KnowledgeBase
Differences between revisions 3 and 7 (spanning 4 versions)
|
Size: 968
Comment:
|
Size: 1749
Comment: converted to 1.6 markup
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 1: | Line 1: |
| [[Include(SecurityTeam/Header)]] | <<Include(SecurityTeam/Header)>> |
| Line 3: | Line 3: |
| ||<tablestyle="float:right; font-size: 0.9em; width:30%; background:#F1F1ED; background-repeat: no-repeat; background-position: 98% 0.5ex; margin: 0 0 1em 1em; padding: 0.5em;">'''Contents'''[[BR]][[TableOfContents]]|| | ||<tablestyle="float:right; font-size: 0.9em; width:30%; background:#F1F1ED; background-repeat: no-repeat; background-position: 98% 0.5ex; margin: 0 0 1em 1em; padding: 0.5em;">'''Contents'''<<BR>><<TableOfContents>>|| |
| Line 8: | Line 8: |
| This page is still very much place-holder. If you have time, please update it with more information. | This page is still very much place-holder. If you have time, please update it with more information. |
| Line 11: | Line 11: |
| == Security updates == | |
| Line 12: | Line 13: |
| * security updates * [:SecurityUpdateProcedures: Security Update Procedures] * Ubuntu CVE tracker link * mitre * NVD * oss-security link * Policies (FAQ could link to Knowledge{{{}}}Base) * policy on local DoS * policy on root passwords/sudo * policy on open network ports * policy on sudo * policy on home directory permissions * AppArmor docs * SELinux docs |
=== Vulnerability Resources === * [[https://launchpad.net/ubuntu-cve-tracker|Ubuntu CVE tracker]] * [[http://cve.mitre.org|Common Vulnerabilities and Exposures]] (CVEs) * [[http://nvd.nist.gov/nvd.cfm|National Vulnerabilities Database]] * [[http://oss-security.openwall.org|Open Source Software Security]] === Update processes === * [[SecurityUpdateProcedures| Security Update Procedures]] * [[StableReleaseUpdates/MicroReleaseExceptions]] * [[StableReleaseUpdates]] (SRU) * [[https://help.ubuntu.com/community/UbuntuBackports|Backport Requests]] === Update techniques === |
| Line 27: | Line 27: |
| * good upstream patches * micro release * SRU * -backports * [:DebuggingSecurity] for bug reports |
* How to test the update * [[https://code.launchpad.net/~ubuntu-bugcontrol/qa-regression-testing/master|QA Regression Testing]] * Proof of Concept (PoC) * Build test suites (eg, 'make check') * ABI compatibility (eg, check-symbols, nm) * Checklists == Policies == (FAQ could link to Knowledge{{{}}}Base) * policy on local DoS * policy on root passwords/sudo * policy on open network ports * policy on sudo * policy on home directory permissions == Features == * [[AppArmor]] docs * [[SELinux]] docs == Problems == * [[DebuggingSecurity]] for bug reports * [[DebuggingApparmor]] for bug reports dealing with [[AppArmor]] profiles |
Contents |
This page is still very much place-holder. If you have time, please update it with more information.
Security updates
Vulnerability Resources
Update processes
StableReleaseUpdates (SRU)
Update techniques
- How to handle backporting security updates
- How to test the update
- Proof of Concept (PoC)
- Build test suites (eg, 'make check')
- ABI compatibility (eg, check-symbols, nm)
- Checklists
Policies
(FAQ could link to KnowledgeBase)
- policy on local DoS
- policy on root passwords/sudo
- policy on open network ports
- policy on sudo
- policy on home directory permissions
Features
Problems
DebuggingSecurity for bug reports
DebuggingApparmor for bug reports dealing with AppArmor profiles
SecurityTeam/KnowledgeBase (last edited 2023-08-25 14:36:54 by rodrigo-zaiden)