targeted
Detection and defence - Secure login (where possible) (in conjunction with Entra ID) - The role of AppArmor and how to configure it. - Secure remote access - Quarantine via web proxy - What type of logging is required - Acquisition of file operation history - Analysis of acquired logs
Ensuring attack trails (if possible) - Memory forensics - Disk forensics
Analysis of files (if possible) - Build a threat intelligence platform
- Date:
- 2024 November 3 - 13:30
- Duration:
- 40 min
- Room:
- Room B
- Conference:
- openSUSE.Asia Summit 2024
- Language:
- ja
- Track:
- openSUSE
- Difficulty:
- Medium
- The preview of Deepin Desktop Environment v23 for openSUSE
- Start Time:
- 2024 November 3 13:30
- Room:
- Room C
- Using microos as a virtualization/lxc host with incus.
- Start Time:
- 2024 November 3 13:30
- Room:
- Room A
- Your own openSUSE MicroOS derivative with the Open Build Service (OBS) and mkosi
- Start Time:
- 2024 November 3 13:50
- Room:
- Room A