security-misc

mirror of https://github.com/Kicksecure/security-misc.git synced 2025-11-28 19:10:21 -05:00

Author	SHA1	Message	Date
raja-grewal	29176d2ed2	Remove the option to reduce the MCE tolerance level	2025-11-15 06:30:11 +00:00
raja-grewal	9f897c5ccd	Update docs on reducing the MCE tolerance level	2025-11-15 05:48:33 +00:00
raja-grewal	b6fe1a5a6e	Make panic related settings consistent Ensures the `sysctl` and boot parameters are equivalent in settings and in description. This should prevent future questions regarding having omitted boot parameters that were actually redundant.	2025-11-15 04:51:01 +00:00
raja-grewal	a3830db09e	Update docs relating to panic on OOM	2025-11-09 13:42:31 +00:00
raja-grewal	0aa0b67df6	Merge branch 'master' into docs	2025-11-10 00:20:48 +11:00
Patrick Schleizer	0391411885	revert Force immediate kernel panic on OOM. https://github.com/Kicksecure/security-misc/issues/324#issuecomment-3507949741	2025-11-09 05:47:00 -05:00
Patrick Schleizer	1ef974300a	readme	2025-11-08 04:00:47 -05:00
raja-grewal	a46f678c7f	Update docs on latent entropy	2025-11-05 00:05:17 +00:00
raja-grewal	37b493826e	Spit distrusting entropy settings for clarity	2025-11-05 00:03:54 +00:00
raja-grewal	019a0cf72c	Update docs on entropy	2025-11-05 00:03:19 +00:00
raja-grewal	4c88b91141	Merge branch 'Kicksecure:master' into docs	2025-11-05 10:10:10 +11:00
Aaron Rainbolt	7beb19b64a	Update README.md with info about flatpak auth hardening	2025-11-01 22:06:44 -05:00
raja-grewal	8f78269949	Add docs on slab_debug	2025-10-20 05:36:54 +00:00
raja-grewal	9f7480e20a	Make terminology consistent	2025-10-19 01:41:58 +00:00
raja-grewal	f2c3eba4f0	Merge branch 'Kicksecure:master' into docs	2025-10-19 12:23:13 +11:00
Aaron Rainbolt	3d5e659b78	Remove trailing spaces	2025-10-15 19:02:48 -05:00
Aaron Rainbolt	29639fe69e	Merge remote-tracking branch 'raja/bad_ipv6_ra' into arraybolt3/trixie	2025-10-15 19:01:08 -05:00
Aaron Rainbolt	026d55ac41	Typo fixes	2025-10-15 18:30:52 -05:00
Aaron Rainbolt	35fce26476	Merge remote-tracking branch 'raja/stop_ptrace' into arraybolt3/trixie	2025-10-15 18:18:33 -05:00
raja-grewal	f690b58870	Add docs relating to panic on OOM	2025-10-13 02:08:44 +00:00
raja-grewal	9db63d9777	README: Update KSSP compliance status	2025-10-13 01:01:14 +00:00
Patrick Schleizer	4d9c3dc357	minor	2025-10-10 08:08:10 -04:00
Patrick Schleizer	968de33c65	Force immediate kernel panic on OOM. This is to avoid security features such as the screen locker, kloak, emerg-shutdown from being arbitrarily terminated when the system starts running out of memory. https://forums.whonix.org/t/screen-locker-in-security-can-we-disable-these-at-least-4-backdoors/8128/14 https://github.com/Kicksecure/security-misc/issues/324 `vm.panic_on_oom=2` implements https://github.com/Kicksecure/security-misc/issues/324	2025-10-10 08:03:03 -04:00
Patrick Schleizer	98f27c3b2e	comment	2025-10-10 06:53:04 -04:00
raja-grewal	e89c7ae025	Update docs on `slab_debug` for future improvements	2025-10-08 02:39:20 +00:00
raja-grewal	0c8f2f1b44	Add docs about the risks associated with IPv6 RAs	2025-10-02 07:05:00 +00:00
raja-grewal	194b8fce4e	Disable the usage of `ptrace()` by all processes	2025-09-28 03:20:24 +00:00
raja-grewal	d31f63fb10	README: Notice on public releases	2025-09-23 05:47:45 +00:00
Aaron Rainbolt	2a39d5997c	security-misc split string changes	2025-09-21 16:06:11 -05:00
Patrick Schleizer	f70550d015	Split the `security-misc` into `security-misc-shared`, `security-misc-desktop` and `security-misc-server`: rename files https://github.com/Kicksecure/security-misc/issues/187	2025-09-17 14:49:28 -04:00
raja-grewal	21c605e27e	Enable `vmscape=force`	2025-09-13 03:41:59 +00:00
Aaron Rainbolt	893faa9822	Remove initramfs-tools support	2025-08-23 22:53:13 -05:00
raja-grewal	e48897cc44	Merge branch 'master' into panic_limits	2025-08-21 10:27:44 +10:00
raja-grewal	add054933b	Update docs on instant reboot when kernel panic	2025-08-21 00:24:28 +00:00
Patrick Schleizer	2b876c74a3	readme	2025-08-20 10:09:10 -04:00
Patrick Schleizer	0e4664daa0	cleanup	2025-08-20 10:07:58 -04:00
Aaron Rainbolt	37c0bc0c5d	Merge remote-tracking branch 'raja/block_32bit' into arraybolt3/trixie	2025-08-17 14:02:01 -05:00
Aaron Rainbolt	b5a36e02f1	Merge remote-tracking branch 'raja/panic_limits' into arraybolt3/trixie	2025-08-17 13:52:01 -05:00
Aaron Rainbolt	210aa97650	Merge remote-tracking branch 'raja/trixie_docs' into arraybolt3/trixie	2025-08-17 13:50:25 -05:00
raja-grewal	f175d1961e	Enable `ia32_emulation=0`	2025-08-17 07:08:08 +00:00
raja-grewal	3de9cd5646	Remove whitespace	2025-08-17 07:06:55 +00:00
raja-grewal	e06b78a522	Temporarily revert IA32 doc updates	2025-08-17 07:05:32 +00:00
raja-grewal	247015bcc6	Set `sysctl kernel.panic=-1`	2025-08-17 06:27:44 +00:00
Aaron Rainbolt	7a8dfa528c	Merge remote-tracking branch 'raja/trixie_docs' into arraybolt3/trixie	2025-08-16 21:10:19 -05:00
raja-grewal	1f75426f07	Clarify docs for disabling 32-bit x86 support	2025-08-16 02:20:00 +00:00
Aaron Rainbolt	65afc31ba7	Merge branch 'kcfi' into arraybolt3/trixie	2025-08-15 16:31:50 -05:00
raja-grewal	00c660d40d	Typo	2025-08-15 11:29:27 +10:00
raja-grewal	498551536c	Update docs	2025-08-06 03:12:06 +00:00
raja-grewal	45d20dd972	Upgrade sysctls and docs on kernel panics	2025-08-06 02:35:15 +00:00
raja-grewal	1f7525722e	Enable `cfi=kcfi`	2025-08-06 01:48:47 +00:00

1 2 3 4 5 ...

307 commits