Difference between revisions of "Funtoo:Security"

From Funtoo
Jump to navigation Jump to search
m (fixed bullet list)
(add tpm2 stub under construction to related security packages.)
 
(24 intermediate revisions by 4 users not shown)
Line 1: Line 1:
{{Project
{{Project
|summary=We aim to increase the security and hardening of Funtoo for: Users, Developers and Funtoo itself.
|Keywords=security
|Keywords=security
|Project Category=Security
|Project Category=Security
|members=tc, mrl5
|leads=seemant
|members=tc, mrl5, @invakid404
|contributors=@siris, @alex2101m, @Pnoecker, @coffnix
|related pages=Secure Boot, Encrypted Root, Signed kernel module support, Rootfs over encrypted lvm, UEFI Secure Boot and SHIM, TPM2
|translate=yes
|updates={{Project/Update
|date=2022-07-26
|status=app-antivirus/lkrg - effective kernel rootkit detector available in security-kit
}}{{Project/Update
|date=2022-03-06
|status=app-admin/vulner - CVE scanner for packages installed by the portage available in security-kit
}}
}}
}}
We aim to increase the security and hardening of Funtoo for: Users, Developers and Funtoo itself
Users: We aim to keep current with public CVEs and release resolutions in a reasonable time.  In the future we will audit installed packages to ensure that they meet reasonable security standards.
Funtoo (Internal): we aim to keep Funtoo's own infrastructure secure and hardened
Developers: If you are interested in security and hardening and would like to join our efforts, please let us know. We're looking for help in: SELinux, GrSecurity, kernel hardening, userland hardening, building security tools for Funtoo, anything we've overlooked, you can find us in the [https://discord.com/channels/629035601613684748/944671053362376734 #security channel on Discord].
=== Security bug tracker ===
We track Funtoo Linux security vulnerabilities (esp. vulnerable package versions) under dedicated [https://bugs.funtoo.org/secure/Dashboard.jspa#Filter-Results/13000 vulnerabilities page].
If you find some security related bug, you're encouraged to crate a Jira issue under "Security Vulnerability" category and/or let us know in the [https://discord.com/channels/629035601613684748/944671053362376734 #security channel on Discord]
=== Related projects ===
=== Related projects ===
* https://www.funtoo.org/Secure_Boot
 
* https://www.funtoo.org/Encrypted_Root
* [https://github.com/mrl5/vulner vulner] - discover CVEs for packages installed by the portage
* https://github.com/mrl5/vulner
 
== Status Updates ==
{{Project/UpdateList}}
{{ProjectFooter}}
{{ProjectFooter}}

Latest revision as of 03:37, January 9, 2023

   Summary
We aim to increase the security and hardening of Funtoo for: Users, Developers and Funtoo itself.
   People
Leads
  • seemant

Members
Contributors
  • @siris
  • @alex2101m
  • @Pnoecker
  • @coffnix
   Latest Status

app-antivirus/lkrg - effective kernel rootkit detector available in security-kit

26 July 2022

We aim to increase the security and hardening of Funtoo for: Users, Developers and Funtoo itself

Users: We aim to keep current with public CVEs and release resolutions in a reasonable time. In the future we will audit installed packages to ensure that they meet reasonable security standards.

Funtoo (Internal): we aim to keep Funtoo's own infrastructure secure and hardened

Developers: If you are interested in security and hardening and would like to join our efforts, please let us know. We're looking for help in: SELinux, GrSecurity, kernel hardening, userland hardening, building security tools for Funtoo, anything we've overlooked, you can find us in the #security channel on Discord.

Security bug tracker

We track Funtoo Linux security vulnerabilities (esp. vulnerable package versions) under dedicated vulnerabilities page.

If you find some security related bug, you're encouraged to crate a Jira issue under "Security Vulnerability" category and/or let us know in the #security channel on Discord

Related projects

  • vulner - discover CVEs for packages installed by the portage

Status Updates

2022-07-26
app-antivirus/lkrg - effective kernel rootkit detector available in security-kit
2022-03-06
app-admin/vulner - CVE scanner for packages installed by the portage available in security-kit