Wishlist: Difference between revisions

From Alpine Linux
(Initial page outline)
 
(Project "Removing SUIDs/SGIDs" with a short synopsis.)
Line 18: Line 18:


= Hardening =
= Hardening =
== Removing SUIDs/SGIDs ==
It would be nice to see the elimination of these file permissions from Alpine. The reason for this is because throughout the years SUIDs/SGIDs have repeatedly been a source of exploits (esp. privilege escelation) for UNIX derivatives. It may be unfeasible or not unwise to completely ban these file permissions for all packages of Alpine but removing these permissions from Alpine base and X server has been proven to be doable and would provide safer Alpine systems out of the box.


= Packaging =
= Packaging =

Revision as of 05:46, 31 January 2015

This material is work-in-progress ...

Do not follow instructions here until this notice is removed.
(Last edited by Systmkor on 31 Jan 2015.)

Warning: This page is unofficial at the moment.


Project Wishlist

Ports

Security

Offensive

Defensive

Administration

Networks

Hardening

Removing SUIDs/SGIDs

It would be nice to see the elimination of these file permissions from Alpine. The reason for this is because throughout the years SUIDs/SGIDs have repeatedly been a source of exploits (esp. privilege escelation) for UNIX derivatives. It may be unfeasible or not unwise to completely ban these file permissions for all packages of Alpine but removing these permissions from Alpine base and X server has been proven to be doable and would provide safer Alpine systems out of the box.

Packaging

Builds

Automation

Testing

Metrics

Benchmarks

Community

Outreach

Publicity