Join us March 18th for AlmaLinux Day: Germany @ CloudFest

Security Measures

Errata

AlmaLinux OS Foundation provides errata to inform users about available updates, including security issues and bug fixes, and their significance through analysis. Users can easily access this information by accessing our AlmaLinux security advisory portal, known as AlmaLinux Errata. More details on Errata and how to use it can be found on the AlmaLinux Errata Wiki stránka.
Additionally, AlmaLinux OS is present in the OSV databáze.

Errata in JSON format for 3rd party software integration:

GPG Keys

Almalinux OS Foundation podepisuje všechny své softwarové balíčky pomocí podpisového klíče GPG, který je ve výchozím nastavení ověřen při instalaci balíčků pomocí dnf nebo grafických aktualizačních nástrojů. Pokud balíček není podepsán nebo má neplatný podpis, dnf nebo grafické aktualizační nástroje upozorní uživatele a odmítnou jej nainstalovat.
Je doporučeno ověřit podpis balíčku před jeho instalací.

AlmaLinux OS 9

rsa4096/D36CB86CB86B3716 (2022-01-18): AlmaLinux OS 9 <packager@almalinux.org> Umístění: /etc/pki/rpm-gpg/RPM-GPG-KEY-AlmaLinux-9 Stáhnout: AlmaLinux Stáhnout: pgp.mit.edu

BF18 AC28 7617 8908 D6E7 1267 D36C B86C B86B 3716

AlmaLinux OS 8

rsa4096/488FCF7C3ABB34F8 (2021-01-12): AlmaLinux <packager@almalinux.org> Umístění: /etc/pki/rpm-gpg/RPM-GPG-KEY-AlmaLinux Stáhnout: AlmaLinux Stáhnout: pgp.mit.edu

5E9B 8F56 17B5 066C E920 57C3 488F CF7C 3ABB 34F8


rsa4096/2AE81E8ACED7258B (2023-10-10): AlmaLinux OS 8 <packager@almalinux.org> Umístění: /etc/pki/rpm-gpg/RPM-GPG-KEY-AlmaLinux Stáhnout: AlmaLinux Stáhnout: pgp.mit.edu

BC5E DDCA DF50 2C07 7F15 8288 2AE8 1E8A CED7 258B

Security Mailing List

To receive security updates and errata, users can sign up for the AlmaLinux Security Mailing List. Přihlášení k odběru seznamu umožní uživatelům zůstat informovanými ohledně bezpečnostních oprav, jakmile budou k dispozici.

OpenSCAP and SCAP Workbench

The Security Content Automation Protocol (SCAP) automates vulnerability management, measurement, and policy compliance evaluation of systems. AlmaLinux OS offers an OpenSCAP Guide that instructs on how to use the OpenSCAP and SCAP Workbench to audit your AlmaLinux system security compliance.

AlmaLinux OS má také k dispozici CIS Benchmark.

OVAL

The Open Vulnerability and Assessment Language (OVAL), offers publicly accessible security information. This includes AlmaLinux OS 8 and 9, which have available public OVAL streams.

You can find more about OVAL Streams on the AlmaLinux OVAL Wiki Page.

SBOM

The Software Bill of Materials (SBOM) provides a comprehensive list of third-party and open-source components in a codebase, including version numbers, licensing information, and potential vulnerabilities. AlmaLinux Build System has implemented SBOM into its pipeline for security purposes, such as tracing the build process, making it more secure, and reducing the risk of data corruption. Další informace about SBOM integration in AlmaLinux.
AlmaLinux OS also provides AlmaLinux SBOM User Guide