The Funtoo Linux project has transitioned to "Hobby Mode" and this wiki is now read-only.
Difference between revisions of "Funtoo:Security"
(added new section for security bug tracker) |
(add tpm2 stub under construction to related security packages.) |
||
(11 intermediate revisions by 2 users not shown) | |||
Line 5: | Line 5: | ||
|leads=seemant | |leads=seemant | ||
|members=tc, mrl5, @invakid404 | |members=tc, mrl5, @invakid404 | ||
|contributors=@siris, @ | |contributors=@siris, @alex2101m, @Pnoecker, @coffnix | ||
|related pages=Secure Boot, Encrypted Root | |related pages=Secure Boot, Encrypted Root, Signed kernel module support, Rootfs over encrypted lvm, UEFI Secure Boot and SHIM, TPM2 | ||
|translate=yes | |translate=yes | ||
|updates={{Project/Update | |||
|date=2022-07-26 | |||
|status=app-antivirus/lkrg - effective kernel rootkit detector available in security-kit | |||
}}{{Project/Update | |||
|date=2022-03-06 | |||
|status=app-admin/vulner - CVE scanner for packages installed by the portage available in security-kit | |||
}} | |||
}} | }} | ||
We aim to increase the security and hardening of Funtoo for: Users, Developers and Funtoo itself | We aim to increase the security and hardening of Funtoo for: Users, Developers and Funtoo itself | ||
Line 20: | Line 27: | ||
We track Funtoo Linux security vulnerabilities (esp. vulnerable package versions) under dedicated [https://bugs.funtoo.org/secure/Dashboard.jspa#Filter-Results/13000 vulnerabilities page]. | We track Funtoo Linux security vulnerabilities (esp. vulnerable package versions) under dedicated [https://bugs.funtoo.org/secure/Dashboard.jspa#Filter-Results/13000 vulnerabilities page]. | ||
If you find some security related bug you're encouraged to crate a Jira issue under "Security Vulnerability" category and/or let us know in the [https://discord.com/channels/629035601613684748/944671053362376734 #security channel on Discord] | If you find some security related bug, you're encouraged to crate a Jira issue under "Security Vulnerability" category and/or let us know in the [https://discord.com/channels/629035601613684748/944671053362376734 #security channel on Discord] | ||
=== Related projects === | === Related projects === | ||
* https://github.com/mrl5/vulner | * [https://github.com/mrl5/vulner vulner] - discover CVEs for packages installed by the portage | ||
== Status Updates == | == Status Updates == | ||
{{Project/UpdateList}} | {{Project/UpdateList}} | ||
{{ProjectFooter}} | {{ProjectFooter}} |
Latest revision as of 03:37, January 9, 2023
app-antivirus/lkrg - effective kernel rootkit detector available in security-kit
26 July 2022
We aim to increase the security and hardening of Funtoo for: Users, Developers and Funtoo itself
Users: We aim to keep current with public CVEs and release resolutions in a reasonable time. In the future we will audit installed packages to ensure that they meet reasonable security standards.
Funtoo (Internal): we aim to keep Funtoo's own infrastructure secure and hardened
Developers: If you are interested in security and hardening and would like to join our efforts, please let us know. We're looking for help in: SELinux, GrSecurity, kernel hardening, userland hardening, building security tools for Funtoo, anything we've overlooked, you can find us in the #security channel on Discord.
Security bug tracker
We track Funtoo Linux security vulnerabilities (esp. vulnerable package versions) under dedicated vulnerabilities page.
If you find some security related bug, you're encouraged to crate a Jira issue under "Security Vulnerability" category and/or let us know in the #security channel on Discord
Related projects
- vulner - discover CVEs for packages installed by the portage
Status Updates
- 2022-07-26
- app-antivirus/lkrg - effective kernel rootkit detector available in security-kit
- 2022-03-06
- app-admin/vulner - CVE scanner for packages installed by the portage available in security-kit