admin
The Debian Project, being free software, handles security policy through public disclosure rather than through security through obscurity. Many advisories are coordinated with other free software vendors and are published the same day a vulnerability is made public. Debian has a security audit team that reviews the archive looking for new or unfixed security bugs. Debian also participates in security standardization efforts: the Debian security advisories are compatible with the Common Vulnerabilities and Exposures (CVE) dictionary, and Debian is represented in the Board of the Open Vulnerability and Assessment Language (OVAL) project.[37]
The Debian Project offers extensive documentation and tools to harden a Debian installation both manually and automatically
source :http://en.wikipedia.org/wiki/Debian
Posted in: Security information and policy
0 comments:
Post a Comment