Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-01-24 12:31:05 -05:00
Code Issues Packages Projects Releases Wiki Activity

readme

Browse Source
This commit is contained in:
Patrick Schleizer 2020-03-03 09:07:42 -05:00
parent 63c6405ab7
commit 201d6b5efc
No known key found for this signature in database
GPG Key ID: CB8D50BB77BB3C48
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
README.md
View File

@ -44,7 +44,7 @@ way which an attacker can exploit.
* Memory zeroing at allocation and free time is enabled. * Memory zeroing at allocation and free time is enabled.
* Machine checks (MCE) are disabled which makes the kernel panic * The machine check tolerance level is decreased which makes the kernel panic
on uncorrectable errors in ECC memory that could be exploited. on uncorrectable errors in ECC memory that could be exploited.
* Kernel Page Table Isolation is enabled to mitigate Meltdown and increase * Kernel Page Table Isolation is enabled to mitigate Meltdown and increase
@ -108,6 +108,8 @@ Secure Attention Key.
* Restricts loading line disciplines to `CAP_SYS_MODULE`. * Restricts loading line disciplines to `CAP_SYS_MODULE`.
* Restricts the `userfaultfd()` syscall to root.
Improve Entropy Collection Improve Entropy Collection
* Load `jitterentropy_rng` kernel module. * Load `jitterentropy_rng` kernel module.