14. Security
![[Tip]](./stylesheet-images/tip.png) | Latest Release Notes on the Web |
|---|---|
These release notes may be updated. Visit http://docs.fedoraproject.org/release-notes/ to view the latest release notes for Fedora. |
This section highlights various security items from Fedora.
14.1. Security Enhancements
Fedora continues to improve its many proactive security features, and FORTIFY_SOURCE has now been enhanced to cover C++ in addition to C, which prevents many security exploits.
A brand new graphical firewall configuration tool, system-config-firewall, replaces system-config-securitylevel.
This release offers Kiosk functionality via SELinux, among many new enhancements and security policy changes.
The glibc package in Fedora 8 now has support for passwords using SHA256 and SHA512 hashing. Before only DES and MD5 were available. The tools to create passwords have not been extended yet, but if such passwords are created in others ways, glibc will recognize and honor them.
Secure remote management capability is now provided for Xen, KVM, and QEMU in Fedora 8 virtualization.
14.2. General Information
A general introduction to the many proactive security features in Fedora, current status, and policies is available at http://fedoraproject.org/wiki/Security.
14.2.1. SELinux
The SELinux project pages have troubleshooting tips, explanations, and pointers to documentation and references. Some useful links include the following:
New SELinux project pages: http://fedoraproject.org/wiki/SELinux
Troubleshooting tips: http://fedoraproject.org/wiki/SELinux/Troubleshooting
Frequently Asked Questions: http://docs.fedoraproject.org/selinux-faq/
Listing of SELinux commands: http://fedoraproject.org/wiki/SELinux/Commands
Details of confined domains: http://fedoraproject.org/wiki/SELinux/Domains