Differences between revisions 15 and 16
Revision 15 as of 2011-09-23 08:22:44
Size: 2548
Comment: Add link to dpkg 1.16.1 announce mail (instructions)
Revision 16 as of 2011-09-27 19:48:30
Size: 2794
Editor: ?jmm_debian
Comment:
Deletions are marked like this. Additions are marked like this.
Line 8: Line 8:
 * [[http://bugs.debian.org/cgi-bin/pkgreport.cgi?which=tag&data=goal-hardening&archive=no|Bugs tagged with "goal-hardening"]]  * [[http://bugs.debian.org/cgi-bin/pkgreport.cgi?tag=goal-hardening;users=hardening-discuss@lists.alioth.debian.org|Bugs tagged with "goal-hardening" (used for enhancements/enabling flags in pkgs]]
 * [[http://bugs.debian.org/cgi-bin/pkgreport.cgi?tag=hardening;users=debian-qa@lists.debian.org|Hardening-triggered bugs filed by Debian QA from enabling dpkg-buildflags]]

Security Hardening Build Flags

Goal description

This goal is to update as many packages as possible to use security hardening build flags via dpkg-buildflags. These flags enable various protections against security issues such as stack smashing, predictable locations of values in memory, etc.

Current status

How to help

Relevant packages

  • all packages
  • all C/C++ packages
  • all packages handling untrusted data (network daemons, web browsers, pdf viewers etc.)

Other Information

Advocates

  • Kees Cook (kees@debian.org)

  • Moritz Mühlenhoff
  • Pierre Chifflier (pollux@debian org)
  • Nico Golde

Volunteers

  • Michael Gilbert (michael dot s dot gilbert at gmail dot com)
  • YvesAlexisPerez (corsac.debian.org)

  • Thijs Kinkhorst
  • bertagaz (bertagaz AT ptitcanardnoir.org)