From c8540fa1d85c1b8d0cf6990a9be377df57403774 Mon Sep 17 00:00:00 2001 From: April1016 Date: Thu, 7 Mar 2024 07:47:11 +0000 Subject: [PATCH 1/7] =?UTF-8?q?update=20sig/=E7=B3=BB=E7=BB=9F=E5=AE=89?= =?UTF-8?q?=E5=85=A8SIG/sig-info.yaml.?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: April1016 --- .../sig-info.yaml" | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/sig-info.yaml" "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/sig-info.yaml" index 4ea6e9e0..5f0fcd4b 100644 --- "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/sig-info.yaml" +++ "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/sig-info.yaml" @@ -25,23 +25,23 @@ contributors: gitee_id: uos_caopeiqing - openanolis_id: qinzhiben gitee_id: qinzhiben -- openanolis_id: zengwei1 +- openanolis_id: zeng-wei2000 gitee_id: zeng-wei2000 -- openanolis_id: yuxiaojun +- openanolis_id: slark_yuxiaojun gitee_id: slark_yuxiaojun -- openanolis_id: wangjia +- openanolis_id: neoMX gitee_id: neoMX -- openanolis_id: xiaobo +- openanolis_id: bobbyxiao gitee_id: bobbyxiao -- openanolis_id: xiongyi +- openanolis_id: bear_xiong123 gitee_id: bear_xiong123 -- openanolis_id: kongxinglong +- openanolis_id: alongnice gitee_id: alongnice -- openanolis_id: wanhui +- openanolis_id: gogolovefish gitee_id: gogolovefish -- openanolis_id: mawei +- openanolis_id: movie0125 gitee_id: movie0125 -- openanolis_id: guocanfeng +- openanolis_id: gcf2000 gitee_id: gcf2000 repositories: -- Gitee From 71c40a34b67cb3a85426fad2e9251fc86a25f663 Mon Sep 17 00:00:00 2001 From: April1016 Date: Thu, 7 Mar 2024 07:49:35 +0000 Subject: [PATCH 2/7] =?UTF-8?q?update=20sig/=E7=B3=BB=E7=BB=9F=E5=AE=89?= =?UTF-8?q?=E5=85=A8SIG/README.md.?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: April1016 --- .../README.md" | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" index 53944b77..ba0f2a95 100644 --- "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" +++ "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" @@ -21,10 +21,9 @@ | 成员 | 角色 | | ---------------- | -------------- | | 徐峥(浪潮信息) | owner | -| 徐飞(浪潮信息) | maintainer | +| 甄鹏(浪潮信息) | maintainer | | 乾越(阿里云) | maintainer | | 张天佳(阿里云) | maintainer | -| 甄鹏(浪潮信息) | maintainer | | 曹佩庆(统信) | maintainer | ### 项目清单 @@ -44,6 +43,14 @@ KSMSuite,国密套件。通过对Linux系统下一些常用、重要加密库/ KSLCM,通过配置/etc/passwd文件中的用户shell路径项,将用户登录操作系统后指令执行入口引导至服务器命令行管理程序;本程序会将不同用户进行分组,并对不同的组设置不同的指令/参数名单及执行策略(黑名单或白名单),达到在允许正常业务操作的情况下过滤风险指令,达到保证操作系统安全的目的。本模块可满足权限管理、内置操作系统安全(OS)等相关安全基线要求。 +---------- + +**security-benchmark** + +security-benchmark 是龙蜥下游各个厂商结合自己在安全合规/加固领域(包括国内的等保等)的大规模产品落地经验和实践打造的龙蜥社区最佳安全加固实践指南,它包括安全基线(benchmark)、扫描脚本、修复脚本、安全合规镜像制作、安全合规监控等多个方面。其中,Anolis OS 8 、Anolis OS 23 及其最佳安全基线已完成与OpenSCAP国际知名社区映射。 + +---------- + ### 工作计划及交付物 - 开展系统安全软件开源与优化 -- Gitee From 0fcf9344e6bdbc351b51b5d1fe4d94fd61eb386f Mon Sep 17 00:00:00 2001 From: April1016 Date: Thu, 7 Mar 2024 07:51:09 +0000 Subject: [PATCH 3/7] =?UTF-8?q?update=20sig/=E7=B3=BB=E7=BB=9F=E5=AE=89?= =?UTF-8?q?=E5=85=A8SIG/README.md.?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: April1016 --- .../README.md" | 1 + 1 file changed, 1 insertion(+) diff --git "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" index ba0f2a95..1343c57a 100644 --- "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" +++ "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" @@ -59,6 +59,7 @@ security-benchmark 是龙蜥下游各个厂商结合自己在安全合规/加固 ### 交流群 钉钉讨论群 +[输入链接说明](https://gitee.com/april1016/community/blob/master/sig/%E7%B3%BB%E7%BB%9F%E5%AE%89%E5%85%A8SIG/assets/%E7%B3%BB%E7%BB%9F%E5%AE%89%E5%85%A8SIG%E9%92%89%E9%92%89%E7%BE%A4.png) “龙蜥社区系统安全SIG交流群”钉钉群号: 74890001865 -- Gitee From cf4d77870bdf98907100e0264f76e813df0b1770 Mon Sep 17 00:00:00 2001 From: April1016 Date: Thu, 7 Mar 2024 07:51:56 +0000 Subject: [PATCH 4/7] =?UTF-8?q?update=20sig/=E7=B3=BB=E7=BB=9F=E5=AE=89?= =?UTF-8?q?=E5=85=A8SIG/README.md.?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: April1016 --- .../README.md" | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" index 1343c57a..53f1bf25 100644 --- "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" +++ "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" @@ -85,4 +85,4 @@ security-benchmark 是龙蜥下游各个厂商结合自己在安全合规/加固 - 双周会 - 会议纪要 - 成果发布官宣 - - SIG项目月报/季报 \ No newline at end of file + - SIG项目月报/季报![输入图片说明](https://gitee.com/april1016/community/blob/master/sig/%E7%B3%BB%E7%BB%9F%E5%AE%89%E5%85%A8SIG/assets/%E7%B3%BB%E7%BB%9F%E5%AE%89%E5%85%A8SIG%E9%92%89%E9%92%89%E7%BE%A4.png) \ No newline at end of file -- Gitee From 568f09598ed71d360167fef0d6de69f5ef2914ce Mon Sep 17 00:00:00 2001 From: April1016 Date: Thu, 7 Mar 2024 07:53:25 +0000 Subject: [PATCH 5/7] =?UTF-8?q?update=20sig/=E7=B3=BB=E7=BB=9F=E5=AE=89?= =?UTF-8?q?=E5=85=A8SIG/README.md.?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: April1016 --- .../README.md" | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" index 53f1bf25..3cd94822 100644 --- "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" +++ "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" @@ -59,7 +59,7 @@ security-benchmark 是龙蜥下游各个厂商结合自己在安全合规/加固 ### 交流群 钉钉讨论群 -[输入链接说明](https://gitee.com/april1016/community/blob/master/sig/%E7%B3%BB%E7%BB%9F%E5%AE%89%E5%85%A8SIG/assets/%E7%B3%BB%E7%BB%9F%E5%AE%89%E5%85%A8SIG%E9%92%89%E9%92%89%E7%BE%A4.png) +![输入图片说明](assets/%E7%B3%BB%E7%BB%9F%E5%AE%89%E5%85%A8SIG%E9%92%89%E9%92%89%E7%BE%A4.png) “龙蜥社区系统安全SIG交流群”钉钉群号: 74890001865 @@ -85,4 +85,4 @@ security-benchmark 是龙蜥下游各个厂商结合自己在安全合规/加固 - 双周会 - 会议纪要 - 成果发布官宣 - - SIG项目月报/季报![输入图片说明](https://gitee.com/april1016/community/blob/master/sig/%E7%B3%BB%E7%BB%9F%E5%AE%89%E5%85%A8SIG/assets/%E7%B3%BB%E7%BB%9F%E5%AE%89%E5%85%A8SIG%E9%92%89%E9%92%89%E7%BE%A4.png) \ No newline at end of file + - SIG项目月报/季报 \ No newline at end of file -- Gitee From 866d7b92fd7e363abdb99f070f6f5349bb1bda59 Mon Sep 17 00:00:00 2001 From: April1016 Date: Thu, 7 Mar 2024 07:54:00 +0000 Subject: [PATCH 6/7] =?UTF-8?q?update=20sig/=E7=B3=BB=E7=BB=9F=E5=AE=89?= =?UTF-8?q?=E5=85=A8SIG/README.md.?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: April1016 --- .../README.md" | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" index 3cd94822..78c70a29 100644 --- "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" +++ "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" @@ -58,10 +58,12 @@ security-benchmark 是龙蜥下游各个厂商结合自己在安全合规/加固 ### 交流群 -钉钉讨论群 +“龙蜥社区系统安全SIG交流群”钉钉群号: 74890001865 + ![输入图片说明](assets/%E7%B3%BB%E7%BB%9F%E5%AE%89%E5%85%A8SIG%E9%92%89%E9%92%89%E7%BE%A4.png) -“龙蜥社区系统安全SIG交流群”钉钉群号: 74890001865 +钉钉讨论群 + ### SIG计划输出成果 -- Gitee From 78ffeab3f8e3d5abf1075479e65fa565a066d169 Mon Sep 17 00:00:00 2001 From: April1016 Date: Thu, 7 Mar 2024 07:54:17 +0000 Subject: [PATCH 7/7] =?UTF-8?q?update=20sig/=E7=B3=BB=E7=BB=9F=E5=AE=89?= =?UTF-8?q?=E5=85=A8SIG/README.md.?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: April1016 --- .../README.md" | 2 -- 1 file changed, 2 deletions(-) diff --git "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" index 78c70a29..a5cc9618 100644 --- "a/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" +++ "b/sig/\347\263\273\347\273\237\345\256\211\345\205\250SIG/README.md" @@ -62,8 +62,6 @@ security-benchmark 是龙蜥下游各个厂商结合自己在安全合规/加固 ![输入图片说明](assets/%E7%B3%BB%E7%BB%9F%E5%AE%89%E5%85%A8SIG%E9%92%89%E9%92%89%E7%BE%A4.png) -钉钉讨论群 - ### SIG计划输出成果 -- Gitee