Documentation work from the OpenStack Security Group (OSSG)
Go to file
lhinds abaa0465b7 Adding OSSN-0079
Ceph credentials included in logs using older libvirt/qemu

Change-Id: I081ffc9083aa717da4228cd2ff50b2ebb5303276
2017-07-20 15:56:20 +01:00
case-studies [sec-guide] Moves api-case study to new folder 2017-04-07 16:54:51 +01:00
common Updated from openstack-manuals 2017-07-04 15:48:44 +00:00
security-guide Imported Translations from Zanata 2017-07-11 06:40:31 +00:00
security-notes Adding OSSN-0079 2017-07-20 15:56:20 +01:00
security-threat-analysis Update for new openstackdocstheme 2017-06-27 08:03:23 +02:00
tools Enhance AFS root-marker 2016-10-31 20:20:59 +01:00
.gitignore Adding documentation for security threat analysis 2016-04-24 08:55:44 -05:00
.gitreview Added .gitreview 2014-05-22 00:51:40 +00:00
bindep.txt Update bindep.txt 2017-02-24 13:27:25 +00:00
doc-tools-check-languages.conf Unbreak Translation builds 2017-04-10 12:33:27 +02:00
README.rst Use https 2017-01-30 20:15:41 +01:00
test-requirements.txt Update for new openstackdocstheme 2017-06-27 08:03:23 +02:00
tox.ini Adding OSSN-0068 2016-07-13 21:47:55 +09:00

Team and repository tags

image

OpenStack Security Documentation

This repository contains the OpenStack Security documentation.

For details on how to contribute to the documentation, see the OpenStack Documentation Contributor Guide.

It includes these manuals:

  • Security Guide
  • Security Notes
  • Security Threat Analysis

The Security Notes are published by the OpenStack Security Project (OSSP) to advise users of security related issues. For more information refer https://wiki.openstack.org/wiki/Security_Notes and https://wiki.openstack.org/wiki/Security/Security_Note_Process.

Security Advisories are issued by the Vulnerability Management Team (VMT). For more information about OpenStack's Vulnerability Management Team (VMT) refer https://security.openstack.org/vmt-process.html.

Directory Structure

Security Guide is in the directory security-guide, which source files in RST format in the directory security-guide/source.

Security Threat Analysis is in the directory security-guide, which source files in RST format in the directory security-threat-analysis/source.

The security notes are in the directory security-notes.

Testing of changes and building of the guides

Install the python tox package and run tox from the top-level directory to use the same tests that are done as part of our Jenkins gating jobs.

tox

Contributing

Our community welcomes all people interested in open source cloud computing, and encourages you to join the OpenStack Foundation.

The best way to get involved with the community is to talk with others online or at a meet up and offer contributions through our processes, the OpenStack wiki, blogs, or on IRC at #openstack on irc.freenode.net.

We welcome all types of contributions, from blueprint designs to documentation to testing to deployment scripts.

If you would like to contribute to the documents, please see the OpenStack Documentation contributor guide.

Bugs

Bugs should be filed on Launchpad, not GitHub:

https://bugs.launchpad.net/openstack-manuals

If you find a security issue in OpenStack, not in the contents of the Security Guide, please see How to Report Security Issues to OpenStack.

Installing

Refer to https://docs.openstack.org/security-guide to see where these documents are published and to learn more about the OpenStack Security Guide.