Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-01-13 22:59:30 -05:00
Code Issues Packages Projects Releases Wiki Activity

Update control

Browse Source
This commit is contained in:
madaidan 2019-07-08 23:24:41 +00:00 committed by GitHub
parent 24d9eadcb2
commit 24b326d906
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
debian/control vendored
View File

@ -25,6 +25,8 @@ Description: enhances misc security settings
deactivates Netfilter's connection tracking helper; deactivates Netfilter's connection tracking helper;
implements some kernel hardening; implements some kernel hardening;
prevents DMA attacks; prevents DMA attacks;
restricts access to the root account;
increases the amount of hashing rounds used by shadow;
. .
TCP time stamps (RFC 1323) allow for tracking clock TCP time stamps (RFC 1323) allow for tracking clock
information with millisecond resolution. This may or may not allow an information with millisecond resolution. This may or may not allow an
@ -118,3 +120,11 @@ Description: enhances misc security settings
. .
The default umask is changed to 006. This allows only the owner and group to The default umask is changed to 006. This allows only the owner and group to
read and write to newly created files. read and write to newly created files.
.
Su is restricted to only users within the root group which prevents users from
using su to gain root access or switch user accounts.
.
Logging into the root account from a terminal is prevented.
.
The amount of hashing rounds used by shadow is bumped to 65536. This increases
the security of hashed passwords.