Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-12-28 00:04:35 -05:00
Code Issues Projects Releases Packages Wiki Activity

Minor fixes to docs

Browse source
This commit is contained in:
raja-grewal 2025-12-12 02:04:38 +00:00 committed by GitHub
parent fe1cfcd1a0
commit 8040ba7579
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 5 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

10
etc/modprobe.d/30_security-misc_disable.conf#security-misc-shared
View file

@ -17,7 +17,7 @@
## 1. Hardware:
## Bluetooth:
## Can disable Bluetooth to reduce the attack surface due to its long history of security vulnerabilities.
## Disable Bluetooth to reduce the attack surface due to its long history of security vulnerabilities.
## Replaced with a privacy and security preserving default Bluetooth configuration for better usability.
##
## https://en.wikipedia.org/wiki/Bluetooth#History_of_security_concerns
@ -190,7 +190,7 @@ install nfsv4 /usr/bin/disabled-netfilesys-by-security-misc
## 2. Networking:
## Network Protocols:
## Disables rare and unneeded network protocols that are a common source of unknown vulnerabilities.
## Disable rare and unneeded network protocols that are a common source of unknown vulnerabilities.
## Previously had blacklisted eepro100 and eth1394.
##
## https://tails.boum.org/blueprint/blacklist_modules/
@ -328,7 +328,7 @@ install de4x5 /usr/bin/disabled-miscellaneous-by-security-misc
install prism54 /usr/bin/disabled-miscellaneous-by-security-misc
## RNDIS:
## Disabled as believed to have unfixable buffer overflow issues impossible to make secure.
## Disable as believed to have unfixable buffer overflow issues impossible to make secure.
## Used by some network devices common with Android USB tethering.
##
## https://en.wikipedia.org/wiki/RNDIS
@ -339,12 +339,12 @@ install rndis_host /usr/bin/disabled-miscellaneous-by-security-misc
install usb_f_rndis /usr/bin/disabled-miscellaneous-by-security-misc
## USB Video Device Class:
## Disables the USB-based video streaming driver for devices like some webcams and digital camcorders.
## Disable the USB-based video streaming driver for devices like some webcams and digital camcorders.
##
#install uvcvideo /usr/bin/disabled-miscellaneous-by-security-misc
## Vivid:
## Can disable the vivid kernel module since it has been the cause of multiple vulnerabilities.
## Disable the vivid kernel module since it has been the cause of multiple vulnerabilities.
## Required only for running tests associated with the Qubes Video Companion.
##
## https://forums.whonix.org/t/kernel-recompilation-for-better-hardening/7598/233