注意:

The Funtoo Linux project has transitioned to "Hobby Mode" and this wiki is now read-only.

Difference between revisions of "Funtoo:Security"

From Funtoo
Jump to navigation Jump to search
(fix: show status updates)
(add tpm2 stub under construction to related security packages.)
 
(9 intermediate revisions by 2 users not shown)
Line 5: Line 5:
|leads=seemant
|leads=seemant
|members=tc, mrl5, @invakid404
|members=tc, mrl5, @invakid404
|contributors=@siris, @alex2101
|contributors=@siris, @alex2101m, @Pnoecker, @coffnix
|related pages=Secure Boot, Encrypted Root
|related pages=Secure Boot, Encrypted Root, Signed kernel module support, Rootfs over encrypted lvm, UEFI Secure Boot and SHIM, TPM2
|translate=yes
|translate=yes
|updates={{Project/Update
|updates={{Project/Update
|date=2022-07-26
|date=2022-07-26
|status=LKRG - effective kernel rootkit detector available in security-kit
|status=app-antivirus/lkrg - effective kernel rootkit detector available in security-kit
}}{{Project/Update
|date=2022-03-06
|status=app-admin/vulner - CVE scanner for packages installed by the portage available in security-kit
}}
}}
}}
}}
Line 24: Line 27:
We track Funtoo Linux security vulnerabilities (esp. vulnerable package versions) under dedicated [https://bugs.funtoo.org/secure/Dashboard.jspa#Filter-Results/13000 vulnerabilities page].
We track Funtoo Linux security vulnerabilities (esp. vulnerable package versions) under dedicated [https://bugs.funtoo.org/secure/Dashboard.jspa#Filter-Results/13000 vulnerabilities page].


If you find some security related bug you're encouraged to crate a Jira issue under "Security Vulnerability" category and/or let us know in the [https://discord.com/channels/629035601613684748/944671053362376734 #security channel on Discord]
If you find some security related bug, you're encouraged to crate a Jira issue under "Security Vulnerability" category and/or let us know in the [https://discord.com/channels/629035601613684748/944671053362376734 #security channel on Discord]


=== Related projects ===
=== Related projects ===


* https://github.com/mrl5/vulner
* [https://github.com/mrl5/vulner vulner] - discover CVEs for packages installed by the portage


== Status Updates ==
== Status Updates ==
{{Project/UpdateList}}
{{Project/UpdateList}}
{{ProjectFooter}}
{{ProjectFooter}}

Latest revision as of 03:37, January 9, 2023

   Summary
We aim to increase the security and hardening of Funtoo for: Users, Developers and Funtoo itself.
   People
Leads
  • seemant

Members
Contributors
  • @siris
  • @alex2101m
  • @Pnoecker
  • @coffnix
   Latest Status

app-antivirus/lkrg - effective kernel rootkit detector available in security-kit

26 July 2022

We aim to increase the security and hardening of Funtoo for: Users, Developers and Funtoo itself

Users: We aim to keep current with public CVEs and release resolutions in a reasonable time. In the future we will audit installed packages to ensure that they meet reasonable security standards.

Funtoo (Internal): we aim to keep Funtoo's own infrastructure secure and hardened

Developers: If you are interested in security and hardening and would like to join our efforts, please let us know. We're looking for help in: SELinux, GrSecurity, kernel hardening, userland hardening, building security tools for Funtoo, anything we've overlooked, you can find us in the #security channel on Discord.

Security bug tracker

We track Funtoo Linux security vulnerabilities (esp. vulnerable package versions) under dedicated vulnerabilities page.

If you find some security related bug, you're encouraged to crate a Jira issue under "Security Vulnerability" category and/or let us know in the #security channel on Discord

Related projects

  • vulner - discover CVEs for packages installed by the portage

Status Updates

2022-07-26
app-antivirus/lkrg - effective kernel rootkit detector available in security-kit
2022-03-06
app-admin/vulner - CVE scanner for packages installed by the portage available in security-kit