From a2c1e8c218117a47ef70dd767d753be5d084adfa Mon Sep 17 00:00:00 2001 From: Patrick Schleizer Date: Fri, 20 Dec 2024 00:39:51 -0500 Subject: [PATCH] clean up old files in `/etc/permission-hardener.d` because will be moved to `/usr/lib/permission-hardener.d` --- debian/security-misc.maintscript | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) diff --git a/debian/security-misc.maintscript b/debian/security-misc.maintscript index f6d6a83..adce7ef 100644 --- a/debian/security-misc.maintscript +++ b/debian/security-misc.maintscript @@ -68,6 +68,28 @@ rm_conffile /etc/permission-hardening.d/25_default_whitelist_unix_chkpwd.conf rm_conffile /etc/permission-hardening.d/25_default_whitelist_virtualbox.conf rm_conffile /etc/permission-hardening.d/30_default.conf +## moved to /usr/lib/permission-hardener.d +rm_conffile /etc/permission-hardener.d/25_default_passwd.conf +rm_conffile /etc/permission-hardener.d/25_default_sudo.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_bubblewrap.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_chromium.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_dbus.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_firejail.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_fuse.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_hardened_malloc.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_mount.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_pam.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_policykit.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_postfix.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_qubes.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_selinux.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_spice.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_ssh.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_sudo.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_unix_chkpwd.conf +rm_conffile /etc/permission-hardener.d/25_default_whitelist_virtualbox.conf +rm_conffile /etc/permission-hardener.d/30_default.conf + ## merged into 1 file /etc/default/grub.d/40_kernel_hardening.cfg rm_conffile /etc/default/grub.d/40_distrust_bootloader.cfg rm_conffile /etc/default/grub.d/40_distrust_cpu.cfg