You run Postgres in production. And one of the reasons is that it’s Open Source. So you can inspect the source code of what you are running, right? Right????
Maybe it’s not that obvious. Where did you get that binary from? Who compiled it? With what compiler, dependent libraries, of which versions? Where did that source code come from? Along all the supply chain, has any component been replaced by others or infected by malware? Xz anyone?
If you are ready to swallow the red pill, join this session to understand that you probably don’t know which Postgres are running, and worse you are likely not able to reproduce the binary you are running.
Enter the world of Postgres and reproducible builds. And SBOMs. And supply chain attacks. And hermetic builds. And all the terminology that is necessary to understand and build a truly secure and reproducible Postgres build.
Last but not least, a new fully open source Postgres distribution will be demonstrated live, built after all these principles.
Which Postgres are you running?
Alvaro Hernandez
OnGres
2024-11-08 14:00:00 - AUDITORIO 2
You run Postgres in production. And one of the reasons is that it’s Open Source. So you can inspect the source code of what you are running, right? Right???? Maybe it’s not that obvious. Where did you get that binary from? Who compiled it? With what compiler, dependent libraries, of which versions? Where did that source code come from? Along all the supply chain, has any component been replaced by others or infected by malware? Xz anyone? If you are ready to swallow the red pill, join this session to understand that you probably don’t know which Postgres are running, and worse you are likely not able to reproduce the binary you are running. Enter the world of Postgres and reproducible builds. And SBOMs. And supply chain attacks. And hermetic builds. And all the terminology that is necessary to understand and build a truly secure and reproducible Postgres build. Last but not least, a new fully open source Postgres distribution will be demonstrated live, built after all these principles.