2025-09-04, 17:00–17:30 (Europe/Budapest), Auditorium
Have you ever thought about security when opening a sample from a Bugzilla ticket or trying out some new library? Experienced developers often assume, that every programmer knows the necessary things about security. But rarely does anyone take the time to guide young developers into this topic and it's various aspects. This talk will give an introduction about risks and how to handle them in a convenient way when programming. From how to improve your devices and accounts security to the LibreOffice supply chain to the security impact of the LibreOffice users.
This talk intends to give developers pragmatic starting points about what to think in terms of security. But it'll also cover some handy FOSS tools to actually strengthen security. It will be shown how virtualization, Linux namespaces and containerization tools can be leveraged. As well as what to look for when importing a new library or using new development tools you found "lying at the roadside of the Internet". But we'll also shed some light on how you as a developer influence the security of people who use your software and how to secure your devices and accounts properly.
Moritz is working at Allotropia / Collabora as Senior Developer for web app integration of Collabora Online and ZetaOffice-JS. He's focusing on bringing APIs for WASM and server based LibreOffice into web development. And Free Software communities, hacker culture & conferences have been a part of his life since 20+ years and he has an extensive history of DevOps and multilingual programming experience. He likes to use his favorite rock solid Debian GNU/Linux to do everything from running web servers to development to gaming, including SuperTuxKart ;-) And as a student researcher in Hamburg he build multicast technology on OpenWRT. Also he's worked many years with all kinds of FOSS as Leading Developer & Technical Product Manager for IT security solutions, so he also has a strong focus towards keeping systems safe.