Commit Graph

1209 Commits

Author SHA1 Message Date
Patrick Schleizer
7e12e16dc0
Merge pull request #11 from madaidan/patch-7
Protect against DMA attacks
2019-06-28 06:57:42 +00:00
madaidan
3801a53a9e
Update tcp_hardening.conf 2019-06-27 18:17:58 +00:00
madaidan
c54125270b
Create dmesg_restrict.conf 2019-06-27 18:15:57 +00:00
madaidan
b809185008
Update remove-system-map.service 2019-06-27 16:09:52 +00:00
madaidan
9392c8deb2
Update remove-system.map 2019-06-26 15:03:54 +00:00
madaidan
8ef0db17e6
Use a for loop to detect if System.map exists 2019-06-26 12:59:45 +00:00
madaidan
3116a56f13
Create remove-system-map.service 2019-06-25 19:25:32 +00:00
madaidan
382e336f69
Create remove-system.map 2019-06-25 19:20:27 +00:00
madaidan
01c839c815
Restrict what the SysRq key can do 2019-06-25 19:16:43 +00:00
Patrick Schleizer
0a0be1ad28
bumped changelog version 2019-06-23 19:57:42 +00:00
Patrick Schleizer
7806af1419
readme 2019-06-23 19:51:53 +00:00
Patrick Schleizer
4e32438d75
debian/control syntax fix 2019-06-23 19:47:05 +00:00
Patrick Schleizer
a098b18560
Merge remote-tracking branch 'origin/master' 2019-06-23 19:46:30 +00:00
Patrick Schleizer
90d676ec18
Merge pull request #12 from madaidan/patch-8
Update control
2019-06-23 19:45:31 +00:00
madaidan
1a07d90ed2
Update control 2019-06-23 19:26:03 +00:00
Patrick Schleizer
2a6289980e
syntax fix
GRUB_CMDLINE_LINUX="$GRUB_CMDLINE_LINUX mds=full,nosmt"

https://forums.whonix.org/t/kernel-hardening/7296/70
2019-06-23 18:46:52 +00:00
Patrick Schleizer
f1147318c0
Merge remote-tracking branch 'origin/master' 2019-06-23 18:45:41 +00:00
Patrick Schleizer
aec6da28e9
Merge pull request #10 from madaidan/patch-6
Enable more kernel hardening parameters
2019-06-23 18:45:24 +00:00
madaidan
641407c8e9
Enable IOMMU 2019-06-23 18:38:50 +00:00
madaidan
07c6362f1a
Blacklist thunderbolt and firewire 2019-06-23 18:34:45 +00:00
madaidan
2178fb37a8
Add more kernel hardening parameters 2019-06-23 17:54:34 +00:00
Patrick Schleizer
cd7346699c
bumped changelog version 2019-06-23 12:22:13 +00:00
Patrick Schleizer
60334797d0
/etc/sysctl.d/tcp_sack.conf 2019-06-23 09:00:12 +00:00
Patrick Schleizer
d404624bac
bumped changelog version 2019-06-23 08:38:01 +00:00
Patrick Schleizer
ae50d81342
Merge remote-tracking branch 'origin/master' 2019-06-23 03:59:58 -04:00
Patrick Schleizer
cd7172c00c
Merge pull request #9 from madaidan/patch-5
Disables SACK.
2019-06-23 07:59:35 +00:00
madaidan
807ac7d659
Create tcp_sack.conf 2019-06-22 16:08:30 +00:00
Patrick Schleizer
5269cfeef9
bumped changelog version 2019-06-21 05:40:04 +00:00
Patrick Schleizer
0a5b15ff45
Merge remote-tracking branch 'origin/master' 2019-06-21 04:05:50 +00:00
Patrick Schleizer
f9dc1b6322
Merge pull request #8 from marmarek/packaging
qubes-builder integration
2019-06-20 23:54:58 -04:00
Marek Marczykowski-Górecki
2e81885f69
Add rpm packaging
QubesOS/qubes-issues#1885
2019-06-21 04:52:01 +02:00
Marek Marczykowski-Górecki
27e68a39fe
Add Makefile.builder for qubes-builder (Debian)
QubesOS/qubes-issues#1885
2019-06-21 04:51:33 +02:00
Patrick Schleizer
ca1aa1e577
bumped changelog version 2019-06-10 15:42:58 +00:00
Patrick Schleizer
8b5e84d76a
cleanup, delete debian/security-misc.maintscript to fix lintian warning 2019-06-09 10:24:53 +00:00
Patrick Schleizer
f9acd890a7
lintian 2019-06-09 10:24:24 +00:00
Patrick Schleizer
49873e8e02
solve package file conflict
https://github.com/QubesOS/qubes-issues/issues/1885#issuecomment-500200375
2019-06-09 10:06:58 +00:00
Patrick Schleizer
d5127e7166
bumped changelog version 2019-06-08 11:32:12 +00:00
Patrick Schleizer
9fe5872810
fix debian/watch lintian warning debian-watch-contains-dh_make-template 2019-06-08 00:05:35 -04:00
Patrick Schleizer
e7edbe5fb4
bumped changelog version 2019-05-24 20:48:59 +00:00
Patrick Schleizer
6102c571a3
readme 2019-05-24 12:29:08 -04:00
Patrick Schleizer
afb5f5f965
bumped changelog version 2019-05-23 22:38:13 +00:00
Patrick Schleizer
0a200e09ec
Merge remote-tracking branch 'origin/master' 2019-05-23 18:25:47 -04:00
Patrick Schleizer
244234c8b7
Merge pull request #7 from madaidan/patch-3
Disable uncommon network protocols
2019-05-23 22:25:13 +00:00
madaidan
7177c6041a
Create uncommon-network-protocols.conf 2019-05-16 20:30:49 +00:00
Patrick Schleizer
65d7eb81a6
bumped changelog version 2019-05-16 20:25:46 +00:00
Patrick Schleizer
a2b184e5bb
Merge remote-tracking branch 'origin/master' 2019-05-16 19:53:27 +00:00
Patrick Schleizer
7d7b899dd1
Merge pull request #6 from madaidan/patch-2
Even more kernel hardening
2019-05-16 19:52:52 +00:00
madaidan
b814f338b8
Update tcp_hardening.conf 2019-05-16 16:33:03 +00:00
madaidan
e6794721bd
Update ptrace_scope.conf 2019-05-16 16:29:20 +00:00
Patrick Schleizer
71bf63511b
bumped changelog version 2019-05-12 11:08:32 +00:00