security-misc

mirror of https://github.com/Kicksecure/security-misc.git synced 2025-12-11 05:34:54 -05:00

Author	SHA1	Message	Date
raja-grewal	e48897cc44	Merge branch 'master' into panic_limits	2025-08-21 10:27:44 +10:00
Patrick Schleizer	c2d5bf38f5	comment	2025-08-20 10:44:10 -04:00
Patrick Schleizer	812f05f847	comments	2025-08-20 10:11:49 -04:00
raja-grewal	c0ad577793	Update docs on oops boot parameter	2025-08-19 11:01:06 +10:00
Aaron Rainbolt	37c0bc0c5d	Merge remote-tracking branch 'raja/block_32bit' into arraybolt3/trixie	2025-08-17 14:02:01 -05:00
Aaron Rainbolt	210aa97650	Merge remote-tracking branch 'raja/trixie_docs' into arraybolt3/trixie	2025-08-17 13:50:25 -05:00
raja-grewal	f175d1961e	Enable `ia32_emulation=0`	2025-08-17 07:08:08 +00:00
raja-grewal	e06b78a522	Temporarily revert IA32 doc updates	2025-08-17 07:05:32 +00:00
Aaron Rainbolt	7a8dfa528c	Merge remote-tracking branch 'raja/trixie_docs' into arraybolt3/trixie	2025-08-16 21:10:19 -05:00
raja-grewal	1f75426f07	Clarify docs for disabling 32-bit x86 support	2025-08-16 02:20:00 +00:00
Aaron Rainbolt	cba16879ef	Polish USBGuard configuration	2025-08-15 17:16:42 -05:00
Aaron Rainbolt	b4086b8e77	Merge remote-tracking branch 'monsieuremre/patch-3' into arraybolt3/trixie	2025-08-15 16:57:34 -05:00
Aaron Rainbolt	66ec5bda58	Remove obsolete Thunderbird configuration hardening	2025-08-15 16:51:07 -05:00
Aaron Rainbolt	94668b2e93	Set hard and soft limits on core file size at the same time	2025-08-15 16:47:41 -05:00
Aaron Rainbolt	e2c65a2a6f	Merge remote-tracking branch 'nrz/master' into arraybolt3/trixie	2025-08-15 16:45:18 -05:00
Aaron Rainbolt	65afc31ba7	Merge branch 'kcfi' into arraybolt3/trixie	2025-08-15 16:31:50 -05:00
Aaron Rainbolt	a2a9e8440b	Merge branch 'trixie_docs' into arraybolt3/trixie	2025-08-15 16:06:35 -05:00
Aaron Rainbolt	2ada07cf66	Add SSH hardening config	2025-08-07 22:23:03 -05:00
Aaron Rainbolt	2a3bc39eba	Use Ctrl+Alt+End as the default panic key rather than Ctrl+Alt+Delete	2025-08-06 19:10:37 -05:00
raja-grewal	4166d6d1e6	Update docs on recovery restrictions	2025-08-06 15:53:49 +10:00
raja-grewal	498551536c	Update docs	2025-08-06 03:12:06 +00:00
raja-grewal	1f7525722e	Enable `cfi=kcfi`	2025-08-06 01:48:47 +00:00
Aaron Rainbolt	63f2909341	Fix emerg-shutdown and ensure-shutdown libexec scripts, start emerg-shutdown and ensure-shutdown earlier	2025-08-03 15:00:14 -05:00
Patrick Schleizer	4da810c8fa	comment	2025-08-03 07:16:00 -04:00
nexus$	28ce706441	Set soft limit for core dumps to 0	2025-08-01 15:03:26 +00:00
Aaron Rainbolt	1a60da71ed	emerg-shutdown: Add shutdown timeout for preventing stuck shutdowns, briefly document feature set and usage	2025-07-29 21:16:51 -05:00
Aaron Rainbolt	e42078e90d	emerg-shutdown: fix the hang-on-shutdown bug, add autodetection of new keyboards, shutdown key configuration, and instant shutdown option	2025-07-28 20:43:54 -05:00
raja-grewal	6f9763f525	Enable `indirect_target_selection=force`	2025-07-19 05:19:27 +00:00
Patrick Schleizer	468cf40e2a	Merge pull request #306 from raja-grewal/erst Set `erst_disable`	2025-07-02 13:45:28 -04:00
Kevin Agwaze	e3c4519179	remove misleading TemporaryTimeout=0 in Bluetooth config	2025-06-16 10:35:16 +01:00
raja-grewal	72613203b9	Add reference	2025-06-06 13:07:52 +00:00
raja-grewal	1c35303204	Merge branch 'Kicksecure:master' into erst	2025-05-23 20:20:19 +10:00
Patrick Schleizer	14cf205579	fix	2025-05-21 08:36:16 -04:00
raja-grewal	35fa32e4ed	Reword	2025-05-17 15:06:49 +10:00
raja-grewal	a1bde21ccb	Set `erst_disable`	2025-05-17 04:41:06 +00:00
Patrick Schleizer	4bf0e3a636	comments	2025-04-21 04:57:07 -04:00
Patrick Schleizer	502f5953c7	comments	2025-04-21 04:55:19 -04:00
Patrick Schleizer	abb0c83619	comments	2025-04-21 04:54:06 -04:00
Patrick Schleizer	efa2967fca	comments	2025-04-21 04:53:04 -04:00
Patrick Schleizer	9f2836d2ba	Merge pull request #304 from raja-grewal/stop_pstore Disable PStore	2025-04-15 15:17:25 -04:00
Patrick Schleizer	163d51f32a	newline at the end	2025-04-09 09:47:52 -04:00
Patrick Schleizer	39f4f5b607	comments	2025-04-08 06:53:08 -04:00
raja-grewal	df2fc2cf6b	Set `efi_pstore.pstore_disable=1`	2025-03-16 03:30:04 +00:00
Patrick Schleizer	cd0ba94ac5	no longer disable `vivid` kernel module by default, because it breaks Qubes Video Companion Thanks to @marmarek for the bug report! https://forums.whonix.org/t/testing-qubes-video-companion-on-whonix/21393 fixes https://github.com/Kicksecure/security-misc/issues/298	2025-03-03 05:57:59 -05:00
Patrick Schleizer	7c150d116d	LANG=C str_replace: no longer requires LANG=C, therefore removed	2025-01-30 07:45:08 -05:00
raja-grewal	15d13a8571	Add info on DBX updates via the UEFI Revocation List	2025-01-21 12:36:04 +00:00
Patrick Schleizer	e9ef3602dd	Merge pull request #292 from raja-grewal/cpu_table Add link to tabular comparison of CPU mitigations	2025-01-10 10:30:34 -05:00
raja-grewal	538b312349	Add comment about microcode updates	2025-01-09 15:28:56 +11:00
Patrick Schleizer	33114f771a	copyright	2024-12-31 13:26:21 -05:00
Patrick Schleizer	ad6e1f5ad4	move from `/etc/permission-hardener.d` to `/usr/lib/permission-hardener.d`	2024-12-20 00:41:06 -05:00

1 2 3 4 5 ...

608 commits