Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2024-10-01 08:25:45 -04:00
Code Issues Packages Projects Releases Wiki Activity

Update control

Browse Source
This commit is contained in:
madaidan 2019-07-11 15:26:14 +00:00 committed by GitHub
parent f5356cee2c
commit 853c2eb377
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 38 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

38
debian/control vendored
View File

@ -100,6 +100,44 @@ Description: enhances misc security settings
Uncommon network protocols are blacklisted as they are rarely used and
may have unknown vulnerabilities.
.
The network protocols that are blacklisted are
.
* DCCP - Datagram Congestion Control Protocol
.
* SCTP - Stream Control Transmission Protocol
.
* RDS - Reliable Datagram Sockets
.
* TIPC - Transparent Inter-process Communication
.
* HDLC - High-Level Data Link Control
.
* AX25 - Amateur X.25
.
* NetRom
.
* X25
.
* ROSE
.
* DECnet
.
* Econet
.
* af_802154 - IEEE 802.15.4
.
* IPX - Internetwork Packet Exchange
.
* AppleTalk
.
* PSNAP - Subnetwork Access Protocol
.
* p8023 - Novell raw IEEE 802.3
.
* LLC - IEEE 802.2
.
* p8022 - IEEE 802.2
.
The kernel logs are restricted to root only.
.
A systemd service clears System.map on boot as these contain kernel symbols