Presented by

  • Philip Paeps

    Philip Paeps

    Philip Paeps (“Trouble”) is an independent consultant and contractor. He provides research and development on low-level software and operating systems, particularly in an embedded or real-time context. His main interests are bootloaders, device drivers and high-performance networking. He can also be convinced to teach courses and workshops on a variety of networking-related topics. In his so-called free time, Philip is a FreeBSD committer contributing mainly to the kernel and a member of the FreeBSD security team. He was one of the main organisers of FOSDEM, the largest annual open source software conference in Europe, from the early 2000s until 2015. He denies having any involvement with amateur radio or tabletop role playing games.

Abstract

The FreeBSD Project is an old and well-established open source community. With volunteer developers around the world, handling security advisories in a timely manner while respecting third-party embargoes poses unique challenges. This presentation introduces the FreeBSD security officer team and the processes in place for handling security advisories affecting the FreeBSD open source operating system itself and the third-party components the project distributes. Linux Australia: http://mirror.linux.org.au/pub/linux.conf.au/2020/room_9/Tuesday/Improving_the_FreeBSD_security_advisory_process.webm YouTube: https://www.youtube.com/watch?v=DK-5dPnwLrI