KnowledgeBase
Differences between revisions 7 and 23 (spanning 16 versions)
|
Size: 1749
Comment: converted to 1.6 markup
|
Size: 2969
Comment:
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 3: | Line 3: |
| ||<tablestyle="float:right; font-size: 0.9em; width:30%; background:#F1F1ED; background-repeat: no-repeat; background-position: 98% 0.5ex; margin: 0 0 1em 1em; padding: 0.5em;">'''Contents'''<<BR>><<TableOfContents>>|| {{{ This page is still very much place-holder. If you have time, please update it with more information. }}} |
||<tablestyle="float:right; font-size: 0.9em; width:30%; background:#F1F1ED; background-repeat: no-repeat; background-position: 98% 0.5ex; margin: 0 0 1em 1em; padding: 0.5em;"><<TableOfContents>>|| |
| Line 13: | Line 7: |
| === Announcements === * Official [[https://www.ubuntu.com/usn/|Ubuntu Security Announcements]] * Unofficial translations of Ubuntu Security Announcements: * [[http://blogs.media-tips.com/bernard.opic/category/ubuntu-security-notices/|French]] === Media coverage === Importantly, Ubuntu users should apply all security updates to their systems to be sure that their systems are secure. Sometimes vulnerabilities are highlighted by the media, so we've provided information on these vulnerabilities as part of our !KnowledgeBase: * [[https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/GHOST|GHOST (CVE-2015-0235)]] |
|
| Line 15: | Line 18: |
| * [[http://people.canonical.com/~ubuntu-security/cve/|Ubuntu CVE Tracker]] (web view) | |
| Line 20: | Line 24: |
| * [[SecurityUpdateProcedures| Security Update Procedures]] | * [[SecurityTeam/UpdateProcedures| Security Update Procedures]] |
| Line 26: | Line 30: |
| * [[https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures#Preparing%20an%20update|How to prepare an updated package]] | |
| Line 27: | Line 32: |
| * [[SecurityTeam/BuildEnvironment|schroot/sbuild setup]] * [[SecurityTeam/TestingEnvironment|virtual machine setup]] |
|
| Line 35: | Line 42: |
| (FAQ could link to Knowledge{{{}}}Base) * policy on local DoS * policy on root passwords/sudo * policy on open network ports * policy on sudo * policy on home directory permissions |
* [[SecurityTeam/Policies|Ubuntu Security Policies]] * [[ApparmorProfileMigration|Creating enforcing AppArmor profiles policy]] |
| Line 43: | Line 46: |
| * [[Security/Features|Feature Matrix]] (for all releases since Dapper, see the [[Security/Features/Historical|Historical Feature Matrix]].) * [[CompilerFlags|Security Hardening Compiler Flags]] * [[SecurityTeam/KnowledgeBase/AppArmorProfiles|AppArmor Profiles]] * [[SecurityTeam/KnowledgeBase/BuiltPIE|Applications Built with PIE]] |
|
| Line 45: | Line 52: |
== Process == * [[SecurityTeam/BugTriage|Bug Triage]] * [[SecurityTeam/ReleaseCycle|Release Cycle Actions]] |
Security updates
Announcements
Official Ubuntu Security Announcements
- Unofficial translations of Ubuntu Security Announcements:
Media coverage
Importantly, Ubuntu users should apply all security updates to their systems to be sure that their systems are secure. Sometimes vulnerabilities are highlighted by the media, so we've provided information on these vulnerabilities as part of our KnowledgeBase:
Vulnerability Resources
Ubuntu CVE Tracker (web view)
Update processes
StableReleaseUpdates (SRU)
Update techniques
- How to handle backporting security updates
- How to test the update
- Proof of Concept (PoC)
- Build test suites (eg, 'make check')
- ABI compatibility (eg, check-symbols, nm)
- Checklists
Policies
Features
Feature Matrix (for all releases since Dapper, see the Historical Feature Matrix.)
AppArmor docs
SELinux docs
Process
Problems
DebuggingSecurity for bug reports
DebuggingApparmor for bug reports dealing with AppArmor profiles
SecurityTeam/KnowledgeBase (last edited 2025-04-17 11:05:59 by yhontyk)