Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-06-20 22:34:12 -04:00
Code Issues Projects Releases Packages Wiki Activity

Clarify

Browse source
This commit is contained in:
Raja Grewal 2024-07-28 21:57:25 +10:00
parent f699eb02a2
commit 9fbee9fc82
No known key found for this signature in database
GPG key ID: 92CA473C156B64C4
1 changed files with 2 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

4
usr/lib/sysctl.d/990-security-misc.conf
View file

@ -195,8 +195,8 @@ vm.max_map_count=1048576
## Disable the miscellaneous binary format virtual file system to prevent unintended code execution. ## Disable the miscellaneous binary format virtual file system to prevent unintended code execution.
## Prevents registering interpreters for various binary formats based on a magic number or their file extension. ## Prevents registering interpreters for various binary formats based on a magic number or their file extension.
## If arbitrary executable file formats are recognised, they will be passed to relevant user space applications. ## Otherwise arbitrary executables with recognized file formats will be passed to relevant user space applications.
## These interpreters will run with root permissions when a setuid binary is owned by root. ## These interpreters will the run with root permissions when a setuid binary is owned by root.
## Can stop maliciously crafted files with specific file extensions from automatically executing. ## Can stop maliciously crafted files with specific file extensions from automatically executing.
## Breaks many scripts that do not have appropriate shebang interpreter directives (#!/bin/...). ## Breaks many scripts that do not have appropriate shebang interpreter directives (#!/bin/...).
## ##