Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-05-28 14:52:09 -04:00
Code Issues Projects Releases Packages Wiki Activity

description, fix lintian warning

Browse source
This commit is contained in:
Patrick Schleizer 2019-10-18 10:36:44 +00:00
parent ce6b64a9ba
commit d301e7f365
No known key found for this signature in database
GPG key ID: CB8D50BB77BB3C48
1 changed files with 5 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

8
debian/control vendored
View file

@ -42,8 +42,9 @@ Description: enhances misc security settings
.
* The TCP/IP stack is hardened by disabling ICMP redirect acceptance,
ICMP redirect sending and source routing to prevent man-in-the-middle attacks,
ignoring all ICMP requests, enabling TCP syncookies to prevent SYN flood attacks
and enabling RFC1337 to protect against time-wait assassination attacks.
ignoring all ICMP requests, enabling TCP syncookies to prevent SYN flood
attacks and enabling RFC1337 to protect against time-wait assassination
attacks.
.
* Some data spoofing attacks are made harder.
.
@ -61,7 +62,8 @@ Description: enhances misc security settings
* Kernel Page Table Isolation is enabled to mitigate Meltdown and increase
KASLR effectiveness.
.
* SMT is disabled as it can be used to exploit the MDS and other vulnerabilities.
* SMT is disabled as it can be used to exploit the MDS and other
vulnerabilities.
.
* All mitigations for the MDS vulnerability are enabled.
.