KnowledgeBase

Differences between revisions 4 and 5
Revision 4 as of 2008-03-27 19:23:56
Size: 1037
Editor: c-76-105-157-155
Comment:
Revision 5 as of 2008-03-27 21:37:56
Size: 1688
Editor: mail
Comment:
Deletions are marked like this. Additions are marked like this.
Line 11: Line 11:
== Security updates ==
Line 12: Line 13:
 * security updates
  * [:SecurityUpdateProcedures: Security Update Procedures]
  * [https://launchpad.net/ubuntu-cve-tracker Ubuntu CVE tracker]
  * [http://mitre.org/ mitre] CVE
  * NVD
  * oss-security link
 * Policies (FAQ could link to Knowledge{{{}}}Base)
  * policy on local DoS
  * policy on root passwords/sudo
  * policy on open network ports
  * policy on sudo
  * policy on home directory permissions
=== Vulnerability Resources ===
 * [https://launchpad.net/ubuntu-cve-tracker Ubuntu CVE tracker]
 * [http://cve.mitre.org Common Vulnerabilities and Exposures] (CVEs)
 * [http://nvd.nist.gov/nvd.cfm National Vulnerabilities Database]
 * [http://oss-security.openwall.org Open Source Software Security]

=== Update processes ===
 * [:SecurityUpdateProcedures: Security Update Procedures]
 * [:StableReleaseUpdates/MicroReleaseExceptions]
 * [:StableReleaseUpdates] (SRU)
 * [:BackportRequestProcess]

=== Update techniques ===
 * How to handle backporting security updates
 * How to test the update
  * [https://code.launchpad.net/~ubuntu-bugcontrol/qa-regression-testing/master QA Regression Testing]
  * Proof of Concept (PoC)
  * Build test suites (eg, 'make check')
 * ABI compatibility (eg, check-symbols, nm)
 * Checklists

== Policies ==
(FAQ could link to Knowledge{{{}}}Base)
 * policy on local DoS
 * policy on root passwords/sudo
 * policy on open network ports
 * policy on sudo
 * policy on home directory permissions

== Features ==
Line 26: Line 45:
 * How to handle backporting security updates
  * good upstream patches
  * micro release
  * SRU
  * -backports

== Problems ==
Line 32: Line 48:
 * [:DebuggingApparmor] for bug reports dealing with ["AppArmor"] profiles

Include(SecurityTeam/Header)

This page is still very much place-holder.  If you have time, please update it with more information.

Security updates

Vulnerability Resources

Update processes

Update techniques

Policies

(FAQ could link to KnowledgeBase)

  • policy on local DoS
  • policy on root passwords/sudo
  • policy on open network ports
  • policy on sudo
  • policy on home directory permissions

Features

Problems


CategorySecurityTeam

SecurityTeam/KnowledgeBase (last edited 2021-03-02 18:41:11 by sbeattie)