mirror of
https://github.com/Kicksecure/security-misc.git
synced 2025-08-01 14:26:04 -04:00
Disable pstore processing by systemd-pstore service
This commit is contained in:
parent
d927fe238c
commit
f643ebc2f9
2 changed files with 10 additions and 0 deletions
|
@ -413,6 +413,11 @@ Miscellaneous modules:
|
|||
|
||||
`/lib/systemd/coredump.conf.d/30_security-misc.conf`
|
||||
|
||||
- PStore is disabled as crash logs can contain sensitive system data such as
|
||||
kernel version, hostname, and users. See:
|
||||
|
||||
`/usr/lib/systemd/pstore.conf.d/30_security-misc.conf`
|
||||
|
||||
- An initramfs hook sets the sysctl values in `/etc/sysctl.conf` and
|
||||
`/etc/sysctl.d` before init is executed so sysctl hardening is enabled as
|
||||
early as possible. This is implemented for `initramfs-tools` only because
|
||||
|
|
Loading…
Add table
Add a link
Reference in a new issue