Commit Graph

544 Commits

Author SHA1 Message Date
Patrick Schleizer
2a6289980e
syntax fix
GRUB_CMDLINE_LINUX="$GRUB_CMDLINE_LINUX mds=full,nosmt"

https://forums.whonix.org/t/kernel-hardening/7296/70
2019-06-23 18:46:52 +00:00
Patrick Schleizer
f1147318c0
Merge remote-tracking branch 'origin/master' 2019-06-23 18:45:41 +00:00
Patrick Schleizer
aec6da28e9
Merge pull request #10 from madaidan/patch-6
Enable more kernel hardening parameters
2019-06-23 18:45:24 +00:00
madaidan
641407c8e9
Enable IOMMU 2019-06-23 18:38:50 +00:00
madaidan
07c6362f1a
Blacklist thunderbolt and firewire 2019-06-23 18:34:45 +00:00
madaidan
2178fb37a8
Add more kernel hardening parameters 2019-06-23 17:54:34 +00:00
Patrick Schleizer
cd7346699c
bumped changelog version 2019-06-23 12:22:13 +00:00
Patrick Schleizer
60334797d0
/etc/sysctl.d/tcp_sack.conf 2019-06-23 09:00:12 +00:00
Patrick Schleizer
d404624bac
bumped changelog version 2019-06-23 08:38:01 +00:00
Patrick Schleizer
ae50d81342
Merge remote-tracking branch 'origin/master' 2019-06-23 03:59:58 -04:00
Patrick Schleizer
cd7172c00c
Merge pull request #9 from madaidan/patch-5
Disables SACK.
2019-06-23 07:59:35 +00:00
madaidan
807ac7d659
Create tcp_sack.conf 2019-06-22 16:08:30 +00:00
Patrick Schleizer
5269cfeef9
bumped changelog version 2019-06-21 05:40:04 +00:00
Patrick Schleizer
0a5b15ff45
Merge remote-tracking branch 'origin/master' 2019-06-21 04:05:50 +00:00
Patrick Schleizer
f9dc1b6322
Merge pull request #8 from marmarek/packaging
qubes-builder integration
2019-06-20 23:54:58 -04:00
Marek Marczykowski-Górecki
2e81885f69
Add rpm packaging
QubesOS/qubes-issues#1885
2019-06-21 04:52:01 +02:00
Marek Marczykowski-Górecki
27e68a39fe
Add Makefile.builder for qubes-builder (Debian)
QubesOS/qubes-issues#1885
2019-06-21 04:51:33 +02:00
Patrick Schleizer
ca1aa1e577
bumped changelog version 2019-06-10 15:42:58 +00:00
Patrick Schleizer
8b5e84d76a
cleanup, delete debian/security-misc.maintscript to fix lintian warning 2019-06-09 10:24:53 +00:00
Patrick Schleizer
f9acd890a7
lintian 2019-06-09 10:24:24 +00:00
Patrick Schleizer
49873e8e02
solve package file conflict
https://github.com/QubesOS/qubes-issues/issues/1885#issuecomment-500200375
2019-06-09 10:06:58 +00:00
Patrick Schleizer
d5127e7166
bumped changelog version 2019-06-08 11:32:12 +00:00
Patrick Schleizer
9fe5872810
fix debian/watch lintian warning debian-watch-contains-dh_make-template 2019-06-08 00:05:35 -04:00
Patrick Schleizer
e7edbe5fb4
bumped changelog version 2019-05-24 20:48:59 +00:00
Patrick Schleizer
6102c571a3
readme 2019-05-24 12:29:08 -04:00
Patrick Schleizer
afb5f5f965
bumped changelog version 2019-05-23 22:38:13 +00:00
Patrick Schleizer
0a200e09ec
Merge remote-tracking branch 'origin/master' 2019-05-23 18:25:47 -04:00
Patrick Schleizer
244234c8b7
Merge pull request #7 from madaidan/patch-3
Disable uncommon network protocols
2019-05-23 22:25:13 +00:00
madaidan
7177c6041a
Create uncommon-network-protocols.conf 2019-05-16 20:30:49 +00:00
Patrick Schleizer
65d7eb81a6
bumped changelog version 2019-05-16 20:25:46 +00:00
Patrick Schleizer
a2b184e5bb
Merge remote-tracking branch 'origin/master' 2019-05-16 19:53:27 +00:00
Patrick Schleizer
7d7b899dd1
Merge pull request #6 from madaidan/patch-2
Even more kernel hardening
2019-05-16 19:52:52 +00:00
madaidan
b814f338b8
Update tcp_hardening.conf 2019-05-16 16:33:03 +00:00
madaidan
e6794721bd
Update ptrace_scope.conf 2019-05-16 16:29:20 +00:00
Patrick Schleizer
71bf63511b
bumped changelog version 2019-05-12 11:08:32 +00:00
Patrick Schleizer
c040117fe4
lintian 2019-05-12 10:50:34 +00:00
Patrick Schleizer
26fe4305a1
bumped changelog version 2019-05-12 10:48:27 +00:00
Patrick Schleizer
06b86229a4
update path to pre.bsh 2019-05-12 02:58:45 -04:00
Patrick Schleizer
137bc073c5
port to /etc/xdg/xfce4/xfconf/xfce-perchannel-xml
https://forums.whonix.org/t/whonix-xfce-development/6213/84?u=patrick
2019-05-08 21:38:25 -04:00
Patrick Schleizer
3bd4da6794
Merge remote-tracking branch 'origin/master' 2019-05-08 21:32:29 -04:00
Patrick Schleizer
b00a264ce2
Disable thunar-volman by default. 2019-05-08 21:29:36 -04:00
madaidan
a4852ad6c8
Create fs_protected.conf 2019-05-06 20:37:53 +00:00
madaidan
0296e51e06
Create ptrace_scope.conf 2019-05-06 15:46:37 +00:00
madaidan
2923fc96ef
Create tcp_hardening.conf 2019-05-06 15:45:53 +00:00
madaidan
4216299ee8
Create kexec.conf 2019-05-06 15:42:55 +00:00
Patrick Schleizer
c80b7465bf
bumped changelog version 2019-05-06 09:58:44 +00:00
Patrick Schleizer
f917c27a19
remove trailing spaces 2019-05-06 05:51:14 -04:00
Patrick Schleizer
83e12f8e89
Merge remote-tracking branch 'origin/master' 2019-05-06 05:50:35 -04:00
Patrick Schleizer
5177444d62
Merge pull request #5 from madaidan/patch-1
More kernel hardening
2019-05-06 05:46:03 -04:00
madaidan
02e8888b0b
Update 40_kernel_hardening.cfg 2019-05-05 20:17:33 +00:00