Vip Call Girls Noida ➡️ Delhi ➡️ 9999965857 No Advance 24HRS Live
OPNFV Security Panel
1. OPNFV Security Group
Luke Hinds
Security Group Project Lead
Principle Security Architect @ Nokia Networks
2. Overview
• Founded Jan 22, 2015
• Four members! (room for more)
• Improve OPNFV security through documentation,
code / design review, upstream inter-work.
• An ‘umbrella’ group to encourage development of
security within the OPNFV eco-system.
• Effectively handle vulnerability and threats in a co-
ordinated manner.
2
6. Secure Coding – what we check for..
Shell Executions:
>>> from subprocess import call
>>> filename = input("What file would you like to display?n")
What file would you like to display?
non_existent; rm -rf importantFiles #
>>> call("cat " + filename, shell=True)
6
7. Secure Coding – what we check for..
Permissions:
with open('testfile.txt', 'w') as fout:
fout.write("secrets!")
flags = os.O_WRONLY | os.O_CREAT | os.EXLC
with os.fdopen(os.open('testfile.txt', flags,
0600), 'w') as fout:
fout.write("secrets!")
7
Defaults to OS permissions
Can be read by All!
Only the user has read
permissions