From Fedora Project Wiki

m (→‎Benefit to Fedora: remove wishlist)
(Fix typos and update details incl. removal of obsolete information)
Line 6: Line 6:
{{admon/note|Wiki Page Purpose|This page follows the [[Spins_Process]]. The Development Home can be found at https://pagure.io/security-lab}}
{{admon/note|Wiki Page Purpose|This page follows the [[Spins_Process]]. The Development Home can be found at https://pagure.io/security-lab}}
== Summary ==
== Summary ==
The Fedora Security Spin is a livecd based on Fedora to provide a safe test-environment for working on security-auditing, forensics and penetration-testing, coupled with all the Fedora-Security features and tools.
The Fedora Security Spin is a live media based on Fedora to provide a safe test environment for working on security auditing, forensics and penetration testing, coupled with all the Fedora Security features and tools.


== Owner(s) ==
== Owner(s) ==
Line 16: Line 16:


== Detailed Description ==
== Detailed Description ==
The spin is maintained by a community of Security Testers and Developers. It comes with the clean and fast Xfce Desktop Enviroment and a customized menu to have all the instruments one may need to follow a proper test-path on security testing[https://fedorahosted.org/security-spin/wiki/availableApps]or to rescue a broken system. With the read-write rootfs, it is possible to install software while the livecd is running. The Fedora liveusb-creator provides an overlay feature to put the security-spin on an usb-stick so that the user can install and update software - and can save his test-results permanently.
The spin is maintained by a community of Security testers and developers. It comes with the clean and fast Xfce Desktop Environment and a customized menu to have all the instruments one may need to follow a proper test path on security testing or to rescue a broken system. With the read-write rootfs, it is possible to install software while the live media is running. The Fedora livemedia-creator provides an overlay feature to put the Fedora Security Lab on an USB stick so that the user can install and update software and can save his test-
results permanently.


== Benefit to Fedora ==
== Benefit to Fedora ==
* Covered by the above description  
* Covered by the above description  
* A stable platform for teaching security along security classes in universities and organisations like the [http://www.isecom.org ISECOM]
* A stable platform for teaching security along security classes in universities and organisations
** People learn about Fedora through these classes
** People learn about Fedora through these classes
* Showcase for security features and testing
* Showcase for security features and testing
* A toolset for proper security testing
* A tool set for proper security testing
* A complete repair/rescue system - with tools not contained on the other LiveCDs to rescue your System
* A complete repair/rescue system - with tools not contained on the other Live media to rescue your system
* Gather interested people to package new tools for this spin  
* Gather interested people to package new tools for this spin  
* Cool marketing instrument and a story to tell
* Cool marketing instrument and a story to tell
* There are industry partners who are interested to contribute
* There are industry partners who are interested to contribute
* and also contained in this presentation [http://jsimon.fedorapeople.org/fedora_osstmm_secspinv5.pdf SecuritySpin and the OSSTMM]


== Kickstart File ==
== Kickstart File ==
Line 44: Line 44:
== Testing / QA ==
== Testing / QA ==
* Run [[JeremyKatz/SpinChecklist#Testing_of_the_Spin| basic spin testing]]
* Run [[JeremyKatz/SpinChecklist#Testing_of_the_Spin| basic spin testing]]
* Test installs from livecd and usb, test livecd-creator  
* Test installs from live media, test livemedia-creator  
* Persistence of Security Menu after installations
* Persistence of Security Menu after installations
* How do the [https://fedorahosted.org/security-spin/wiki/availableApps available applications] work?
* How do the available applications work?
* [https://fedoraproject.org/wiki/Category:Security_Lab Current security lab applications test-cases]
* [https://fedoraproject.org/wiki/Category:Security_Lab Current security lab applications test cases]
* As of Fedora 16, Security Lab release validation test events are available.
* As of Fedora 16, Security Lab release validation test events are available.


Line 53: Line 53:


== Spins Page ==
== Spins Page ==
See https://fedorahosted.org/security-spin/wiki/spinspage


Spins Page is set up https://labs.fedoraproject.org/security/
Spins Page is set up https://labs.fedoraproject.org/security/


[[Category:Spins_Fedora_32]]
[[Category:Spins_Fedora_31]]
[[Category:Spins_Fedora_30]]
[[Category:Spins_Fedora_29]]
[[Category:Spins_Fedora_28]]
[[Category:Spins_Fedora_27]]
[[Category:Spins_Fedora_26]]
[[Category:Spins_Fedora_25]]
[[Category:Spins_Fedora_24]]
[[Category:Spins_Fedora_23]]
[[Category:Spins_Fedora_23]]
[[Category:Spins_Fedora_22]]
[[Category:Spins_Fedora_22]]

Revision as of 22:29, 25 January 2020

Fedora Security Spin

Wiki Page Purpose
This page follows the Spins_Process. The Development Home can be found at https://pagure.io/security-lab

Summary

The Fedora Security Spin is a live media based on Fedora to provide a safe test environment for working on security auditing, forensics and penetration testing, coupled with all the Fedora Security features and tools.

Owner(s)

Detailed Description

The spin is maintained by a community of Security testers and developers. It comes with the clean and fast Xfce Desktop Environment and a customized menu to have all the instruments one may need to follow a proper test path on security testing or to rescue a broken system. With the read-write rootfs, it is possible to install software while the live media is running. The Fedora livemedia-creator provides an overlay feature to put the Fedora Security Lab on an USB stick so that the user can install and update software and can save his test-

results permanently.

Benefit to Fedora

  • Covered by the above description
  • A stable platform for teaching security along security classes in universities and organisations
    • People learn about Fedora through these classes
  • Showcase for security features and testing
  • A tool set for proper security testing
  • A complete repair/rescue system - with tools not contained on the other Live media to rescue your system
  • Gather interested people to package new tools for this spin
  • Cool marketing instrument and a story to tell
  • There are industry partners who are interested to contribute

Kickstart File

ISO Name / FS Label

  • ISO name: Fedora-$release-$arch-LiveSecurity
  • FS-Label: Fedora-$release-$arch-Security

Dependencies

Testing / QA

Please track your checks on the relevant release in the Security Lab Testing category

Spins Page

Spins Page is set up https://labs.fedoraproject.org/security/