Security Team catch-all work for Lucid (medium)
This is a blueprint for the catch-all medium priority security features for Lucid.
Blueprint information
- Status:
- Started
- Approver:
- Robbie Williamson
- Priority:
- Medium
- Drafter:
- Jamie Strandboge
- Direction:
- Approved
- Assignee:
- Kees Cook
- Definition:
- Approved
- Series goal:
- Accepted for lucid
- Implementation:
-
Good progress
- Milestone target:
- None
- Started by
- Kees Cook
- Completed by
Related branches
Related bugs
Sprints
Whiteboard
Work items:
PIE evince: DONE
PIE firefox (bug 507744): DONE
reply to Debian criticism of fscaps handling: POSTPONED
refactor dpkg fscap handling: POSTPONED
resubmit dpkg fscaps handling to Debian: POSTPONED
merge upstream dosemu and remove mmap_min_addr sysctl.d file: DONE
create debconf question for wine's use of mmap_min_addr: DONE
clean up Wine's old sysctl.d files correctly: DONE
obtain a list of distros a partner vendor supports for a given app to encourage use of fortify, stack protector, etc: DONE
[mvo] provide an early notification of EOL in update-manager: POSTPONED
patch ssh to gain boolean to disable banner (http://
deroot auditd: POSTPONE
Work items ubuntu-
[jjohansen] change_profile pam_apparmor: POSTPONED
