Meeting
Live Q&A - Hardening Linux for Embedded Systems
Aljoscha Lautenbach
Live Q&A with Aljoscha Lautenbach for the talk titled Hardening Linux for Embedded Systems
Thomas.Schaertel
Score: 1 | 2 years ago | 1 reply
Aljoscha LautenbachSpeaker
Score: 0 | 2 years ago | no reply
Hi Thomas!
I'm glad it was helpful! I am not personally aware of a book on Linux hardening, but that doesn't mean that there is no such book. The difficulty with hardening is that it is such a broad topic and you can approach it from so many different angles. Apart from reading the official Linux documentation, my main recommendation would be to learn the attacking techniques, so that you know what to look out for. Until I learned how to exploit a misconfigured cron job, I never would have looked for it. And learning the basics of penetration testing is quite fun!
Hi Aljoscha,
thank you very much for your talk. I even wasn't aware of linPEAS, maybe as I'm focusing most of the time on developing a solution. On the other side, most systems are guarded by the company's firewalls, so security falls short within the dev cycle, while we are fighting with different distributions and kernel versions to implement something. So I learned already a lot from your talk. Do you have any recommendation/resource on hardening e.g. a book?
Thanks a lot!
Thomas