Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-07-25 18:15:20 -04:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #263 from raja-grewal/max_user_namespaces

Browse source 
Provide option to disable user namespaces
This commit is contained in:
Patrick Schleizer 2024-08-25 11:00:51 -04:00 committed by GitHub
commit 73900b59db
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
2 changed files with 10 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
README.md
View file

@ -36,7 +36,7 @@ Kernel space:
can no longer be utilized. See [documentation](https://www.kicksecure.com/wiki/SysRq).
- Restrict user namespaces to `CAP_SYS_ADMIN` as they can lead to substantial
privilege escalation.
privilege escalation. Optional - Disable all use of user namespaces.
- Restrict kernel profiling and the performance events system to `CAP_PERFMON`.