mirror of
https://github.com/Kicksecure/security-misc.git
synced 2025-06-07 18:12:39 -04:00
readme
This commit is contained in:
parent
c87fc75f2a
commit
aaebb32b66
1 changed files with 7 additions and 0 deletions
|
@ -68,6 +68,13 @@ flawed process.
|
||||||
a history of security concerns.
|
a history of security concerns.
|
||||||
https://en.wikipedia.org/wiki/Bluetooth#History_of_security_concerns
|
https://en.wikipedia.org/wiki/Bluetooth#History_of_security_concerns
|
||||||
|
|
||||||
|
* A systemd service restricts /proc/cpuinfo, /proc/bus, /proc/scsi and
|
||||||
|
/sys to the root user only. This hides a lot of hardware identifiers from
|
||||||
|
unprivileged users and increases security as /sys exposes a lot of information
|
||||||
|
that shouldn't be accessible to unprivileged users. As this will break many
|
||||||
|
things, it is disabled by default and can optionally be enabled by running
|
||||||
|
`systemctl enable hide-hardware-info.service` as root.
|
||||||
|
|
||||||
Uncommon network protocols are blacklisted:
|
Uncommon network protocols are blacklisted:
|
||||||
These are rarely used and may have unknown vulnerabilities.
|
These are rarely used and may have unknown vulnerabilities.
|
||||||
/etc/modprobe.d/uncommon-network-protocols.conf
|
/etc/modprobe.d/uncommon-network-protocols.conf
|
||||||
|
|
Loading…
Add table
Add a link
Reference in a new issue