-
-
Notifications
You must be signed in to change notification settings - Fork 105
Home
Pages:
- Commit order and rebasing
- Extracting changes from PaX and grsecurity
- Out of scope features
- Upstream progress tracking
Note: early stub content moved from the Gentoo wiki, and does not yet reflect the project's goals or consensus. It's just brainstorming and isn't official documentation yet. Even the first sentence below is from before multiple people were involved and a repository existed. The code already contradicts it since it isn't just PaX / grsecurity features and will be doing a lot more of that. The default branch and tags are distinct from any upstreaming effort. That will be in topic branches, like the current fortify branch and the dozen tiny things that landed in upstream trees already. See https://github.com/thestinger/linux-hardened for something official, not this yet.
This community project does not have leaders per se. We are here to facilitate communication between different parties working on security features for the upstream Linux kernel.
| Contributor | Nickname | Role | Contact |
|---|---|---|---|
| Matt Brown | nmatt | Project Lead | matt at nmatt.com |
| r3g3x | r3g3x | Developer | |
| Kees Cook | kees | KSPP/Upstream Liaison, Developer | keescook at chromium.org |
| Daniel Micay | strcat / thestinger | CopperheadOS project lead, Arch Linux linux-hardened package maintainer (previously linux-grsec/linux-grsec-lts/gradm/paxd) | [email protected] |
Our goals are:
- Encourage and facilitate open source development of security features for the Linux kernel.
- Track progress of development work.
- Maintain a set of patches for security features that have not yet been merged into mainline.
- Remain distribution agnostic. We want to focus on patches that affect Linux directly.
- Work with the KSPP.
All are welcome!
- We need all the help we can get. Think you're lacking the skills? Feel like there's nothing you could do with your current skillset? Let us prove you wrong!
- Grsecurity archive: https://github.com/nmatt0/grsec-archive
- Grsecurity documentation: https://en.wikibooks.org/wiki/Grsecurity
- New to kernel development?: http://kernelnewbies.org/
- Kernel-hardening mailing list: http://www.openwall.com/lists/kernel-hardening/
Want to contribute to the project? Here is how to get started.
We do not have our own irc channel or mailing list. However we hangout/communicate in the following ways
-
Main IRC channel: ##linux-hardened (note the double #) on irc.freenode.net
-
Relevant IRC channels:
-
#pax on irc.oftc.net
-
#gentoo-hardened on irc.freenode.net
-
#droidsec on irc.freenode.net
-