Systemd has security features that tend to go underutilised. Especially, the service files have sandboxing features that can be used to isolate the service.
Continue reading...Linux
Module Signing Keys (Without Building Kernel)
In this blog post we will talk about module signing keys in a situation where the entity developing and signing kernel modules cannot build in their keys.
Continue reading...Linux Initramfs, With and Without Yocto
Let’s get started with an introduction of what an initramfs is, and then get into more technical stuff.
Continue reading...
