Introducing security hardening features for Lenny (cont)

To: debian-devel-announce@lists.debian.org
Subject: Introducing security hardening features for Lenny (cont)
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Wed, 30 Jan 2008 00:37:28 +0100
Message-id: <[🔎] 20080129233728.GA6649@galadriel.inutil.org>
Mail-followup-to: debian-devel@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Moritz Muehlenhoff wrote:

> The Debian archive is the biggest of all distributions and although
> there's security support for all security issues being found, there's
> still room for improvement and a need for increased resilience against
> flaws not yet discovered.
>
> A group of people have been working on introducing advanced security
> hardening features into our archive:
> http://alioth.debian.org/projects/hardening/
>
> We recommend to activate the following features in individual packages
> for now and discuss how to enable them system-wide later. (Matthias
> Klose proposed a mechanism in debian-devel, which could be used for
> it: http://lists.debian.org/debian-devel/2007/12/msg00090.html).

Concern was voiced that this proposal may sound like a call to maintainers
to enable all these features directly. This was not our intention. At this
point we mostly want to introduce the available solutions. Whether there
will be an archive-wide global pre-selection of features and with which
features will of course depend on the testing of the respective maintainers
and discussions on debian-devel. Please participate in the discussion
if you're intested in that matter.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHn7KTXm3vHE4uyloRAommAJwKyNlc4B/+Gkc8SsY4EuIoP3WzAACeN4XL
Tych5TntCEobLJH+fKttpiI=
=l7DO
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: Introducing security hardening features for Lenny
Previous by thread: Introducing security hardening features for Lenny
Index(es):
- Date
- Thread