From 5b9fb229aff8911b095631e1b9450756b156be77 Mon Sep 17 00:00:00 2001 From: optout Date: Sun, 3 Mar 2024 18:39:16 +0000 Subject: [PATCH] Update naming schema | WIP warning with virt_hardened --- README.md | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index e427aea..b7d23db 100644 --- a/README.md +++ b/README.md @@ -1,6 +1,10 @@ ### What is the Plague kernel? The Plague kernel was initially designed for PlagueOS (hardened Void Linux musl), however the project has taken a life of its own. The kernel is distro-agnostic, therefore it can be ran on Debian, Fedora, Void Linux, and many more. The script detailed below allows for self-compilation of the Plague kernel, along with the option to tailor a custom kernel to your specific hardware. +- [host_hardened.config]() - Feature-complete baseline designed for the host +- [virt_hardened.config]() - Work-in-progress baseline designed to work within various guest Virtual Machines + - Note: This is currently bootable, but a comprehensive test is still needed within a set of VMs. Most notable issues at the moment are video + The script performs a variety of functions: - Installs needed dependencies for compilation - Stages desired linux-hardened kernel under `/usr/src/` @@ -18,7 +22,7 @@ The script performs a variety of functions: ### Trimming Efforts While linux-hardened security patchsets along with kernel configurations are notable for this kernel project, the purpose was to practice minimalism by reducing the size of the linux kernel, thereby cutting attack surface. This is not a trivial thing to record, therefore we are displaying the size purely as a point of comparison. -| | Plague (Virt) | Plague | TAILS | Whonix | Vanilla | +| | Plague (Virt) | Plague (Host) | TAILS | Whonix | Vanilla | | --- | --- |--- | --- | --- | --- | | Size (/lib/modules/)| 1.8 MB | 31.0 MB | 89.0 MB | 89.0 MB | 126.0 MB | | Size (vmlinuz) | 7.9 MB | 8.0 MB | 7.8 MB | 7.8 MB | 14.0 MB |