security-misc

mirror of https://github.com/Kicksecure/security-misc.git synced 2025-11-25 15:07:11 -05:00

Author	SHA1	Message	Date
Patrick Schleizer	f70550d015	Split the `security-misc` into `security-misc-shared`, `security-misc-desktop` and `security-misc-server`: rename files https://github.com/Kicksecure/security-misc/issues/187	2025-09-17 14:49:28 -04:00
Patrick Schleizer	24424bcbc0	Merge pull request #318 from raja-grewal/vmscape Enable `vmscape=force`	2025-09-17 13:31:27 -04:00
raja-grewal	21c605e27e	Enable `vmscape=force`	2025-09-13 03:41:59 +00:00
raja-grewal	7b32e9339e	Update SRSO docs	2025-09-12 23:10:34 +10:00
raja-grewal	e48897cc44	Merge branch 'master' into panic_limits	2025-08-21 10:27:44 +10:00
raja-grewal	c0ad577793	Update docs on oops boot parameter	2025-08-19 11:01:06 +10:00
Aaron Rainbolt	37c0bc0c5d	Merge remote-tracking branch 'raja/block_32bit' into arraybolt3/trixie	2025-08-17 14:02:01 -05:00
Aaron Rainbolt	210aa97650	Merge remote-tracking branch 'raja/trixie_docs' into arraybolt3/trixie	2025-08-17 13:50:25 -05:00
raja-grewal	f175d1961e	Enable `ia32_emulation=0`	2025-08-17 07:08:08 +00:00
raja-grewal	e06b78a522	Temporarily revert IA32 doc updates	2025-08-17 07:05:32 +00:00
Aaron Rainbolt	7a8dfa528c	Merge remote-tracking branch 'raja/trixie_docs' into arraybolt3/trixie	2025-08-16 21:10:19 -05:00
raja-grewal	1f75426f07	Clarify docs for disabling 32-bit x86 support	2025-08-16 02:20:00 +00:00
Aaron Rainbolt	65afc31ba7	Merge branch 'kcfi' into arraybolt3/trixie	2025-08-15 16:31:50 -05:00
raja-grewal	4166d6d1e6	Update docs on recovery restrictions	2025-08-06 15:53:49 +10:00
raja-grewal	498551536c	Update docs	2025-08-06 03:12:06 +00:00
raja-grewal	1f7525722e	Enable `cfi=kcfi`	2025-08-06 01:48:47 +00:00
raja-grewal	6f9763f525	Enable `indirect_target_selection=force`	2025-07-19 05:19:27 +00:00
raja-grewal	72613203b9	Add reference	2025-06-06 13:07:52 +00:00
raja-grewal	35fa32e4ed	Reword	2025-05-17 15:06:49 +10:00
raja-grewal	a1bde21ccb	Set `erst_disable`	2025-05-17 04:41:06 +00:00
Patrick Schleizer	9f2836d2ba	Merge pull request #304 from raja-grewal/stop_pstore Disable PStore	2025-04-15 15:17:25 -04:00
Patrick Schleizer	163d51f32a	newline at the end	2025-04-09 09:47:52 -04:00
raja-grewal	df2fc2cf6b	Set `efi_pstore.pstore_disable=1`	2025-03-16 03:30:04 +00:00
Patrick Schleizer	7c150d116d	LANG=C str_replace: no longer requires LANG=C, therefore removed	2025-01-30 07:45:08 -05:00
raja-grewal	15d13a8571	Add info on DBX updates via the UEFI Revocation List	2025-01-21 12:36:04 +00:00
Patrick Schleizer	e9ef3602dd	Merge pull request #292 from raja-grewal/cpu_table Add link to tabular comparison of CPU mitigations	2025-01-10 10:30:34 -05:00
raja-grewal	538b312349	Add comment about microcode updates	2025-01-09 15:28:56 +11:00
Patrick Schleizer	33114f771a	copyright	2024-12-31 13:26:21 -05:00
raja-grewal	642b4eeedc	Add link to tabular comparison of CPU mitigations	2024-12-19 21:57:25 +11:00
raja-grewal	0dff2cd28f	Minor additions	2024-12-18 03:32:35 +00:00
raja-grewal	3e96fdd9cc	Enable `kvm.mitigate_smt_rsb=1`	2024-12-17 11:44:11 +00:00
raja-grewal	45355aabdc	Enable `kvm-intel.vmentry_l1d_flush=always`	2024-12-17 11:42:52 +00:00
raja-grewal	defba1f245	Refactor CPU mitigations	2024-12-17 11:42:03 +00:00
raja-grewal	943c421889	Minor refactoring	2024-12-17 11:40:38 +00:00
Aaron Rainbolt	439fa7f3be	Harden/disable recovery mode options	2024-12-08 03:42:54 -06:00
raja-grewal	8107782fa5	Enable `ssbd=force-on`	2024-11-08 15:36:04 +11:00
raja-grewal	09fe46adc9	Clarify KSPP compliance header for the undocumented case	2024-10-14 02:54:30 +00:00
raja-grewal	39d063d494	Add KSPP=no definition	2024-09-26 13:09:21 +00:00
Raja Grewal	2c356e8b0e	Add KSPP notice definitions	2024-08-26 11:34:12 +10:00
Raja Grewal	e4909b5e28	Add details on kernel panics	2024-08-25 12:47:04 +10:00
Raja Grewal	56b28e3826	Typo	2024-08-19 11:50:08 +10:00
Raja Grewal	94dab1b7c5	Partial compliance with the KSPP on kernel panics	2024-08-19 10:53:05 +10:00
Raja Grewal	248e094b8e	Include KSPP compliance notices	2024-08-17 01:06:21 +10:00
Raja Grewal	e3a3207a44	Clarify DMA hardening	2024-08-16 12:41:36 +10:00
Raja Grewal	73db68dbf9	Add details on KFENCE	2024-08-09 14:27:30 +10:00
Raja Grewal	15c638acad	Add reference on RDRAND	2024-08-09 13:36:47 +10:00
Raja Grewal	d8bcec881f	Add some notices for future Debian 13 rebase	2024-08-09 13:33:32 +10:00
Raja Grewal	e5a38fc856	Typo	2024-08-09 13:30:15 +10:00
Patrick Schleizer	a25aaf900a	Merge pull request #260 from raja-grewal/vdso32 Enable `vdso32=0`	2024-08-06 09:55:20 -04:00
Patrick Schleizer	6bc039a430	Merge pull request #259 from raja-grewal/kfence Enable `kfence.sample_interval=100`	2024-08-06 09:52:56 -04:00

1 2 3 4

176 commits