Category: security

Cloud-init support in LXD container images

cloud-init is a tool to help you customize cloud images. When you launch a cloud image, you can provide to it with your cloud-init instructions, and the cloud image will execute them. In that way, you can start with a generic cloud image, and as soon as it booted up, it will be configured to …

Continue reading

Permanent link to this article: https://blog.simos.info/cloud-init-support-in-lxd-container-images/

Using the LXD Kali container image

If you have a look at the list of container images for LXD (repository images:), you will notice the recent addition of the Kali container images. These were added by Re4son (@kali.org). But Kali is a security distribution, does it make sense to create system containers with Kali? LXD offers system containers, which are similar …

Continue reading

Permanent link to this article: https://blog.simos.info/using-the-lxd-kali-container-image/

Checking the Ubuntu Linux kernel updates on Spectre and Meltdown

Here is the status page for the Ubuntu updates on Spectre and Meltdown. For a background on these vulnerabilities, see the Meltdown and Spectre Attacks website. In this post we are trying out the Spectre & Meltdown Checker on different versions of the stock Ubuntu Linux kernel. Trying the Spectre & Meltdown Checker before any …

Continue reading

Permanent link to this article: https://blog.simos.info/checking-the-ubuntu-linux-kernel-updates-on-spectre-and-meltdown/

A closer look at the new Hetzner cloud servers, by running LXD

Hetzner just announced a new set of cloud servers at good competitive prices. Let’s try them out and run LXD! Cloud server information Here is the lineup of the new cloud servers, The cheapest is a single-core, 2GB RAM and 20GB disk Virtual Private Server, with practically unlimited traffic. This is good enough to run …

Continue reading

Permanent link to this article: https://blog.simos.info/a-closer-look-at-the-new-hetzner-cloud-servers-by-running-lxd/

Installing retdec on Ubuntu

retdec (RETargetable DECompiler) is a decompiler, and it is the one that was released recently as open-source software by Avast Software. retdec can take an executable and work back into recreating the initial source code (with limitations). An example with retdec Let’s see first an example. Here is the initial source code, that was compiled …

Continue reading

Permanent link to this article: https://blog.simos.info/installing-retdec-on-ubuntu/

How to use Sysdig and Falco with LXD containers

Sysdig (.org) is an open-source container troubleshooting tool and it works by capturing system calls and events directly from the Linux kernel. When you install Sysdig, it adds a new kernel module that it uses to collect all those system calls and events. That is, compared to other tools like strace, lsof and htop, it …

Continue reading

Permanent link to this article: https://blog.simos.info/how-to-use-sysdig-and-falco-with-lxd-containers/

%d bloggers like this: