#security-sig topics

Topic	Replies	Views	Activity
Volunteers needed to do security analysis on Deepin packages Project Discussion package-maintainers , security-sig Dear all, @adamwill recently brought up an issue with FESCo: Issue #3409: Deepin security review request - fesco - Pagure.io TL;DR Deepin has recently been removed from openSUSE because of ongoing security issues There are no CVEs as far as we are aware of, so it’s not quite straightforward to …	3	296	May 15, 2025
Switch from SHA2 to SHA3 or BLAKE3 for better security Project Discussion security-sig	8	112	May 15, 2025
Verifying the authenticity of files uploaded to the lookaside cache Project Discussion security-sig	14	330	May 8, 2025
Findings by static analyzers in Fedora 43 Critical Path Packages Project Discussion package-maintainers , security-sig	0	55	April 28, 2025
Confining user namespaces with SELinux Project Discussion coreos-wg , problem , workstation-wg , security-sig , atomic-desktops-team	4	413	March 29, 2025
Restorecon does not work on override config directories Project Discussion engineering , docs-team , workstation-wg , security-sig	5	113	February 7, 2025
Removing setuid binaries from the system Project Discussion security-sig	0	75	January 14, 2025
Selinux configuration for kmscon Project Discussion package-maintainers , help , problem , security-sig	3	75	December 20, 2024
Verified boot compat: Cryptographically signing the boot files Project Discussion engineering , workstation-wg , security-sig	1	138	December 4, 2024
Enabling USBGuard by default Project Discussion workstation-wg , security-sig , atomic-desktops-team	3	323	November 19, 2024
Findings by static analyzers in Fedora 42 Critical Path Packages Project Discussion package-maintainers , security-sig	0	59	November 14, 2024
Static analysis for upstream repositories in Packit Project Discussion package-maintainers , security-sig	1	91	October 5, 2024
Building a new home with systemd-homed on fedora Project Discussion engineering , workstation-wg , confined-users , security-sig	127	10511	September 25, 2024
Last few "holes" in Fedora Silverblue - libvirt/swtpm/virt-manager and systemd-homed Project Discussion silverblue-team , kinoite-team , confined-users , security-sig	14	582	September 17, 2024
New generic wiki page security SIG / removal old page of Security Team Project Discussion security-sig	5	103	August 31, 2024
Social engineering attack -> no best practices in crypto on website: how to contact website team to solve that? (no immediately exploitable vulnerability, but practical in future in some circumstances) Project Discussion marketing-team , security-sig	30	424	September 3, 2024
Software GUI: suggest RPM over flatpak as default option? Project Discussion workstation-wg , security-sig	21	460	August 24, 2024
Security and Usability Issues of Clear Signed Checksum Files Project Discussion engineering , security-sig	22	264	August 22, 2024
Security and Usability Issues of Clear Signed Checksum Files - Part 2 Project Discussion engineering , security-sig	5	141	August 21, 2024
Gnome DE breaks usbguard Project Discussion silverblue-team , engineering , package-maintainers , workstation-wg , security-sig	4	110	August 20, 2024
Removing SUID from various system binaries: an informative writeup Project Discussion security-sig	0	86	July 28, 2024
Flaws detected by static analyzers in Fedora 41 Critical Path Packages Project Discussion package-maintainers , security-sig	6	295	July 9, 2024
Brainstorm: Confined users without wheel access Project Discussion confined-users , security-sig	5	164	July 1, 2024
The Confined Users SIG has now a Matrix channel Project Discussion confined-users , security-sig	5	106	June 22, 2024
Creating Fedora security incident organization: Deriving from XZUtils lessons learned, security(-dedicated?) SIGs, and information flows (with some incentives from research) Project Discussion server-wg , engineering , workstation-wg , security-sig	8	203	May 31, 2024
RFC: Flaws detected by static analyzers in Fedora 41 Core Critical Path Packages Project Discussion package-maintainers , security-sig	1	144	May 7, 2024
F40 & SELinux confined users: the first Fedora KDE to be "productive" with enabled SELinux confined user (with restrictions) Project Discussion confined-users , security-sig	0	499	April 15, 2024
Security enthusiasts wanted: from beginners up to SELinux experts to make up the SELinux "Confined Users (SIG)" to foster Fedora's security capabilities Project Discussion confined-users , security-sig	62	3905	April 11, 2024

Volunteers needed to do security analysis on Deepin packages

package-maintainers , security-sig

Dear all, @adamwill recently brought up an issue with FESCo: Issue #3409: Deepin security review request - fesco - Pagure.io TL;DR Deepin has recently been removed from openSUSE because of ongoing security issues There are no CVEs as far as we are aware of, so it’s not quite straightforward to …

3

296

May 15, 2025

Switch from SHA2 to SHA3 or BLAKE3 for better security