BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//talks.staging.osgeo.org//foss4g-2022//speaker//BZLYD8
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-foss4g-2022-ZG7CUV@talks.staging.osgeo.org
DTSTART;TZID=CET:20220826T100500
DTEND;TZID=CET:20220826T101000
DESCRIPTION:The GeoNode\, according to the project's website\, is a platfor
 m for managing and publishing geospatial data. It brings together mature a
 nd stable open source software projects into a consistent\, easy-to-use in
 terface\, allowing non-specialist users to share data and create interacti
 ve maps. In Brazil there is a growing use of GeoNode\, observed mainly in 
 governmental institutions and universities. One of the main ways of instal
 ling and configuring GeoNode is the so-called Geonode Project. It consists
  of a custom Django Project template\, which contains\, in addition to the
  main project files\, a set of Dockerfiles of GeoNode components\, such as
  GeoServer\, Nginx (reverse proxy) and PostGIS. From a detailed analysis o
 f the components of the GeoNode Project created\, it was found that the or
 iginal dockerfiles contain a series of security holes and also unnecessary
  packages for the execution of the stack\, not recommended for production 
 environments. A Dockerfile that follows best practices eliminates the need
  to run privileged containers (as root)\, the use of unnecessary packages\
 , leaked credentials\, like mail passwords or database DSNs\, or anything 
 that could be used for an attack. Removing known risks in advance will red
 uce security management work and service overhead. The objective of this t
 alk corresponds to discuss the possible security holes found in the Geonod
 e Project and\, with the application of best practices in Dockerfiles\, to
  make it leaner and safer for production environments. For demonstration p
 urposes\, there will have a project to be used as an example and will be h
 osted at https://github.com/geonode-br/hardening-geonode-docker.
DTSTAMP:20260405T025445Z
LOCATION:Modulo 0
SUMMARY:Hardening a GeoNode Project – Some considerations about container
  security and optimization - Carlos Eduardo Mota
URL:https://talks.staging.osgeo.org/foss4g-2022/talk/ZG7CUV/
END:VEVENT
END:VCALENDAR