Presented by:

ciel1981

from openSUSE user's group of Japan

A system engineer of system analysis. I'm using openSUSE/SUSE Linux since S.u.S.E Linux 5 and perhaps one of oldest member openSUSE user's group of Japan.

No video of the event yet, sorry!

In recent years, large-scale attacks and other incidents have made the news. The key is how to prevent and detect malicious attacks from the Internet. Therefore, although this will be a personal study, we will explain the security mechanisms that the operating system has and the means to improve security without spending money by making full use of packages, etc.

Specifically, it will

Attack-related - Types of attacks and detection. - What information is targeted

Detection and defence - Secure login (where possible) (in conjunction with Entra ID) - The role of AppArmor and how to configure it. - Secure remote access - Quarantine via web proxy - What type of logging is required - Acquisition of file operation history - Analysis of acquired logs

Ensuring attack trails (if possible) - Memory forensics - Disk forensics

Analysis of files (if possible) - Build a threat intelligence platform

Date:
2024 November 3 - 13:30
Duration:
40 min
Room:
Room B
Language:
ja
Track:
openSUSE
Difficulty:
Medium

Happening at the same time:

  1. The preview of Deepin Desktop Environment v23 for openSUSE
  2. Start Time:
    2024 November 3 13:30

    Room:
    Room C

  3. Your own openSUSE MicroOS derivative with the Open Build Service (OBS) and mkosi
  4. Start Time:
    2024 November 3 13:50

    Room:
    Room A