The Funtoo Linux project has transitioned to "Hobby Mode" and this wiki is now read-only.
Difference between revisions of "Funtoo:Security"
m (fixed bullet list) |
(add tpm2 stub under construction to related security packages.) |
||
(24 intermediate revisions by 4 users not shown) | |||
Line 1: | Line 1: | ||
{{Project | {{Project | ||
|summary=We aim to increase the security and hardening of Funtoo for: Users, Developers and Funtoo itself. | |||
|Keywords=security | |Keywords=security | ||
|Project Category=Security | |Project Category=Security | ||
|members=tc, mrl5 | |leads=seemant | ||
|members=tc, mrl5, @invakid404 | |||
|contributors=@siris, @alex2101m, @Pnoecker, @coffnix | |||
|related pages=Secure Boot, Encrypted Root, Signed kernel module support, Rootfs over encrypted lvm, UEFI Secure Boot and SHIM, TPM2 | |||
|translate=yes | |||
|updates={{Project/Update | |||
|date=2022-07-26 | |||
|status=app-antivirus/lkrg - effective kernel rootkit detector available in security-kit | |||
}}{{Project/Update | |||
|date=2022-03-06 | |||
|status=app-admin/vulner - CVE scanner for packages installed by the portage available in security-kit | |||
}} | }} | ||
}} | |||
We aim to increase the security and hardening of Funtoo for: Users, Developers and Funtoo itself | |||
Users: We aim to keep current with public CVEs and release resolutions in a reasonable time. In the future we will audit installed packages to ensure that they meet reasonable security standards. | |||
Funtoo (Internal): we aim to keep Funtoo's own infrastructure secure and hardened | |||
Developers: If you are interested in security and hardening and would like to join our efforts, please let us know. We're looking for help in: SELinux, GrSecurity, kernel hardening, userland hardening, building security tools for Funtoo, anything we've overlooked, you can find us in the [https://discord.com/channels/629035601613684748/944671053362376734 #security channel on Discord]. | |||
=== Security bug tracker === | |||
We track Funtoo Linux security vulnerabilities (esp. vulnerable package versions) under dedicated [https://bugs.funtoo.org/secure/Dashboard.jspa#Filter-Results/13000 vulnerabilities page]. | |||
If you find some security related bug, you're encouraged to crate a Jira issue under "Security Vulnerability" category and/or let us know in the [https://discord.com/channels/629035601613684748/944671053362376734 #security channel on Discord] | |||
=== Related projects === | === Related projects === | ||
* [https://github.com/mrl5/vulner vulner] - discover CVEs for packages installed by the portage | |||
* https://github.com/mrl5/vulner | |||
== Status Updates == | |||
{{Project/UpdateList}} | |||
{{ProjectFooter}} | {{ProjectFooter}} |
Latest revision as of 03:37, January 9, 2023
app-antivirus/lkrg - effective kernel rootkit detector available in security-kit
26 July 2022
We aim to increase the security and hardening of Funtoo for: Users, Developers and Funtoo itself
Users: We aim to keep current with public CVEs and release resolutions in a reasonable time. In the future we will audit installed packages to ensure that they meet reasonable security standards.
Funtoo (Internal): we aim to keep Funtoo's own infrastructure secure and hardened
Developers: If you are interested in security and hardening and would like to join our efforts, please let us know. We're looking for help in: SELinux, GrSecurity, kernel hardening, userland hardening, building security tools for Funtoo, anything we've overlooked, you can find us in the #security channel on Discord.
Security bug tracker
We track Funtoo Linux security vulnerabilities (esp. vulnerable package versions) under dedicated vulnerabilities page.
If you find some security related bug, you're encouraged to crate a Jira issue under "Security Vulnerability" category and/or let us know in the #security channel on Discord
Related projects
- vulner - discover CVEs for packages installed by the portage
Status Updates
- 2022-07-26
- app-antivirus/lkrg - effective kernel rootkit detector available in security-kit
- 2022-03-06
- app-admin/vulner - CVE scanner for packages installed by the portage available in security-kit