* [gentoo-commits] gentoo commit in xml/htdocs/proj/en/hardened/integrity: index.xml
@ 2012-07-26 7:34 Sven Vermeulen (swift)
0 siblings, 0 replies; 9+ messages in thread
From: Sven Vermeulen (swift) @ 2012-07-26 7:34 UTC (permalink / raw
To: gentoo-commits
swift 12/07/26 07:34:20
Added: index.xml
Log:
Adding integrity subproject
Revision Changes Path
1.1 xml/htdocs/proj/en/hardened/integrity/index.xml
file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.1&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.1&content-type=text/plain
Index: index.xml
===================================================================
<?xml version="1.0" encoding="UTF-8"?>
<?xml-stylesheet href="/xsl/project.xsl" type="text/xsl"?>
<?xml-stylesheet href="/xsl/guide.xsl" type="text/xsl"?>
<!DOCTYPE project SYSTEM "/dtd/project.dtd">
<project>
<name>Integrity</name>
<longname>System Integrity, Compliance and Reporting</longname>
<description>
The integrity subproject aims to integrate and maintain technologies related to
system integrity within Gentoo Hardened. Its first focus will be on the
Linux IMA/EVM implementation.
</description>
<longdescription>
<p>
This project will support the Linux IMA/EVM technology within Gentoo Linux.
It will support the necessary kernel patches, utilities and documentation to
make integrity checks, compliance and reporting available to the wider public.
The primary focus is to prevent offline tampering of files and images: when
this occurs, the boot-up of the system detects the tampering and refuses to
load further (or report this to the administrator). Online tampering
detection is a second step.
</p>
<p>
Next to the integrity subsystem within Linux (IMA/EVM), this project will
also support the various trusted computing technologies (such as TPM
support) through well-documented guides and tools.
</p>
</longdescription>
<goals>
<p>
The main goal of this project is to support all integrity-related technologies
in Gentoo Linux, offering good integration, tools and documentation to help
users in setting up a more secure, managed environment, fully in line with
the Gentoo Hardened vision.
</p>
</goals>
<dev role="lead">SwifT</dev>
<extrachapter position="goals">
<title>What is IMA/EVM?</title>
<section>
<title>Integrity Measurement Architecture</title>
<body>
<p>
IMA, or Integrity Measurement Architecture, is a Linux kernel integrity
subsystem which aims to detect if files have been altered. It supports the
collection of file integrity data (hashing), storage of the integrity values
both locally (in extended attributes) and through TPM (Trusted Platform Module)
protection. If a TPM is present, it can sign these integrity results so that
interested parties can attest that the system has not been tampered with.
</p>
<p>
A fourth function, called "appraisal", has yet to be accepted in the main Linux
kernel. This function allows local validation of the integrity value against a
known good value.
</p>
</body>
</section>
<section>
<title>Extended Verification Module</title>
<body>
<p>
While IMA provides a layer of protection against tampering of file content,
EVM (Extended Verification Module) provides protection against tampering of
file metadata (more specifically the security extended attributes). And as
IMA stores the integrity values of the files in such extended attributes, it
makes sense to properly protect these too.
</p>
</body>
</section>
</extrachapter>
<resource link="http://sourceforge.net/apps/mediawiki/linux-ima/index.php?title=Main_Page">Linux IMA/EVM Wiki</resource>
<!--
<extrachapter position="resources">
<title>How Do I Use This?</title>
<section>
<body>
<p>
RSBAC can be installed new on a system by following the above install guide
for your architecture. If there is not an install guide for your architecuture
yet, it is still possible to install by following the <uri link="/doc/en/handbook/index.xml">Gentoo Handbook</uri>.
When the system is installed, convert it to RSBAC by using the
Quickstart Guide.
It is suggested that you use the Hardened profile or use "hardened pie" as your USE flags during this installation.
</p>
<p>
Converting a preexisting Gentoo installation to RSBAC can be done by
following the Quickstart Guide.
</p>
</body>
</section>
</extrachapter>
-->
<extrachapter position="bottom">
<title>I Want to Participate</title>
<section>
<body>
<p>
To participate in the Integrity project first join the mailing list at
<c>gentoo-hardened@gentoo.org</c> and, if you can, visit our online IRC
channel at <c>#gentoo-hardened</c> on <c>irc.freenode.net</c>.
</p>
<p>
As this project is brand new, there are still lots of fields to contribute
in: supporting the IMA appraisal patch, documentation, TPM and trusted computing
support in general, etc.
</p>
</body>
</section>
</extrachapter>
</project>
^ permalink raw reply [flat|nested] 9+ messages in thread
* [gentoo-commits] gentoo commit in xml/htdocs/proj/en/hardened/integrity: index.xml
@ 2012-08-15 6:59 Sven Vermeulen (swift)
0 siblings, 0 replies; 9+ messages in thread
From: Sven Vermeulen (swift) @ 2012-08-15 6:59 UTC (permalink / raw
To: gentoo-commits
swift 12/08/15 06:59:33
Modified: index.xml
Log:
Adding concepts to project docs
Revision Changes Path
1.2 xml/htdocs/proj/en/hardened/integrity/index.xml
file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.2&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.2&content-type=text/plain
diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?r1=1.1&r2=1.2
Index: index.xml
===================================================================
RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -r1.1 -r1.2
--- index.xml 26 Jul 2012 07:34:20 -0000 1.1
+++ index.xml 15 Aug 2012 06:59:33 -0000 1.2
@@ -83,6 +83,7 @@
</extrachapter>
+<resource link="docs/concepts.xml">Concepts and Introduction to Integrity</resource>
<resource link="http://sourceforge.net/apps/mediawiki/linux-ima/index.php?title=Main_Page">Linux IMA/EVM Wiki</resource>
<!--
^ permalink raw reply [flat|nested] 9+ messages in thread
* [gentoo-commits] gentoo commit in xml/htdocs/proj/en/hardened/integrity: index.xml
@ 2012-08-22 20:22 Sven Vermeulen (swift)
0 siblings, 0 replies; 9+ messages in thread
From: Sven Vermeulen (swift) @ 2012-08-22 20:22 UTC (permalink / raw
To: gentoo-commits
swift 12/08/22 20:22:46
Modified: index.xml
Log:
Fix link to doc
Revision Changes Path
1.3 xml/htdocs/proj/en/hardened/integrity/index.xml
file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.3&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.3&content-type=text/plain
diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?r1=1.2&r2=1.3
Index: index.xml
===================================================================
RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml,v
retrieving revision 1.2
retrieving revision 1.3
diff -u -r1.2 -r1.3
--- index.xml 15 Aug 2012 06:59:33 -0000 1.2
+++ index.xml 22 Aug 2012 20:22:46 -0000 1.3
@@ -83,7 +83,7 @@
</extrachapter>
-<resource link="docs/concepts.xml">Concepts and Introduction to Integrity</resource>
+<resource link="/proj/en/hardened/integrity/docs/concepts.xml">Concepts and Introduction to Integrity</resource>
<resource link="http://sourceforge.net/apps/mediawiki/linux-ima/index.php?title=Main_Page">Linux IMA/EVM Wiki</resource>
<!--
^ permalink raw reply [flat|nested] 9+ messages in thread
* [gentoo-commits] gentoo commit in xml/htdocs/proj/en/hardened/integrity: index.xml
@ 2012-10-14 11:50 Sven Vermeulen (swift)
0 siblings, 0 replies; 9+ messages in thread
From: Sven Vermeulen (swift) @ 2012-10-14 11:50 UTC (permalink / raw
To: gentoo-commits
swift 12/10/14 11:50:57
Modified: index.xml
Log:
Updated description
Revision Changes Path
1.4 xml/htdocs/proj/en/hardened/integrity/index.xml
file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.4&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.4&content-type=text/plain
diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?r1=1.3&r2=1.4
Index: index.xml
===================================================================
RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml,v
retrieving revision 1.3
retrieving revision 1.4
diff -u -r1.3 -r1.4
--- index.xml 22 Aug 2012 20:22:46 -0000 1.3
+++ index.xml 14 Oct 2012 11:50:57 -0000 1.4
@@ -10,18 +10,20 @@
<description>
The integrity subproject aims to integrate and maintain technologies related to
system integrity within Gentoo Hardened. Its first focus will be on the
-Linux IMA/EVM implementation.
+Linux IMA/EVM implementation, but this will be extended towards other
+integrity, compliance and reporting related technologies.
</description>
<longdescription>
<p>
-This project will support the Linux IMA/EVM technology within Gentoo Linux.
-It will support the necessary kernel patches, utilities and documentation to
-make integrity checks, compliance and reporting available to the wider public.
-The primary focus is to prevent offline tampering of files and images: when
-this occurs, the boot-up of the system detects the tampering and refuses to
-load further (or report this to the administrator). Online tampering
-detection is a second step.
+This project will support the Linux IMA/EVM technology within Gentoo Linux, as
+well as other integrity-related technologies together with compliance and
+reporting specific technologies. It will support the necessary kernel patches,
+utilities and documentation to make integrity checks, compliance and reporting
+available to the wider public. The primary focus is to prevent tampering of
+files, settings and images: when this occurs, the boot-up of the system detects
+the tampering and refuses to load further (or report this to the administrator).
+Online tampering detection is a second step.
</p>
<p>
^ permalink raw reply [flat|nested] 9+ messages in thread
* [gentoo-commits] gentoo commit in xml/htdocs/proj/en/hardened/integrity: index.xml
@ 2012-12-26 20:09 Sven Vermeulen (swift)
0 siblings, 0 replies; 9+ messages in thread
From: Sven Vermeulen (swift) @ 2012-12-26 20:09 UTC (permalink / raw
To: gentoo-commits
swift 12/12/26 20:09:46
Modified: index.xml
Log:
Add link to (draft) ima guide
Revision Changes Path
1.5 xml/htdocs/proj/en/hardened/integrity/index.xml
file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.5&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.5&content-type=text/plain
diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?r1=1.4&r2=1.5
Index: index.xml
===================================================================
RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml,v
retrieving revision 1.4
retrieving revision 1.5
diff -u -r1.4 -r1.5
--- index.xml 14 Oct 2012 11:50:57 -0000 1.4
+++ index.xml 26 Dec 2012 20:09:46 -0000 1.5
@@ -86,6 +86,7 @@
<resource link="/proj/en/hardened/integrity/docs/concepts.xml">Concepts and Introduction to Integrity</resource>
+<resource link="/proj/en/hardened/integrity/docs/ima-guide.xml">Using Integrity Measurement Architecture in Gentoo Linux</resource>
<resource link="http://sourceforge.net/apps/mediawiki/linux-ima/index.php?title=Main_Page">Linux IMA/EVM Wiki</resource>
<!--
^ permalink raw reply [flat|nested] 9+ messages in thread
* [gentoo-commits] gentoo commit in xml/htdocs/proj/en/hardened/integrity: index.xml
@ 2012-12-29 21:31 Sven Vermeulen (swift)
0 siblings, 0 replies; 9+ messages in thread
From: Sven Vermeulen (swift) @ 2012-12-29 21:31 UTC (permalink / raw
To: gentoo-commits
swift 12/12/29 21:31:17
Modified: index.xml
Log:
Updates on IMA, added EVM guide
Revision Changes Path
1.6 xml/htdocs/proj/en/hardened/integrity/index.xml
file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.6&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.6&content-type=text/plain
diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?r1=1.5&r2=1.6
Index: index.xml
===================================================================
RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml,v
retrieving revision 1.5
retrieving revision 1.6
diff -u -r1.5 -r1.6
--- index.xml 26 Dec 2012 20:09:46 -0000 1.5
+++ index.xml 29 Dec 2012 21:31:17 -0000 1.6
@@ -87,6 +87,7 @@
<resource link="/proj/en/hardened/integrity/docs/concepts.xml">Concepts and Introduction to Integrity</resource>
<resource link="/proj/en/hardened/integrity/docs/ima-guide.xml">Using Integrity Measurement Architecture in Gentoo Linux</resource>
+<resource link="/proj/en/hardened/integrity/docs/evm-guide.xml">Using Extended Verification Module in Gentoo Linux</resource>
<resource link="http://sourceforge.net/apps/mediawiki/linux-ima/index.php?title=Main_Page">Linux IMA/EVM Wiki</resource>
<!--
^ permalink raw reply [flat|nested] 9+ messages in thread
* [gentoo-commits] gentoo commit in xml/htdocs/proj/en/hardened/integrity: index.xml
@ 2013-04-11 14:18 Sven Vermeulen (swift)
0 siblings, 0 replies; 9+ messages in thread
From: Sven Vermeulen (swift) @ 2013-04-11 14:18 UTC (permalink / raw
To: gentoo-commits
swift 13/04/11 14:18:17
Modified: index.xml
Log:
Update links to documents (concepts on wiki, AIDE document)
Revision Changes Path
1.7 xml/htdocs/proj/en/hardened/integrity/index.xml
file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.7&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.7&content-type=text/plain
diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?r1=1.6&r2=1.7
Index: index.xml
===================================================================
RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml,v
retrieving revision 1.6
retrieving revision 1.7
diff -u -r1.6 -r1.7
--- index.xml 29 Dec 2012 21:31:17 -0000 1.6
+++ index.xml 11 Apr 2013 14:18:17 -0000 1.7
@@ -85,9 +85,10 @@
</extrachapter>
-<resource link="/proj/en/hardened/integrity/docs/concepts.xml">Concepts and Introduction to Integrity</resource>
+<resource link="https://wiki.gentoo.org/wiki/Integrity/Concepts">Concepts and Introduction to Integrity</resource>
<resource link="/proj/en/hardened/integrity/docs/ima-guide.xml">Using Integrity Measurement Architecture in Gentoo Linux</resource>
<resource link="/proj/en/hardened/integrity/docs/evm-guide.xml">Using Extended Verification Module in Gentoo Linux</resource>
+<resource link="https://wiki.gentoo.org/wiki/AIDE">Advanced Intrusion Detection Environment (AIDE)</resource>
<resource link="http://sourceforge.net/apps/mediawiki/linux-ima/index.php?title=Main_Page">Linux IMA/EVM Wiki</resource>
<!--
^ permalink raw reply [flat|nested] 9+ messages in thread
* [gentoo-commits] gentoo commit in xml/htdocs/proj/en/hardened/integrity: index.xml
@ 2013-05-12 19:22 Sven Vermeulen (swift)
0 siblings, 0 replies; 9+ messages in thread
From: Sven Vermeulen (swift) @ 2013-05-12 19:22 UTC (permalink / raw
To: gentoo-commits
swift 13/05/12 19:22:22
Modified: index.xml
Log:
Appraisal is in main kernel
Revision Changes Path
1.8 xml/htdocs/proj/en/hardened/integrity/index.xml
file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.8&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.8&content-type=text/plain
diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?r1=1.7&r2=1.8
Index: index.xml
===================================================================
RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml,v
retrieving revision 1.7
retrieving revision 1.8
diff -u -r1.7 -r1.8
--- index.xml 11 Apr 2013 14:18:17 -0000 1.7
+++ index.xml 12 May 2013 19:22:22 -0000 1.8
@@ -61,7 +61,7 @@
</p>
<p>
-A fourth function, called "appraisal", has yet to be accepted in the main Linux
+A fourth function, called "appraisal", has recently been accepted in the main Linux
kernel. This function allows local validation of the integrity value against a
known good value.
</p>
@@ -127,7 +127,7 @@
<p>
As this project is brand new, there are still lots of fields to contribute
-in: supporting the IMA appraisal patch, documentation, TPM and trusted computing
+in: supporting the IMA patches, documentation, TPM and trusted computing
support in general, etc.
</p>
^ permalink raw reply [flat|nested] 9+ messages in thread
* [gentoo-commits] gentoo commit in xml/htdocs/proj/en/hardened/integrity: index.xml
@ 2013-08-29 19:25 Sven Vermeulen (swift)
0 siblings, 0 replies; 9+ messages in thread
From: Sven Vermeulen (swift) @ 2013-08-29 19:25 UTC (permalink / raw
To: gentoo-commits
swift 13/08/29 19:25:39
Modified: index.xml
Log:
Add redirects for wikified pages
Revision Changes Path
1.9 xml/htdocs/proj/en/hardened/integrity/index.xml
file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.9&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?rev=1.9&content-type=text/plain
diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml?r1=1.8&r2=1.9
Index: index.xml
===================================================================
RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/en/hardened/integrity/index.xml,v
retrieving revision 1.8
retrieving revision 1.9
diff -u -r1.8 -r1.9
--- index.xml 12 May 2013 19:22:22 -0000 1.8
+++ index.xml 29 Aug 2013 19:25:39 -0000 1.9
@@ -2,7 +2,7 @@
<?xml-stylesheet href="/xsl/project.xsl" type="text/xsl"?>
<?xml-stylesheet href="/xsl/guide.xsl" type="text/xsl"?>
<!DOCTYPE project SYSTEM "/dtd/project.dtd">
-<project>
+<project redirect="https://wiki.gentoo.org/wiki/Project:Integrity">
<name>Integrity</name>
<longname>System Integrity, Compliance and Reporting</longname>
^ permalink raw reply [flat|nested] 9+ messages in thread
end of thread, other threads:[~2013-08-29 19:25 UTC | newest]
Thread overview: 9+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2012-07-26 7:34 [gentoo-commits] gentoo commit in xml/htdocs/proj/en/hardened/integrity: index.xml Sven Vermeulen (swift)
-- strict thread matches above, loose matches on Subject: below --
2012-08-15 6:59 Sven Vermeulen (swift)
2012-08-22 20:22 Sven Vermeulen (swift)
2012-10-14 11:50 Sven Vermeulen (swift)
2012-12-26 20:09 Sven Vermeulen (swift)
2012-12-29 21:31 Sven Vermeulen (swift)
2013-04-11 14:18 Sven Vermeulen (swift)
2013-05-12 19:22 Sven Vermeulen (swift)
2013-08-29 19:25 Sven Vermeulen (swift)
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox