Project:Security

Gentoo Security Project
Description	The Gentoo Security Project's mission is to ensure that vulnerabilities in software accessible through the Portage tree are found and fixed in a timely manner, so that our users remain protected against known vulnerabilities.
Project email	security@gentoo.org
IRC channel	#gentoo-security
Lead(s)	Christopher Díaz Riveros (ChrisADR) Team lead Kristian Fiskerstrand (k_f) Team lead Last elected: 2018/03/26
Member(s)	Sean Amoss (ackle) GLSA Coordinator Yury German (blueknight) GLSA Coordinator Aaron Bauman (bman) GLSA Coordinator Chris Reffett (creffett) GLSA Coordinator Sergey Popov (Pinkbyte) GLSA Coordinator Jason A. Donenfeld (zx2c4) Code review, vulnerability discovery, hardening Thomas Deutschmann (Whissi) GLSA Coordinator Mikle Kolyada (Zlogene) GLSA Coordinator
Subproject(s) (and inherited member(s))	Gentoo Linux Kernel Security Project Gentoo Linux Security Audit Project
Parent Project	Gentoo
Project listing

Contributors

The following Gentoo developers are not part of the team, but we would like to acknowledge their contributions to the project:

Contributor	Nickname	Contribution
Agostino Sarubbo	Agostino Sarubbo (ago)	Security Bug Coordination
Paweł Hajdan	Paweł Hajdan, Jr. (phajdan.jr)	GLSA Coordination: Chromium, V8
Ned Ludd	solar	Security patches, Auditing
Mike Frysinger	Mike Frysinger (vapier)	Security patches

Padawans

The following individuals are moving through the Padawans process towards becoming members of the Security Project.

Padawan	Nickname	Rank	Mentor
Da'juan McDonald	domhnall	Scout	Aaron Bauman (bman)
Michael Boyle	Michael Boyle (Irishluck83)	Apprentice	Aaron Bauman (bman)

Meetings

The following meetings have been held so far by the Gentoo Linux Security project:

Gentoo Security Project Meeting 2018-09-02 ( Log )
Gentoo Security Project Meeting 2018-07-29 ( Log )
Gentoo Security Project Meeting 2018-06-24 ( Log )
Gentoo Security Project Meeting 2018-06-03 ( Log )
Gentoo Security Project Meeting 2018-04-21 ( Log )
Gentoo Security Project Meeting 2018-02-18 ( Log )
Gentoo Security Project Meeting 2010-09-01 ( Log , Summary)
Gentoo Security Project Meeting 2008-07-14 ( Log , Summary)

Recruitment

We are currently looking for users interested in helping the project with these jobs:

Title	Description	Requirements	Contact
GLSA Coordinators	Helping with the coordination of security bugs and GLSAs. More information to get in touch can be found on the Security Project page and in the linked ressouces.	Strong interest in security matters and good knowledge of written English. A professional security background is not required at all.	security@gentoo.org

Arch security liaisons

Architecture	Security liaison
alpha	Tobias Klausmann (Klausmann)
amd64	Agostino Sarubbo (ago) , Tony Vroon (Chainsaw)
ppc	Anthony G. Basile (blueness)
ppc64	Anthony G. Basile (blueness)

Becoming a Gentoo Security developer

How to join the team

To participate in the Gentoo Linux Security Project first send an email presenting yourself to the security team at security@gentoo.org and sign yourself up a Bugzilla account. You may be able to talk to one of our security developers and/or users in the IRC channel #gentoo-security on irc.freenode.net for more information or just to chat about the security state of existing projects.

The Padawans page explains the entire recruitment process in full detail.

If you want to help us with the creation and coordination of GLSAs, you should read the GLSA Coordinators Guide to see what it takes to be a GLSA Coordinator.

Note
If you don't have the ability to actively help by contributing work we will always need testers to maintain the security and stability of the overall project. All development, testing, productive comments, and feedback are greatly appreciated.

Resources

The Security Project offers several resources for varying target audiences.

Resources aimed at the general public include:

Resources aimed at new padawans include:

Resources aimed at advanced padawans and team members include: