The security of Debian - An introduction to advanced users

Speaker: Samuel Henrique

Track: Security and Privacy-enhancing Technologies

Type: Long talk (45 minutes)

How Debian handles security vulnerabilities (CVEs) for its packages.

Learn how security vulnerabilities are tracked and fixed, together with some tips on how to investigate things yourself, common mistakes, and good practices to follow to keep your Debian secure.

This talk is focused on the handling of security vulnerabilities for Debian’s packages.

There is some similarity to my talk “Fixing CVEs on Debian: Everything you probably know already” from DebCon24, but this talk is targeted towards users and system administrators instead, it doesn’t go into details on how to develop the fix.

Given the way distributions handle security vulnerabilities being very similar, this talk is a nice introduction to overall cybersecurity.