Linux Security Summit 2012/Abstracts/Walsh

From Linux Kernel Security Subsystem
Jump to navigation Jump to search

Title

Linux Sandbox Version II - Sandboxing Server Applications

Presenter

Dan Walsh, Red Hat

Abstract

This talk will describe the new Linux Secure Container Applications.

Linux Secure Applications is a combination of Linux Containers, Cgroups and SELinux Sandboxing, all launched by libvirt and intergrated with systemd.

libvirt now has the ability to launch multiple Sandboxed Containers to run applications servers on a machine at the same time. It will allow you to run multiple apache servers at the same time, each with their own IP Address, isolated from each other.

This talk will demo the tools used to setup the containers, and will explain how it works.