Git-Mirrors/qubes-doc
1
0
Fork 0
mirror of https://github.com/QubesOS/qubes-doc.git synced 2025-11-14 09:10:42 -05:00
Code Issues Projects Releases Packages Wiki Activity

Reorganize security info pages

Browse source
This commit is contained in:
Andrew David Wong 2017-03-18 19:31:12 -07:00
parent 8f7f93e484
commit 8ab0a855bd
No known key found for this signature in database
GPG key ID: 8CE137352A019A17
16 changed files with 111 additions and 48 deletions
Download patch file Download diff file Expand all files Collapse all files

54
security-info/security.md Normal file
View file

@ -0,0 +1,54 @@
---
layout: default
title: Security
permalink: /security/
redirect_from:
- /en/security/
- /en/doc/security/
- /en/doc/qubes-security/
- /doc/QubesSecurity/
- /wiki/QubesSecurity/
- /en/doc/security-page/
- /doc/SecurityPage/
- /wiki/SecurityPage/
- /trac/wiki/SecurityPage/
---
Qubes OS Project Security Center
================================
- [Security Goals](/security/goals/)
- [Security Pack](/security/pack/)
- [Security Bulletins](/security/bulletins/)
- [Canaries](/security/canaries/)
- [Xen Security Advisory (XSA) Tracker](/security/xsa/)
- [Why and How to Verify Signatures](/security/verifying-signatures/)
- [PGP Keys](http://keys.qubes-os.org/keys/)
Reporting Security Issues in Qubes OS
-------------------------------------
If you believe you have found a security issue affecting Qubes OS, either directly or indirectly (e.g. the issue affects Xen in a configuration that is used in Qubes OS), then we would be more than happy to hear from you!
We promise to treat any reported issue seriously and, if the investigation confirms it affects Qubes, to patch it within a reasonable time, and also to release a public Security Bulletin that describes the issue, discusses potential impact of the vulnerability, references applicable patches or workarounds, and also credits the discoverer.
The list of all Qubes Security Advisories published so far can be found [here](/security/bulletins/).
The Qubes Security Team
-----------------------
The Qubes Security Team can be contacted via email using the following address:
~~~
security at qubes-os dot org
~~~
### Qubes Security Team GPG Key ###
Please use the [this GPG key](http://keys.qubes-os.org/keys/qubes-os-security-team-key.asc) for encrypting any emails sent to this address. Like all the GPG keys used by the Qubes project, this key is signed with the Qubes Master key. Please see [this page](/security/verifying-signatures/) for more information on how to verify the keys.
### Members of the Security Team ###
- Joanna Rutkowska \<joanna at invisiblethingslab dot com\>
- Marek Marczykowski \<marmarek at invisiblethingslab dot com\>