mirror of
https://github.com/Kicksecure/security-misc.git
synced 2024-12-26 09:39:26 -05:00
Update control
This commit is contained in:
parent
24d9eadcb2
commit
24b326d906
10
debian/control
vendored
10
debian/control
vendored
@ -25,6 +25,8 @@ Description: enhances misc security settings
|
||||
deactivates Netfilter's connection tracking helper;
|
||||
implements some kernel hardening;
|
||||
prevents DMA attacks;
|
||||
restricts access to the root account;
|
||||
increases the amount of hashing rounds used by shadow;
|
||||
.
|
||||
TCP time stamps (RFC 1323) allow for tracking clock
|
||||
information with millisecond resolution. This may or may not allow an
|
||||
@ -118,3 +120,11 @@ Description: enhances misc security settings
|
||||
.
|
||||
The default umask is changed to 006. This allows only the owner and group to
|
||||
read and write to newly created files.
|
||||
.
|
||||
Su is restricted to only users within the root group which prevents users from
|
||||
using su to gain root access or switch user accounts.
|
||||
.
|
||||
Logging into the root account from a terminal is prevented.
|
||||
.
|
||||
The amount of hashing rounds used by shadow is bumped to 65536. This increases
|
||||
the security of hashed passwords.
|
||||
|
Loading…
Reference in New Issue
Block a user