Automated vulnerability patching at scale in Debian



In this presentation, I will delve into an innovative approach to automating the patching and mitigation of vulnerabilities across systems of any scale. By doing so, we bolster security measures and effectively reduce the potential attack surface. A key emphasis will be on achieving this outcome seamlessly, ensuring that it remains non-intrusive to prevent any disruptive downtime.

Illustrating these concepts within the context of an organization dealing with significant internet traffic, like Flipkart, which operates as a major player in India’s E-commerce sector, we’ll uncover the intricacies of orchestrating large-scale vulnerability mitigation through the utilization of open-source software.

Furthermore, we will delve into the critical facet of managing restarts for dependent services, offering a comprehensive overview of the impact this solution can have. Attendees can expect to gain valuable insights, culminating in a live demonstration that showcases the application of these techniques. Ultimately, I will provide practical guidance and key takeaways, enabling others to replicate this success within their own organizations, regardless of size.

About the speaker

T K Sourab

Sourab is a part of the system engineering team at Flipkart developing system softwares across wide area of applications such as virtualization, benchmarking, pipelines, etc Sourab previously worked for Red Hat improving ebpf networking performance, pBench, quisby, foreman etc. He has also been part of various communities such as Pydelhi, ILUG-D. He has organised monthly meetups and workshops increasing awareness and adoption of open source software.

Want to discuss?
Post it here, our mentors will help you out.