• Partners
  • Support
  • Community
  • Ubuntu.com

Ubuntu Wiki

  • Immutable Page
  • Info
  • Attachments
  • Ubuntu Wiki
  • Login
  • Help

KnowledgeBase

Revision 14 as of 2009-03-21 14:41:29

Clear message

Ubuntu Security Team • Roadmap • Getting Involved • Knowledge Base • FAQ • Contacts

Contents

  1. Security updates
    1. Vulnerability Resources
    2. Update processes
    3. Update techniques
  2. Policies
  3. Features
  4. Problems

Security updates

Vulnerability Resources

  • Ubuntu CVE tracker

  • Common Vulnerabilities and Exposures (CVEs)

  • National Vulnerabilities Database

  • Open Source Software Security

Update processes

  • Security Update Procedures

  • StableReleaseUpdates/MicroReleaseExceptions

  • StableReleaseUpdates (SRU)

  • Backport Requests

Update techniques

  • How to prepare an updated package

  • How to handle backporting security updates
  • How to test the update

    • QA Regression Testing

    • Proof of Concept (PoC)
    • Build test suites (eg, 'make check')
  • ABI compatibility (eg, check-symbols, nm)
  • Checklists

Policies

  • Local denial of service (DoS) policy

  • Sudo (including root password) policy

  • Open network ports and local network privacy policy

  • Home directory permissions policy

  • Creating enforcing AppArmor profiles policy

Features

  • Security Hardening Compiler Flags

  • AppArmor Profiles

  • Applications Built with PIE

  • AppArmor docs

  • SELinux docs

Problems

  • DebuggingSecurity for bug reports

  • DebuggingApparmor for bug reports dealing with AppArmor profiles

CategorySecurityTeam

The material on this wiki is available under a free license, see Copyright / License for details.