Security and openSUSE development
securing the tumbleweed
Marcus was born in 1973. He studied computer science in Erlangen, Germany and finished with Diploma. He worked for Caldera from 1999 until the closure of Caldera Linux Business in 2002. He is working for SUSE since 2002, and in the security team since 2004. He has lead the team until begin of 2013 and is now the security project manager. He also is part of the openSUSE Maintenance team and works on a lot of openSUSE packages. In his spare time he is a gphoto (digital camera access library) and Wine developer.
openSUSE is developed with security in mind. This talk will provide an overview of the processes and technologies to develop and maintain openSUSE in a secure way. The talk will put light on the secure development processes and automatisms we use during Factory development. As package maintainer you will probably already have stumbled over various rpmlint checks, tarball signing and similar weird requirements. It will also show the technologies integrated into the distribution that helps to stay secure, starting from gpg signed repositories for installation and updates up to runtime buffer overflow protection methods.
- 2015 May 3 - 15:15
- 30 min
- Main hall
- openSUSE Conference
- Development, Technology & Security