Patrick Schleizer
|
94d40c68d4
|
do not set kernel boot parameter page_poison=1 in Qubes since does not work
https://github.com/QubesOS/qubes-issues/issues/5212#issuecomment-533873012
|
2019-11-05 10:02:55 -05:00 |
|
Patrick Schleizer
|
f57702c158
|
comments; copyright
|
2019-11-05 09:55:43 -05:00 |
|
Patrick Schleizer
|
74293bcd2f
|
output
|
2019-11-05 01:59:25 -05:00 |
|
Patrick Schleizer
|
2b5b06b602
|
output
|
2019-11-05 01:59:19 -05:00 |
|
Patrick Schleizer
|
d6977becba
|
refactoring
|
2019-11-05 01:51:14 -05:00 |
|
Patrick Schleizer
|
daf0006795
|
comment
|
2019-11-05 01:50:27 -05:00 |
|
Patrick Schleizer
|
78defc4d0b
|
add /var/cache/security-misc/state-files/placeholder file
to make sure folder already exists to avoid AppArmor issue
https://forums.whonix.org/t/apparmor-for-complete-system-including-init-pid1-systemd-everything-full-system-mac-policy/8339/76
|
2019-11-03 04:34:31 -05:00 |
|
Patrick Schleizer
|
7c0ec7e507
|
readme
|
2019-11-03 04:23:40 -05:00 |
|
Patrick Schleizer
|
b55c2fd62e
|
Enables punycode (network.IDN_show_punycode ) by default in Thunderbird
to make phising attacks more difficult. Fixing URL not showing real Domain
Name (Homograph attack).
https://forums.whonix.org/t/enable-network-idn-show-punycode-by-default-in-thunderbird-to-fix-url-not-showing-real-domain-name-homograph-attack-punycode/8415
|
2019-11-03 02:50:51 -05:00 |
|
Patrick Schleizer
|
bf62306d4f
|
bumped changelog version
|
2019-10-31 16:34:35 +00:00 |
|
Patrick Schleizer
|
e1375802eb
|
apparmor fix
https://forums.whonix.org/t/apparmor-for-complete-system-including-init-pid1-systemd-everything-full-system-mac-policy/8339/67
|
2019-10-31 16:32:28 +00:00 |
|
Patrick Schleizer
|
6e5d8b357d
|
bumped changelog version
|
2019-10-31 16:06:51 +00:00 |
|
Patrick Schleizer
|
203d5cfa68
|
copyright
|
2019-10-31 11:19:44 -04:00 |
|
Patrick Schleizer
|
f001250ae6
|
Merge remote-tracking branch 'origin/master'
|
2019-10-28 10:31:30 -04:00 |
|
Patrick Schleizer
|
5a3cbe8100
|
Merge pull request #35 from madaidan/apparmor
Apparmor profiles
|
2019-10-28 14:30:45 +00:00 |
|
madaidan
|
0e49bdc45f
|
Licensing
|
2019-10-28 14:26:14 +00:00 |
|
madaidan
|
5d5ad92638
|
Licensing
|
2019-10-28 14:26:05 +00:00 |
|
madaidan
|
0699747fcb
|
Debian packaging
|
2019-10-28 14:24:37 +00:00 |
|
madaidan
|
fe4e29d392
|
Depend on dh-apparmor
|
2019-10-28 14:22:47 +00:00 |
|
madaidan
|
1b8b3610b1
|
Create usr.lib.security-misc.pam_tally2-info
|
2019-10-28 14:20:59 +00:00 |
|
madaidan
|
29b05546e4
|
Create usr.lib.security-misc.permission-lockdown
|
2019-10-28 14:20:08 +00:00 |
|
Patrick Schleizer
|
d832ab91bd
|
bumped changelog version
|
2019-10-23 10:22:03 +00:00 |
|
Patrick Schleizer
|
bce5274a15
|
quotes fix
|
2019-10-22 09:22:29 -04:00 |
|
Patrick Schleizer
|
e20b9e2133
|
better solution when using pkexec with --user: wrap sudo --user with lxqt-sudo
|
2019-10-22 09:08:18 -04:00 |
|
Patrick Schleizer
|
d4e02de43a
|
set SUDO_ASKPASS for pkexec wrapper when using sudo --askpass
|
2019-10-22 09:04:44 -04:00 |
|
Patrick Schleizer
|
1a65a91039
|
long rather than short option
|
2019-10-22 08:56:05 -04:00 |
|
Patrick Schleizer
|
b55913637b
|
silence output by mount/grep
|
2019-10-22 08:54:48 -04:00 |
|
Patrick Schleizer
|
a1154170c9
|
Call original pkexec in case there are no arguments.
|
2019-10-22 08:54:17 -04:00 |
|
Patrick Schleizer
|
9c8f678cb9
|
bumped changelog version
|
2019-10-21 09:55:41 +00:00 |
|
Patrick Schleizer
|
1e4d0ea1d0
|
fix lintian warning
|
2019-10-21 09:55:05 +00:00 |
|
Patrick Schleizer
|
343d9cc916
|
fix
|
2019-10-21 09:53:55 +00:00 |
|
Patrick Schleizer
|
2d436f3602
|
bumped changelog version
|
2019-10-21 09:51:36 +00:00 |
|
Patrick Schleizer
|
af3f42dabf
|
readme
|
2019-10-21 09:51:12 +00:00 |
|
Patrick Schleizer
|
40707e70db
|
Redirect calls for pkexec to lxqt-sudo because pkexec is incompatible with hidepid.
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860040
https://forums.whonix.org/t/cannot-use-pkexec/8129
Thanks to AnonymousUser for the bug report!
|
2019-10-21 05:46:49 -04:00 |
|
Patrick Schleizer
|
31b771ac2e
|
bumped changelog version
|
2019-10-18 10:39:43 +00:00 |
|
Patrick Schleizer
|
2613525b94
|
readme
|
2019-10-18 10:39:19 +00:00 |
|
Patrick Schleizer
|
957deac5cb
|
fix lintian warning
W: security-misc: maintainer-script-should-not-parse-etc-passwd-or-group preinst:19
|
2019-10-18 10:38:25 +00:00 |
|
Patrick Schleizer
|
d301e7f365
|
description, fix lintian warning
|
2019-10-18 10:36:44 +00:00 |
|
Patrick Schleizer
|
ce6b64a9ba
|
bumped changelog version
|
2019-10-18 08:55:07 +00:00 |
|
Patrick Schleizer
|
20b7faa61f
|
readme
|
2019-10-18 08:54:43 +00:00 |
|
Patrick Schleizer
|
c9d75ef9ea
|
abort installation if no user is part of group sudo
https://forums.whonix.org/t/is-security-misc-suitable-for-hardening-bridges-and-relays/8299/4
Thanks to minimal for the bug report!
|
2019-10-17 06:46:47 -04:00 |
|
Patrick Schleizer
|
a5045dc26e
|
set -e
|
2019-10-17 06:18:32 -04:00 |
|
Patrick Schleizer
|
0b8725306f
|
renamed: etc/hide-hardware-info.d/30_whitelist.conf -> etc/hide-hardware-info.d/30_default.conf
|
2019-10-17 06:13:44 -04:00 |
|
Patrick Schleizer
|
4aba027566
|
syntax check
|
2019-10-17 06:12:36 -04:00 |
|
Patrick Schleizer
|
8b9aa8841a
|
fix
|
2019-10-17 06:11:01 -04:00 |
|
Patrick Schleizer
|
cfbd77040a
|
set "shopt -s nullglob" to avoid failing when folder /etc/hide-hardware-info.d
does not exist or is empty
|
2019-10-17 06:10:29 -04:00 |
|
Patrick Schleizer
|
b05663c5f6
|
shuffle
https://forums.whonix.org/t/restrict-hardware-information-to-root/7329/80
|
2019-10-17 06:08:55 -04:00 |
|
Patrick Schleizer
|
28a440091d
|
code simplification
|
2019-10-17 06:08:16 -04:00 |
|
Patrick Schleizer
|
3c4e261c20
|
remove trailing spaces
|
2019-10-17 06:05:23 -04:00 |
|
Patrick Schleizer
|
c8e0303d6d
|
Merge remote-tracking branch 'origin/master'
|
2019-10-17 06:04:34 -04:00 |
|