• Speaker: Joshua Loscar
• Room: CC 202
• Time: Sun 2:00 pm – 3:30 pm

• Format: Hands-on Lab (90 min)
• Difficulty: Introductory
• Track: Security / Privacy
• Additional Tags: DevOps, Self-Hosting
• Presenter Location: In-person
• Experience: first time speaking / several-th time speaking
• At: anywhere / at lfnw

In an era of increasingly sophisticated cyber threats, securing Linux systems is more important than ever. This hands‑on lab introduces a triple‑threat approach to Linux hardening using three foundational security tools:

• SELinux — Implements Mandatory Access Control (MAC) to enforce strict policy‑based access
• Fapolicyd — A user‑space daemon that enhances file access control and prevents unauthorized execution
• Auditd — Logs and monitors system calls and user activity for visibility and compliance

Participants will learn how these tools complement each other to form a comprehensive security strategy. The lab covers installation, configuration, and practical usage, showing how to:

• Build a strong security foundation for Linux infrastructure
• Meet compliance requirements (C