Month 4-Container Security¶
Goal: by the end of week 16 you can (a) author seccomp profiles tailored to a service, (b) decompose Linux capabilities and assign minimum sets, (c) configure SELinux and AppArmor for containerized workloads, and (d) run rootless, user-namespaced containers as the default.
Weeks¶
- Week 13 - The Default Threat Model
- Week 14 - Capabilities for Containers
- Week 15 - Seccomp Profiles for Containers
- Week 16 - LSM for Containers: SELinux and AppArmor