dc7 - 1.0
DebConf7
| Speakers | |
|---|---|
|
Micah Anderson |
|
Moritz Mühlenhoff |
| Schedule | |
|---|---|
| Day | 11 |
| Room | Upper Talk Room |
| Start time | 14:00 |
| Duration | 02:00 |
| Info | |
| ID | 66 |
| Event type | Lecture |
| Track | DebConf |
| Language | English |
| Feedback | |
|---|---|
|
Did you attend this event? Give Feedback |
Security Support in Debian
The Good, the Bad and the Ugly
The talk will provide a review of security support in Debian and propose improvements in handling & infrastructure. It will also debunk some myths about security support in Debian and what maintainers need to do to fix vulnerabilities in a timely manner. It even includes a fancy graph.
Brief overview:
- Review of the current security support in Debian
- Comparison with other distributions
- Proposed improvements
- Scalability with archive growth
- Supportability of applications over a full stable cycle
- Best practices to act as a maintainer wrt security support
- Introduction about the Security tracker
- Introduction of debsecan
- Possibility of enterprise security support life cycles
- Security support for kernel/X11
- How to prevent junk entering the archive
- State of testing security support and proposed fixes
- Embedded code copies
- Potential security hardening features in mainline
- Overview about static analysis security tools
- Possibly more