security-misc

mirror of https://github.com/Kicksecure/security-misc.git synced 2024-10-01 08:25:45 -04:00

Author	SHA1	Message	Date
madaidan	9449f5017a	Create hide-hardware-info	2019-10-03 20:45:14 +00:00
Patrick Schleizer	75258843e9	copyright	2019-09-16 13:03:43 +00:00
Patrick Schleizer	8e39cea876	comment	2019-09-16 13:03:25 +00:00
Patrick Schleizer	bac462f211	comment	2019-09-16 13:03:02 +00:00
Patrick Schleizer	bec680d4f3	pam_tally2-info: fix, do nothing when started as user "user" xscreensaver runs as user "user", therefore pam_tally2 cannot function. xscreensaver has its own failed login counter. as user "user" /sbin/pam_tally2 -u user pam_tally2: Error opening /var/log/tallylog for update: Permission denied /sbin/pam_tally2: Authentication error https://askubuntu.com/questions/983183/how-lock-the-unlock-screen-after-wrong-password-attempts https://forums.whonix.org/t/how-strong-do-linux-user-account-passwords-have-to-be-when-using-full-disk-encryption-fde-too/7698	2019-09-16 12:30:23 +00:00
Patrick Schleizer	0140df8668	virusforget	2019-08-19 08:43:28 +00:00
Patrick Schleizer	113ab42568	virusforget	2019-08-19 08:31:23 +00:00
Patrick Schleizer	416906d4f9	virusforget	2019-08-19 08:19:35 +00:00
Patrick Schleizer	2d867d9fee	virusforget	2019-08-19 08:10:18 +00:00
Patrick Schleizer	8e76e6b8b3	fix	2019-08-19 07:48:12 +00:00
Patrick Schleizer	3f068f77fe	keep cache folder outside of reach of user since even user can remove files owned by root in its home folder	2019-08-19 07:47:20 +00:00
Patrick Schleizer	1fa1efa58e	credits	2019-08-19 07:22:09 +00:00
Patrick Schleizer	1e026a3ebb	initial development version of VirusForget	2019-08-18 22:50:44 +00:00
Patrick Schleizer	41b2819ec8	PAM: abort on locked password to avoid needlessly bumping pam_tally2 counter https://forums.whonix.org/t/restrict-root-access/7658/1	2019-08-17 10:33:47 +00:00
Patrick Schleizer	17cfcb63b6	code simplification; report locked account earlier	2019-08-16 10:50:56 -04:00
Patrick Schleizer	ff9bc1d7ea	informational output during PAM: * Show failed and remaining password attempts. * Document unlock procedure if Linux user account got locked. * Point out, that there is no password feedback for `su`. * Explain locked (root) account if locked. * /usr/share/pam-configs/tally2-security-misc * /usr/lib/security-misc/pam_tally2-info	2019-08-15 13:37:28 +00:00
Patrick Schleizer	547ba91d79	sanity test	2019-08-14 09:45:30 +00:00
Patrick Schleizer	799acad724	skip, if not a folder	2019-08-14 09:39:43 +00:00
Patrick Schleizer	6321ff5ad5	refactoring	2019-08-14 09:38:44 +00:00
Patrick Schleizer	f8c828b69a	output	2019-08-14 05:19:02 -04:00
Patrick Schleizer	e5da6d9699	copyright	2019-08-14 05:17:54 -04:00
Patrick Schleizer	1595789d7c	comment	2019-08-14 05:17:16 -04:00
Patrick Schleizer	21489111d1	run permission lockdown during pam https://forums.whonix.org/t/change-default-umask/7416	2019-08-14 08:34:03 +00:00
Patrick Schleizer	dbea7d1511	add hook etc/kernel/postinst.d/30_remove-system-map to remove system.map on kernel package upgrade; self-document this package: during upgrade the following will be written to stdout: Setting up linux-image-4.19.0-5-amd64 (4.19.37-5+deb10u2) ... /etc/kernel/postinst.d/30_remove-system-map: removed '/boot/System.map-4.19.0-5-amd64	2019-08-14 07:22:14 +00:00
Patrick Schleizer	6af2d7facb	copyright	2019-07-13 18:12:25 +00:00
Patrick Schleizer	75f0ca565d	set -e	2019-07-13 18:12:04 +00:00
Patrick Schleizer	c389e13e1a	use pre.bsh	2019-07-13 17:59:49 +00:00
Patrick Schleizer	bea98474ba	chmod +x usr/lib/security-misc/panic-on-oops	2019-07-11 07:07:21 +00:00
madaidan	52c61011d4	Create panic-on-oops	2019-07-08 22:58:56 +00:00
Patrick Schleizer	a978fe1000	chmod +x usr/lib/security-misc/remove-system.map	2019-06-28 07:17:35 +00:00
madaidan	9392c8deb2	Update remove-system.map	2019-06-26 15:03:54 +00:00
madaidan	8ef0db17e6	Use a for loop to detect if System.map exists	2019-06-26 12:59:45 +00:00
madaidan	382e336f69	Create remove-system.map	2019-06-25 19:20:27 +00:00
Patrick Schleizer	6ba1fb70d2	port to debian buster	2019-04-05 14:06:00 -04:00
Patrick Schleizer	5b3fc2f6b9	update copyright	2018-01-29 15:22:05 +00:00
Patrick Schleizer	c3b6a44e97	update copyright	2018-01-29 15:15:17 +00:00
Patrick Schleizer	ff28f5932c	update copyright	2018-01-29 15:09:42 +00:00
Patrick Schleizer	f6bc188485	comment	2017-02-28 15:22:54 +01:00
Patrick Schleizer	18e23af784	cleanup	2017-02-27 23:59:37 +00:00
Patrick Schleizer	6195450eb2	No longer ignore duplicate apt sources in apt-get-wrapper. No longer acceptable because these generate lots of noise in the terminal.	2017-02-27 23:57:04 +00:00
Patrick Schleizer	191918027c	adjust apt-get-wrapper for Debian stretch's apt-get	2017-02-27 23:43:02 +00:00
Patrick Schleizer	2130b4c654	use python rather than unbuffer because unbuffer eats exit code when process is killed	2017-02-27 23:16:32 +00:00
Patrick Schleizer	cc351165dc	apt-get-wrapper: - fix exit code handling - code simplification	2017-02-27 19:36:38 +00:00
Patrick Schleizer	5653b7732a	fix, show progress during apt-get-wrapper fix, propagate signals to apt-get child process	2017-02-26 23:57:17 +00:00
Patrick Schleizer	bddbba84a6	"$@"	2017-02-14 17:30:31 +00:00
Patrick Schleizer	9b0d3e34fc	add usr/lib/security-misc/apt-get-update-sanity-test a CVE-2016-1252 sanity test script	2017-02-14 02:37:08 +00:00
Patrick Schleizer	90f175e117	double apt-get-update wrapper timeout from 120 to 240 seconds since it takes a bit longer than 120 seconds for me on a fast connection	2017-02-08 14:26:26 +00:00
Patrick Schleizer	0cf6524f0f	apt-get-update: implement SIGINIT trap; hide 'ps' output	2016-12-25 02:33:44 +00:00
Patrick Schleizer	c4089d8d40	update path to /usr/lib/security-misc/apt-get-wrapper	2016-12-25 01:36:04 +00:00
Patrick Schleizer	7b01fb9341	remove obsolete comments	2016-12-25 01:35:17 +00:00

1 2

51 Commits