Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-04-15 04:02:59 -04:00
Code Issues Packages Projects Releases Wiki Activity

Disable pstore processing by systemd-pstore service

Browse Source
This commit is contained in:
raja-grewal 2025-03-16 03:28:39 +00:00 committed by GitHub
parent d927fe238c
commit f643ebc2f9
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
README.md
View File

@ -413,6 +413,11 @@ Miscellaneous modules:
`/lib/systemd/coredump.conf.d/30_security-misc.conf`
- PStore is disabled as crash logs can contain sensitive system data such as
kernel version, hostname, and users. See:
`/usr/lib/systemd/pstore.conf.d/30_security-misc.conf`
- An initramfs hook sets the sysctl values in `/etc/sysctl.conf` and
`/etc/sysctl.d` before init is executed so sysctl hardening is enabled as
early as possible. This is implemented for `initramfs-tools` only because

5
usr/lib/systemd/pstore.conf.d/30_security-misc.conf Normal file
View File

@ -0,0 +1,5 @@
## Copyright (C) 2025 - 2025 ENCRYPTED SUPPORT LLC <adrelanos@whonix.org>
## See the file COPYING for copying conditions.
[PStore]
Storage=none