mirror of
https://github.com/Kicksecure/security-misc.git
synced 2025-08-01 13:46:04 -04:00
Update control
This commit is contained in:
parent
700c7ed908
commit
2796c2dd00
1 changed files with 1 additions and 6 deletions
7
debian/control
vendored
7
debian/control
vendored
|
@ -66,12 +66,7 @@ Description: enhances misc security settings
|
|||
* Kernel Page Table Isolation is enabled to mitigate Meltdown and increase
|
||||
KASLR effectiveness.
|
||||
.
|
||||
* SMT is disabled as it can be used to exploit the MDS and other
|
||||
vulnerabilities.
|
||||
.
|
||||
* All mitigations for the MDS vulnerability are enabled.
|
||||
.
|
||||
* Enables mitigations for the L1TF (L1 Terminal Fault) vulnerability.
|
||||
* Enables all mitigations for CPU vulnerabilities and disables SMT.
|
||||
.
|
||||
* A systemd service clears System.map on boot as these contain kernel symbols
|
||||
that could be useful to an attacker.
|
||||
|
|
Loading…
Add table
Add a link
Reference in a new issue