Search
Blog
Micronews
Planet
debian
security information
Security Information
Keeping your Debian system secure
Recent Advisores
Contact Information
Debian takes security very seriously: We handle all security problems brought to our attention and ensure that
are corrected within a reasonable timeframe_
Many
advisories are coordinated with other free software vendors and are published the same day a vulnerability is made public and we also have a Security_Audit team that
reviews the archive looking for new or unfixed security bugs.
Experience has shown that
'security through obscurity" does not work: Public disclosure allows for more rapid and better solutions to security problems: In that vein, this
page addresses Debian's status with respect to various known security holes, which could potentially affect Debian:
Debian also participates in security standardization efforts: the Debian Security_Advisories are CVE-Compatible (review the cross references) and Debian is represented in
the Board of the Qpen Vulnerability_Assessment Language project:
Keeping your Debian system secure
In order to receive the latest Debian security advisories, subscribe to the debian-security_announce mailing list:
You can use apt to easily get the latest security updates. This requires a line such as
deb http: / /security.debian.org/debian-security bullseye-security
main contrib
Mon-
free
in your /etc/apt/sources
list file. Then execute apt-get
update
E apt-get
upgrade to download and apply the pending updates. The security archive is signed with the
normal Debian archive signing_keys
For more information about security issues in Debian; please refer to the Security_Team FAQ and a manual called Securing_Debian:
they