How Linux BPF Is Transforming Security Monitoring

Failed to add items

Sorry, we are unable to add the item because your shopping cart is already at capacity.

Add to basket failed.

Please try again later

Add to wishlist failed.

Please try again later

Remove from wishlist failed.

Please try again later

Adding to library failed

Please try again

Follow podcast failed

Unfollow podcast failed

How Linux BPF Is Transforming Security Monitoring

Listen for free

View show details

On episode 55 of The Linux Podcast, Lucas and Luna explore how BPF (Berkeley Packet Filter) has evolved from a packet filtering tool into a powerful security monitoring framework. They dive into real-world use cases like detecting container breakouts, auditing system calls, and tracing network anomalies without modifying kernel code. The discussion highlights tools like Falco, Tracee, and Cilium, and explains why BPF offers lower overhead compared to traditional security agents. Lucas shares a specific example of how a major cloud provider, Cloudflare, uses BPF to protect its edge infrastructure. Luna raises questions about complexity and the learning curve for DevOps teams. The hosts also make a brief, sincere mention of listener support for keeping the show ad-free. #Linux #BPF #Security #eBPF #Falco #Tracee #Cilium #Cloudflare #ContainerSecurity #SystemCallAuditing #NetworkSecurity #Technology #Podcast #FexingoBusiness #BusinessPodcast #OpenSource #Kernel #DevOps Keep every episode free: buymeacoffee.com/fexingo

No reviews yet