Commit Graph

688 Commits

Author SHA1 Message Date
Patrick Schleizer
40e536a9be
bumped changelog version 2023-11-05 16:04:03 -05:00
Patrick Schleizer
52b6e92e00
bumped changelog version 2023-11-05 15:58:21 -05:00
Patrick Schleizer
76e3a3c5f9
bumped changelog version 2023-11-05 15:29:38 -05:00
Patrick Schleizer
949c163370
bumped changelog version 2023-11-05 15:14:43 -05:00
Patrick Schleizer
4a19fbae0b
move permission-hardening to /usr/bin to make it more easily accessible 2023-11-05 15:13:01 -05:00
Patrick Schleizer
0544657123
bumped changelog version 2023-11-05 14:56:06 -05:00
Patrick Schleizer
eab5d7d4ec
cleanup 2023-11-05 14:50:13 -05:00
Patrick Schleizer
5a75bcfb19
Merge pull request #145 from monsieuremre/wifi-and-bluetooth
Wifi and Bluetooth Patch | Security and Privacy
2023-11-05 14:49:00 -05:00
Patrick Schleizer
dcead44cc6
output 2023-11-05 11:32:46 -05:00
Patrick Schleizer
f6bf69b41f
update link 2023-11-05 11:31:09 -05:00
Patrick Schleizer
0242c04dc2
port to DKMS drop-in folder
undisplace /etc/dkms/framework.conf.security-misc
moved to /etc/dkms/framework.conf.d/30_security-misc.conf
2023-11-03 14:51:14 -04:00
Patrick Schleizer
48adb44c6f
bumped changelog version 2023-11-03 12:17:24 -04:00
Patrick Schleizer
b6d53f698d
Revert "allow loading unsigned modules due to issues"
This reverts commit 661bcd8603.
2023-11-03 12:17:00 -04:00
Patrick Schleizer
04b210ee88
bumped changelog version 2023-11-03 12:10:48 -04:00
Patrick Schleizer
7dc99d54c0
fix 2023-11-03 12:09:39 -04:00
Patrick Schleizer
2a602e78d6
Merge branch 'master' into PAM-tmp-files-hardening 2023-11-03 12:08:50 -04:00
Patrick Schleizer
ceffd2b3ee
bumped changelog version 2023-11-03 12:06:43 -04:00
Patrick Schleizer
cdd66ee376
wrap-and-sort 2023-11-03 10:48:46 -04:00
Patrick Schleizer
8326aecdb4
bumped changelog version 2023-11-03 10:33:02 -04:00
Patrick Schleizer
07540db90d
Revert "Revert "set default umask to 027""
This reverts commit f8913ceb2e.
2023-11-03 09:45:12 -04:00
Patrick Schleizer
f8913ceb2e
Revert "set default umask to 027"
This reverts commit cd216095eb.
2023-11-03 09:43:44 -04:00
Patrick Schleizer
43bd789c30
bumped changelog version 2023-11-03 09:28:08 -04:00
Patrick Schleizer
cd216095eb
set default umask to 027
using package libpam-umask

https://www.debian.org/doc/manuals/securing-debian-manual/ch04s11.en.html#id-1.5.14.19

https://github.com/Kicksecure/security-misc/pull/151
2023-11-03 09:12:24 -04:00
monsieuremre
3ee4be652b
depend on libpam-tmpdir 2023-11-02 09:36:58 +00:00
Patrick Schleizer
a768f1f1eb
bumped changelog version 2023-11-01 12:26:21 -04:00
Patrick Schleizer
5ed2a5ce4a
bumped changelog version 2023-11-01 11:10:36 -04:00
monsieuremre
90a88225a4
security-misc.maintscript 2023-10-27 14:38:31 +00:00
Patrick Schleizer
7d576842fb
bumped changelog version 2023-10-26 20:08:41 -04:00
Patrick Schleizer
ca9603af17
bumped changelog version 2023-10-26 12:23:48 -04:00
Patrick Schleizer
5f4222c1c3
enable SUID Disabler and Permission Hardener by default
https://www.kicksecure.com/wiki/SUID_Disabler_and_Permission_Hardener

https://forums.whonix.org/t/suid-disabler-and-permission-hardener/7706
2023-10-26 12:20:48 -04:00
Patrick Schleizer
8557e0963e
bumped changelog version 2023-10-25 17:55:37 -04:00
Patrick Schleizer
b7e2d49f5f
comment 2023-10-25 17:41:05 -04:00
Patrick Schleizer
a2f811aff0
Merge pull request #135 from monsieuremre/kernel-fix
Kernel hardening fix
2023-10-25 17:26:46 -04:00
monsieuremre
ee6716e178
security-misc.maintscript 2023-10-24 20:43:10 +00:00
Patrick Schleizer
3317332cb4
bumped changelog version 2023-10-24 05:51:11 -04:00
Patrick Schleizer
f3b40f12cb
bumped changelog version 2023-10-22 19:23:22 -04:00
Patrick Schleizer
ee15f749bb
bumped changelog version 2023-10-22 16:54:58 -04:00
Patrick Schleizer
a1c3b87fce
bumped changelog version 2023-10-22 16:29:08 -04:00
Patrick Schleizer
9a649ddd09
bumped changelog version 2023-10-22 16:16:40 -04:00
Patrick Schleizer
555d83792d
bumped changelog version 2023-10-22 15:44:47 -04:00
Patrick Schleizer
316282952f
bumped changelog version 2023-10-22 15:40:59 -04:00
Patrick Schleizer
fa0804b7ae
bumped changelog version 2023-10-22 15:33:21 -04:00
Patrick Schleizer
36f2acb93f
bumped changelog version 2023-10-22 15:28:04 -04:00
Patrick Schleizer
f440209738
bumped changelog version 2023-10-22 14:46:42 -04:00
Patrick Schleizer
b29b626b41
bumped changelog version 2023-10-22 14:30:28 -04:00
Patrick Schleizer
3c183294cd
bumped changelog version 2023-10-22 13:31:55 -04:00
Patrick Schleizer
f70f36e6cf
bumped changelog version 2023-10-22 12:55:41 -04:00
Patrick Schleizer
1696c37251
bumped changelog version 2023-10-22 11:28:18 -04:00
Patrick Schleizer
975a017dec
bumped changelog version 2023-10-22 11:13:05 -04:00
Patrick Schleizer
a423b85f81
bumped changelog version 2023-10-22 10:50:30 -04:00
Patrick Schleizer
1120d0652d
bumped changelog version 2023-10-22 10:16:53 -04:00
Patrick Schleizer
4f6f45fb39
bumped changelog version 2023-10-22 10:01:54 -04:00
Patrick Schleizer
f472ce690a
comments 2023-10-22 08:57:35 -04:00
Patrick Schleizer
05e9accf64
bumped changelog version 2023-10-22 08:12:30 -04:00
Patrick Schleizer
27b3ba8bdf
bumped changelog version 2023-10-22 07:06:00 -04:00
Patrick Schleizer
ef3f157573
bumped changelog version 2023-10-21 14:19:24 -04:00
Patrick Schleizer
ae2c1c5a7a
fix xession environment variable 2023-10-21 14:18:50 -04:00
Patrick Schleizer
43375fa1f4
bumped changelog version 2023-10-21 12:34:59 -04:00
Patrick Schleizer
d543825d85
comments 2023-10-21 12:24:59 -04:00
Patrick Schleizer
dd43ab634d
bumped changelog version 2023-10-13 15:22:58 -04:00
Patrick Schleizer
13a4f37e50
bumped changelog version 2023-10-12 12:51:37 -04:00
Patrick Schleizer
e96e6aa38e
bumped changelog version 2023-10-12 10:43:40 -04:00
Patrick Schleizer
fa820e8978
refactoring environment variables loading mechanism 2023-10-12 10:40:27 -04:00
Patrick Schleizer
358e4226f1
bumped changelog version 2023-07-17 11:48:35 -04:00
Patrick Schleizer
81ad786dfc
Kicksecure 2023-07-17 11:19:07 -04:00
Patrick Schleizer
ab56b7ca0c
Kicksecure 2023-07-17 11:10:05 -04:00
Patrick Schleizer
29aaf13c13
bumped changelog version 2023-06-23 08:18:12 +00:00
Patrick Schleizer
609c8c0697
bumped changelog version 2023-06-21 09:36:44 +00:00
Patrick Schleizer
94a326ec7f
bookworm 2023-06-21 09:11:31 +00:00
Patrick Schleizer
b610cdcbcd
bumped changelog version 2023-06-16 11:09:02 +00:00
Patrick Schleizer
63599a09d7
bumped changelog version 2023-06-14 09:59:20 +00:00
Patrick Schleizer
be990188f5
bumped changelog version 2023-06-12 18:01:55 +00:00
Patrick Schleizer
07b3ce0bcd
Standards-Version: 4.6.1.0 2023-06-12 16:22:32 +00:00
Patrick Schleizer
4e28ace103
bumped changelog version 2023-05-15 17:31:59 +00:00
Patrick Schleizer
c921d4e915
bumped changelog version 2023-05-15 11:56:30 +00:00
Patrick Schleizer
6511dac1d4
bumped changelog version 2023-05-06 12:00:12 +00:00
Patrick Schleizer
a815c9b986
bumped changelog version 2023-05-06 11:54:31 +00:00
Patrick Schleizer
b756314eb8
bumped changelog version 2023-05-05 15:09:32 +00:00
Patrick Schleizer
d6d79e96c9
minor mmap-rnd-bits improvements 2023-05-05 14:44:29 +00:00
Jeremy Rand
2cf105700a
postinst: Don't fail if mmap-rnd-bits fails 2023-04-24 23:07:40 +00:00
Jeremy Rand
61f63255ac
vm.mmap_rnd_bits: Fix ppc64le
Probably fixes a bunch of other non-x86_64 arches too.
2023-04-24 23:07:39 +00:00
Raja Grewal
7a4212dd76
Update copyright 2023-03-30 17:08:47 +11:00
Patrick Schleizer
1137e6c910
bumped changelog version 2023-01-30 05:58:47 -05:00
Patrick Schleizer
56c7c57b3a
bumped changelog version 2023-01-24 07:09:40 -05:00
Patrick Schleizer
a482008650
bumped changelog version 2023-01-24 07:05:53 -05:00
Patrick Schleizer
11d0bb2c00
bumped changelog version 2023-01-09 07:05:18 -05:00
Patrick Schleizer
c506652187
fix 2023-01-09 07:05:06 -05:00
Patrick Schleizer
b3d85f115c
bumped changelog version 2023-01-09 07:02:01 -05:00
Patrick Schleizer
ad5d0d4b12
disable kexec (revert enabling kexec)
remove kexec-utils for ram-wipe since moved to its own package
2023-01-09 06:37:45 -05:00
Patrick Schleizer
87c4e77c01
migrate to ram-wipe package 2023-01-09 06:23:00 -05:00
Patrick Schleizer
3867acf723
bumped changelog version 2023-01-09 05:34:48 -05:00
Patrick Schleizer
7fa6946694
bumped changelog version 2023-01-08 07:17:02 -05:00
Patrick Schleizer
e81dd6cd25
bumped changelog version 2023-01-07 18:13:57 -05:00
Patrick Schleizer
921bc3e867
bumped changelog version 2023-01-07 17:49:24 -05:00
Patrick Schleizer
1d22ebde08
bumped changelog version 2023-01-07 17:23:35 -05:00
Patrick Schleizer
abbaea582d
bumped changelog version 2023-01-07 17:16:23 -05:00
Patrick Schleizer
fa579cad89
bumped changelog version 2023-01-07 16:20:48 -05:00
Patrick Schleizer
c1b87d250c
bumped changelog version 2023-01-07 15:37:47 -05:00
Patrick Schleizer
1e19c2cbad
Depends: kexec-tools
required for cold boot attack defense second RAM wipe after reboot
2023-01-07 15:32:25 -05:00
Patrick Schleizer
d5271d6250
bumped changelog version 2023-01-07 14:31:40 -05:00