Re: [kernel-hardening] Re: Linux Security Workgroup

[Corey Bryant <coreyb@linux.vnet.ibm.com>]

On 10/08/2012 04:00 PM, Kees Cook wrote:
> On Mon, Oct 8, 2012 at 10:52 AM, Corey Bryant <coreyb@linux.vnet.ibm.com> wrote:
>> Here's a start on the wiki.  There's not really a whole lot on it other than
>> what we've discussed on the list, but it's a start.  Comments and updates
>> are very much welcome.
>>
>> http://kernsec.org/wiki/index.php/Linux_Security_Workgroup
>
> Cool! This looks good.
>
> We may want to add a mailing list pointer to this top-level page, so
> people can find this list more directly.

Good idea, I've added this.

>
>> A couple of questions:
>>   * What should the work group's scope be?  The charter mentions " ...
>> on-going security verification of Linux kernel subsystems ... ".  I was
>> thinking it would focus more on items like: fuzzing, static analysis,
>> education for reviewing code, tooling/build security enhancements.  But I
>> have a feeling it will start to include Kernel development projects too.
>
> I think it should, yes. Finding bugs is, of course, important, but I'd
> like to have a single point of contact for development tasks too.
>

That's fine with me.  I just want to have a clear understanding more 
than anything.

>>   * Where should we document inactive, but desired, projects?  I know Kees
>> has https://wiki.ubuntu.com/SecurityTeam/Roadmap/KernelHardening but I'm
>> wondering if it makes sense to keep track of work items on the same wiki.
>
> I'll take a TODO to build up a Development section on the wiki and
> move things from the ubuntu wik

Awesome, thanks!

-- 
Regards,
Corey Bryant