Present Absence of Linux Filesystem Security

View
69
Download
3
Category

Software

Preview:

Citation preview

PresentAbsenceofLinuxFilesystemSecurityPhilipDerbeko

January,2018

AboutMe(philip@ensilo.com)

PresentAbsence

Acharacterwhodoesnotappearformuchof,ifnotalltheplot,butwhosepresenceisneverthelessfelt.Moreaccurately,theabsenceofthecharacterismostsignificant.

RecapofFSSecurity

1. Read/Write/Execute2. Inheritance3. Only“Allow”permissions

RecapofFSSecurity

Privacyvs.Security

The“Root”oftheproblem

Permanentlinktothiscomic:https://xkcd.com/149/

CapabilitiesAnyone?

LSMtotherescue???

Issues:- Notmandatory- Singleactivemodule- Kernelcompilation- LimitedHooks

3SecurityGaps

1.Contextofoperations2.WeirdOperations3.DestructiveOperations

Contextofoperations

Doyoureallyknowwhatisgoingon?

ContextofOperations

WeirdOperations

DestructiveOperations

KillDisk –encryptionloop

DestructiveOperations

Encoder–encryptionloop

DestructiveOperations

DestructiveOperations– ShieldFS assumptions/findings

1. #offolderlistingoperations2. #ofreadfiles3. #ofwrittenfiles4. #ofrenamedormovedfiles5. #ofaccessedfiles6. Averageentropyoffile-writeoperations

Solution?

contact@enSilo.com www.ensilo.com company/enSilo @enSiloSec

ThankYou

WeirdOperations

Recommended

Using the Linux Command Line - University of Arizonamath.arizona.edu/~swig/documentation/unix_command_line/love_swig... · Basic Commands Linux Filesystem 3 More Advanced Commands

Documents

Linux Filesystem Hierarchyploug22.free.fr/doc/linux-filesystem-hierarchy.pdf · Linux Filesystem Hierarchy Version 0.62 Binh Nguyen

Documents

Linux1 Linux RHC030 Modulo 2. Filesystem Bàsico Relator : Diego Fuentealba

Documents

11 linux filesystem copy

Technology

Linux+ Guide to Linux Certification Chapter Six Linux Filesystem Administration

Documents

Linux filesystem permissions - Santa Monicahomepage.smc.edu/morgan_david/linux/a03-permissions.pdf · Linux filesystem permissions ... – top secret ... rights” ACL man page –

Documents

Linux Filesystem Hierarchy and Hard Disk Partitioningbaro/slides/MHPC-2016/fs_hierarchy_and_hd... · Linux Filesystem Hierarchy and Hard Disk Partitioning Moreno Baricevic CNR-IOM

Documents

Linux Filesystem and Common Commands

Documents

Linux Filesystem & Storage Tuning - The Linux Foundation

Documents

Linux Filesystem Hierarchy - · PDF fileLinux Filesystem Hierarchy.....2 1.1. Foreward ... The Linux File System Structure is a document, which was created to help end this anarchy

Documents

DBFS and SecureFiles · We present a preliminary performance evaluation of DBFS that ... unstructured objects, and absence of standard filesystem-based ... Linux VFS-like capabilities

Documents

Diploma Thesis Development of a Linux Overlay Filesystem for Software … · 2004. 3. 31. · Diploma Thesis Development of a Linux Overlay Filesystem for Software Updates in Embedded

Documents

LSB Workgroup, The Linux Foundation · LSB Workgroup, The Linux Foundation. Filesystem Hierarchy Standard LSB Workgroup, The Linux Foundation Version 3.0 Publication date March 19,

Documents

Workbook 5 - Part 2 The Linux Filesystem RH030 Linux Computing Essentials

Documents

Extreme Filesystem Sharing · Extreme Filesystem Sharing Linux on Read-Only Root at Nationwide Rick Troth March 2, 2009 SHARE 112 session 9216

Documents

Workbook 5 The Linux Filesystem

Documents

Comparing filesystem performance: Red Hat Enterprise Linux 6 vs

Documents

The Linux ext2/3/4 Filesystem: Past, Present, and Future

Documents

Linux+ Guide to Linux Certification, Second Edition Chapter 5 Linux Filesystem Management

Documents

Workbook 5 The Linux Filesystem Pace Center for Business and Technology 1

Documents