Linux Security Summit 2012/Abstracts/Walsh

From Linux Kernel Security Subsystem
Jump to navigation Jump to search


Linux Sandbox Version II - Sandboxing Server Applications


Dan Walsh, Red Hat


This talk will describe the new Linux Secure Container Applications.

Linux Secure Applications is a combination of Linux Containers, Cgroups and SELinux Sandboxing, all launched by libvirt and intergrated with systemd.

libvirt now has the ability to launch multiple Sandboxed Containers to run applications servers on a machine at the same time. It will allow you to run multiple apache servers at the same time, each with their own IP Address, isolated from each other.

This talk will demo the tools used to setup the containers, and will explain how it works.