What does "make opensource ecosystem secure one audit at time" mean (for you and for me)?
Tales from a SUSE Security Engineer's Diary
Paolo Perego
I find vulnerabilities in software for living | Offensive security | Open source enthusiast | OSCE && OSCP | Content creator | Speaker | ๐ | ๐จโ๐ฉโ๐งโ๐ฆ | Security Engineer @ SUSE๐ฆ | Chaotic Neutral Elistraee Cleric
No video of the event yet, sorry!
Ever wonder what goes on behind the scenes to keep your favorite open-source projects (relatively) secure? Spoiler alert: it's not magic (mostly)!
This talk is a peek into the world of a security engineer who spends their days auditing code, hunting down vulnerabilities, and trying to make the open-source world a little less "Oops!" and a little more "Awesome!".
We'll dive into:
- What actually goes into a software audit. (Think less "spreadsheets," more "WTF is that?")
- The thrill (and occasional horror) of vulnerability research.
- Why this matters to you, even if you don't write code for a living. (Hint: it's about more than just avoiding the next big breach.)
- How we, as a community, can all contribute to making open source safer โ because, let's face it, we're all in this together.
So, if you've ever been curious about the security side of open source, or just want to hear some war stories from the front lines, come join me! Let's talk about how we can make the open-source ecosystem more secure, one audit at a time. For you, for me, for everyone!
- Date:
- 2025 June 27 - 11:30
- Duration:
- 30 min
- Room:
- Gallerie
- Conference:
- openSUSE Conference 2025
- Language:
- Track:
- Open Source
- Difficulty:
- Easy
- discussion on zypper speedup
- Start Time:
- 2025 June 27 11:00
- Room:
- Seminar Room 1
- Kalpa Desktop, Where it is, and Where it's going
- Start Time:
- 2025 June 27 11:30
- Room:
- Saal