Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2024-12-26 05:49:28 -05:00
Code Issues Packages Projects Releases Wiki Activity

output

Browse Source
This commit is contained in:
Patrick Schleizer 2023-11-06 16:36:22 -05:00
parent 72f6e6bb9c
commit df5f3e8056
No known key found for this signature in database
GPG Key ID: CB8D50BB77BB3C48
1 changed files with 8 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
usr/bin/permission-hardening
View File

@ -6,9 +6,6 @@
## https://forums.whonix.org/t/disable-suid-binaries/7706 ## https://forums.whonix.org/t/disable-suid-binaries/7706
## https://forums.whonix.org/t/re-mount-home-and-other-with-noexec-and-nosuid-among-other-useful-mount-options-for-better-security/7707 ## https://forums.whonix.org/t/re-mount-home-and-other-with-noexec-and-nosuid-among-other-useful-mount-options-for-better-security/7707
## To view previous modes and how these were changed:
## meld /var/lib/permission-hardening/existing_mode/statoverride /var/lib/permission-hardening/new_mode/statoverride
## To undo: ## To undo:
## sudo /usr/libexec/security-misc/permission-hardening-undo ## sudo /usr/libexec/security-misc/permission-hardening-undo
@ -498,6 +495,14 @@ parse_config_folder() {
sanity_tests sanity_tests
parse_config_folder parse_config_folder
echo "\
INFO: To compare the current and previous permission modes:
1. Install 'meld' (or similar) for an easier comparison of file changes:
sudo apt install --no-install-recommends meld
2. Use 'meld' to view the differences:
meld /var/lib/permission-hardening/existing_mode/statoverride /var/lib/permission-hardening/new_mode/statoverride"
if [ ! "$exit_code" = "0" ]; then if [ ! "$exit_code" = "0" ]; then
echo "ERROR: Will exit with non-zero exit code: '$exit_code'" >&2 echo "ERROR: Will exit with non-zero exit code: '$exit_code'" >&2
fi fi