Welcome to Fedora Security! :)
On Sunday, 22 November 2015 7:47 AM, charles profitt wrote:
My name is Charles Profitt and while I have used Linux for several
years I am just starting to use Fedora. I am interested in working on
security issues. If anyone on the list has any recommendations to help
me get started please feel free to pass them along.
I guess you've seen the Fedora Security Team's page
at -> https://fedoraproject.org/wiki/Security_Team
It gives a basic idea of what we do. Fedora Security Team(FST) has two mandates
1. To ensure that security issues in Fedora packages are fixed and updates
are pushed to repositories with priority, without any delays. This involves
finding the right fixes, communicating with the upstream package
developers/maintainers, prodding them to apply the patches, to build new
packages and push them to the Fedora repositories.
In short: ensuring that Fedora is always on top of its security issues.
2. Pro-actively taking measures to find security flaws in Fedora packages.
Maybe by ways of auditing the package sources, fuzzing their inputs, running
static/binary analysis tools et. al. This is a more consuming activity which
is taken by individuals as their time allows.
We hold weekly IRC meeting on #fedora-meeting channel, every Thurseday at 14:00 hrs UTC.
Feel free to join in and meet rest of the team.
Feel free to ping if you need anything.
Once again welcome! :)
-P J P