Gentoo Linux Security Project
1.
Project Description
The Gentoo Linux Security Project's mission is to
ensure that vulnerabilities in software accessible through the Portage tree
are found and fixed in a timely manner, so that our users remain protected
against known vulnerabilities.
2.
Developers
| Developer |
Nickname |
Role |
| Alex Legler |
a3li |
Lead ( Operational manager ) |
| Tobias Heinlein |
keytoaster |
Lead ( Operational manager ) |
| Sean Amoss |
ackle |
Member ( GLSA Coordinator ) |
| Stefan Behte |
craig |
Member ( GLSA Coordinator ) |
| Sune Kloppenborg Jeppesen |
jaervosz |
Member ( GLSA Coordinator ) |
| Tim Sammut |
underling |
Member ( GLSA Coordinator ) |
All developers can be reached by e-mail using nickname@gentoo.org.
3.
Contributors
The following Gentoo developers and staff are not part of the team,
but we would like to acknowledge their contributions to the project:
| Contributor |
Nickname |
Contribution |
| Agostino Sarubbo |
ago |
Security Bug Coordination |
| Paweł Hajdan |
phajdan.jr |
GLSA Coordination: Chromium, V8 |
| Ned Ludd |
solar |
Security patches, Auditing |
| Mike Frysinger |
vapier |
Security patches |
4.
Padawans
The following individuals are moving through the Padawans process towards becoming
members of the Security Project.
| Padawan |
Nickname |
Rank |
| Michael Harrison |
n0idx80 |
Apprentice |
5.
Meetings
The following meetings have been held so far by the Gentoo Linux Security
project:
- Gentoo Security Project Meeting 2010-09-01 (Log,
Summary)
- Gentoo Security Project Meeting 2008-07-14 (Log,
Summary)
6.
Recruitment
We are currently looking for users interested in helping the project with
the following jobs:
GLSA Coordinators
- Job description
- Helping with the coordination of security bugs and GLSAs. More
information on the recruitment process can be found
further
down on the project page.
- Contact
-
security@gentoo.org
Kernel Security Coordination
- Contact
-
security@gentoo.org
7.
Subprojects
The security
project has the following subprojects:
| Project |
Lead |
Description |
|
Kernel
|
|
The Kernel Security subproject is tasked with keeping all kernel sources secure. |
|
Auditing
|
|
Preventive security audit of packages in the Portage tree. |
8.
Arch Security Liaisons
| Architecture |
Security liaison |
| alpha |
armin76, klausman |
| amd64 |
ago, chainsaw |
| hppa |
jer |
| ppc |
josejx, ranger |
| ppc64 |
josejx, ranger |
| sparc |
armin76, tcunha |
| x86 |
jdhore |
9.
Release Engineering Security Liaison
The current Release Engineering Security liaison is pva.
10.
Becoming a Gentoo Security developer
How to join the team
To participate in the Gentoo Linux Security Project first join the
mailing list at
gentoo-security@gentoo.org
and sign yourself
up a Bugzilla
account. You may be able to talk to one of our security
developers and/or users in the IRC channel #gentoo-security
on irc.freenode.net for more information or just to chat about
the security state of existing projects.
The Padawans page explains
the entire recruitment process in full detail.
If you want to help us with the creation and coordination of GLSAs, you
should read the GLSA
Coordinators Guide to see what it takes to be a GLSA
Coordinator.
Note:
If you don't have the ability to actively help by contributing work
we will always need testers to maintain the security and stability
of the overall project. All development, testing, and productive
comments and feedback is greatly appreciated.
|
11.
Resources
Resources offered by the
security
project are:
|
