mirror of
https://github.com/Kicksecure/security-misc.git
synced 2025-05-18 00:00:23 -04:00
readme
This commit is contained in:
parent
63c6405ab7
commit
201d6b5efc
1 changed files with 3 additions and 1 deletions
|
@ -44,7 +44,7 @@ way which an attacker can exploit.
|
|||
|
||||
* Memory zeroing at allocation and free time is enabled.
|
||||
|
||||
* Machine checks (MCE) are disabled which makes the kernel panic
|
||||
* The machine check tolerance level is decreased which makes the kernel panic
|
||||
on uncorrectable errors in ECC memory that could be exploited.
|
||||
|
||||
* Kernel Page Table Isolation is enabled to mitigate Meltdown and increase
|
||||
|
@ -108,6 +108,8 @@ Secure Attention Key.
|
|||
|
||||
* Restricts loading line disciplines to `CAP_SYS_MODULE`.
|
||||
|
||||
* Restricts the `userfaultfd()` syscall to root.
|
||||
|
||||
Improve Entropy Collection
|
||||
|
||||
* Load `jitterentropy_rng` kernel module.
|
||||
|
|
Loading…
Add table
Add a link
Reference in a new issue