Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-11-24 18:03:05 -05:00
Code Issues Projects Releases Packages Wiki Activity

Commit graph

  • a0d4e868fa
         Merge 5ac02d2d52 into 2089b3a9b8 raja-grewal 2025-11-24 14:30:49 -05:00
  • 2089b3a9b8
         bumped changelog version master 50.3-1 Patrick Schleizer 2025-11-24 08:44:10 +00:00
  • cbd35502f1
         comment Patrick Schleizer 2025-11-24 03:18:25 -05:00
  • cac73c3154
         minor Patrick Schleizer 2025-11-24 03:17:38 -05:00
  • d68988e76c
         comments Patrick Schleizer 2025-11-24 03:17:25 -05:00
  • c1ca36d758
         Merge remote-tracking branch 'ArrayBolt3/arraybolt3/trixie' Patrick Schleizer 2025-11-24 03:11:19 -05:00
  • c508204397
         Merge ebc011e67b into ec11679514 raja-grewal 2025-11-24 03:31:53 +01:00
  • a3417e997d
         Add pkexec remembered permissions fix for permission-hardener, fix some postinst bugs Aaron Rainbolt 2025-11-23 16:27:59 -06:00
  • edda37809f
         Remove obsolete migration code for permission-hardener, add initial permission-hardener state installation code Aaron Rainbolt 2025-11-23 14:54:02 -06:00
  • 1f1d2b5bee
         Merge ab98da957c into ec11679514 raja-grewal 2025-11-23 16:41:02 +00:00
  • ec11679514
         bumped changelog version 50.2-1 Patrick Schleizer 2025-11-23 10:26:13 +00:00
  • 5c4d3162ab
         fix Patrick Schleizer 2025-11-23 05:25:13 -05:00
  • 6fed89c1d0
         Merge 30068ec8cd into 9f85a78c99 raja-grewal 2025-11-22 04:01:58 +00:00
  • 30068ec8cd
         Correct bitmask raja-grewal 2025-11-22 15:01:47 +11:00
  • 8e86fe5c1c
         Merge f75e987337 into 9f85a78c99 raja-grewal 2025-11-21 13:55:17 +00:00
  • f75e987337
         Relabel some disabled module headings raja-grewal 2025-11-21 13:06:42 +00:00
  • 79be87ec5f
         Move (optional) CPU MSR module disable list raja-grewal 2025-11-21 13:05:13 +00:00
  • 1a7b0a9122
         Disable more file systems raja-grewal 2025-11-21 12:43:05 +00:00
  • 1865cafe44
         Move joydev from blacklist to disable raja-grewal 2025-11-21 12:42:10 +00:00
  • 28476d3d53
         Update docs on GrapheneOS blacklisted modules raja-grewal 2025-11-21 12:40:12 +00:00
  • 446d3771bf
         Update docs on CD-ROM/DVD blacklisting raja-grewal 2025-11-21 12:38:44 +00:00
  • 3646a2fefe
         Move superseded brcm80211 to disabled Split and replaced by brcmsmac and brcmfmac in kernel 2.6.39 raja-grewal 2025-11-21 12:37:57 +00:00
  • 66ba273d44
         Add CPU MSR modules raja-grewal 2025-11-21 12:36:57 +00:00
  • e6aa648d54
         Update docs on CPU MSR disabling raja-grewal 2025-11-21 12:36:32 +00:00
  • 59869979bb
         Update docs on Vivid disabling raja-grewal 2025-11-21 12:35:51 +00:00
  • 4597fd16a9
         Sort RDNIS disabling and add docs raja-grewal 2025-11-21 12:35:03 +00:00
  • 5adc007536
         Update docs on Intel PMT disabling raja-grewal 2025-11-21 12:33:15 +00:00
  • 31e3aa0c3a
         Update docs on Bluetooth disabling raja-grewal 2025-11-21 12:32:30 +00:00
  • 849ba156af
         Merge 3fdfebc464 into 9f85a78c99 raja-grewal 2025-11-21 02:52:38 +09:00
  • a12262d06c
         Merge 62dc2d4483 into 9f85a78c99 raja-grewal 2025-11-20 18:07:36 +11:00
  • 26aebe94f2
         Merge c5f91eb33a into 9f85a78c99 raja-grewal 2025-11-20 01:23:09 -05:00
  • 9f85a78c99
         bumped changelog version 50.1-1 Patrick Schleizer 2025-11-19 07:02:14 +00:00
  • 4e7cfb0d06
         Merge remote-tracking branch 'ArrayBolt3/arraybolt3/trixie' Patrick Schleizer 2025-11-19 01:55:10 -05:00
  • 936c799cb5
         Don't break passwordless sudo in unrestricted admin mode Aaron Rainbolt 2025-11-18 23:53:03 -06:00
  • 68025d3624
         Provide option to panic_on_taint raja-grewal 2025-11-19 01:16:46 +00:00
  • ebc011e67b
         Typo raja-grewal 2025-11-19 11:35:04 +11:00
  • 62dc2d4483
         Add note about Intel TME raja-grewal 2025-11-18 20:31:46 +11:00
  • 033f8ada74
         Merge 29176d2ed2 into d267cf6761 raja-grewal 2025-11-15 17:30:43 +11:00
  • 29176d2ed2
         Remove the option to reduce the MCE tolerance level raja-grewal 2025-11-15 06:30:11 +00:00
  • 9f897c5ccd
         Update docs on reducing the MCE tolerance level raja-grewal 2025-11-15 05:48:33 +00:00
  • b6fe1a5a6e
         Make panic related settings consistent Ensures the sysctl and boot parameters are equivalent in settings and in description. This should prevent future questions regarding having omitted boot parameters that were actually redundant. raja-grewal 2025-11-15 04:51:01 +00:00
  • 99e993b885
         Provide options to enable AMD SME and SEV raja-grewal 2025-11-15 03:16:07 +00:00
  • d267cf6761
         bumped changelog version 50.0-1 Patrick Schleizer 2025-11-14 06:21:34 +00:00
  • efa06a1eae
         port to package-installed-check Patrick Schleizer 2025-11-14 00:44:50 -05:00
  • abf5852eba
         bumped changelog version 49.9-1 Patrick Schleizer 2025-11-12 06:13:05 +00:00
  • 3af8916455
         Merge remote-tracking branch 'ArrayBolt3/arraybolt3/trixie' Patrick Schleizer 2025-11-11 23:59:50 -05:00
  • d891313d57
         Provide options to panic upon receiving NMIs raja-grewal 2025-11-11 11:39:21 +00:00
  • 0b9b9ffb1e
         Improve clarity for panic on OOM raja-grewal 2025-11-11 11:32:47 +00:00
  • 3070aa5d1f
         Fix passwordless login for sensitive accounts, only deny passwordless privilege escalation Aaron Rainbolt 2025-11-10 22:40:15 -06:00
  • ab98da957c
         Re-set net.ipv4.conf.*.log_martians=1 raja-grewal 2025-11-11 04:28:56 +00:00
  • f5d6aad792
         Merge e43d4d7f71 into fb587f78fd raja-grewal 2025-11-10 23:15:50 +01:00
  • fb587f78fd
         bumped changelog version 49.8-1 Patrick Schleizer 2025-11-10 08:00:06 +00:00
  • fc1b865dd7
         debugging Patrick Schleizer 2025-11-10 02:21:27 -05:00
  • 45126cede6
         end-of-options Patrick Schleizer 2025-11-10 02:19:29 -05:00
  • 61637a5ff0
         refactoring Patrick Schleizer 2025-11-10 02:15:30 -05:00
  • ddb59a3b01
         comment Patrick Schleizer 2025-11-10 02:13:48 -05:00
  • ae1e2e3b52
         output Patrick Schleizer 2025-11-10 02:10:25 -05:00
  • f2b7658542
         use long option names Patrick Schleizer 2025-11-10 02:09:54 -05:00
  • 71ca68bd4a
         end-of-options Patrick Schleizer 2025-11-10 02:09:00 -05:00
  • e9e6c12b03
         output Patrick Schleizer 2025-11-10 02:08:04 -05:00
  • f5db916bf7
         fix Patrick Schleizer 2025-11-10 02:06:55 -05:00
  • bb0a23fcc8
         chmod +x Patrick Schleizer 2025-11-10 02:05:47 -05:00
  • 39a6ce002e
         genmkfile debinstfile Patrick Schleizer 2025-11-10 02:05:03 -05:00
  • 94de949a47
         Merge remote-tracking branch 'ArrayBolt3/arraybolt3/trixie' Patrick Schleizer 2025-11-10 02:04:15 -05:00
  • 5ac02d2d52
         Set net.ipv4.tcp_tw_reuse=0 raja-grewal 2025-11-10 06:13:35 +00:00
  • b89aaea61e
         Add docs on logging martian packets raja-grewal 2025-11-10 06:03:33 +00:00
  • 5fbd42bbec
         Add kill-vboxdrmclient-on-shutdown.service Aaron Rainbolt 2025-11-09 18:38:54 -06:00
  • 9d86379f56
         Prevent non-sysmaint logins in sysmaint mode and unsafe passwordless logins in user mode Aaron Rainbolt 2025-11-09 17:46:22 -06:00
  • a3830db09e
         Update docs relating to panic on OOM raja-grewal 2025-11-09 13:42:31 +00:00
  • 0aa0b67df6
         Merge branch 'master' into docs raja-grewal 2025-11-10 00:20:48 +11:00
  • 0939883f0b
         bumped changelog version 49.7-1 Patrick Schleizer 2025-11-09 10:47:45 +00:00
  • 0391411885
         revert Force immediate kernel panic on OOM. Patrick Schleizer 2025-11-09 05:47:00 -05:00
  • 26b96ce280
         bumped changelog version 49.6-1 Patrick Schleizer 2025-11-09 08:12:42 +00:00
  • e7310467df
         Merge 635c216d4e into 1ef974300a raja-grewal 2025-11-09 15:42:06 +11:00
  • 1ef974300a
         readme Patrick Schleizer 2025-11-08 04:00:47 -05:00
  • 48ce12eba3
         bumped changelog version 49.5-1 Patrick Schleizer 2025-11-08 07:44:43 +00:00
  • 69419357e1
         genmkfile debinstfile Patrick Schleizer 2025-11-08 02:42:25 -05:00
  • d50e6afc8f
         sanity test Patrick Schleizer 2025-11-08 01:34:32 -05:00
  • 1267960842
         comments Patrick Schleizer 2025-11-08 01:32:45 -05:00
  • 1e48886c7e
         long option name Patrick Schleizer 2025-11-08 01:31:02 -05:00
  • d6c949c791
         Merge remote-tracking branch 'ArrayBolt3/arraybolt3/trixie' Patrick Schleizer 2025-11-08 01:29:48 -05:00
  • fa32ba6c4f
         Suppress usbguard startup unless a USB controller is visible to lspci Aaron Rainbolt 2025-11-07 17:09:22 -06:00
  • 635c216d4e
         Update docs on CPU mitigations raja-grewal 2025-11-05 01:44:36 +00:00
  • a46f678c7f
         Update docs on latent entropy raja-grewal 2025-11-05 00:05:17 +00:00
  • 37b493826e
         Spit distrusting entropy settings for clarity raja-grewal 2025-11-05 00:03:54 +00:00
  • 019a0cf72c
         Update docs on entropy raja-grewal 2025-11-05 00:03:19 +00:00
  • 4c88b91141
         Merge branch 'Kicksecure:master' into docs raja-grewal 2025-11-05 10:10:10 +11:00
  • e43d4d7f71
         Set bdev_allow_write_mounted=0 raja-grewal 2025-11-03 05:46:07 +00:00
  • b89e92c89f
         Merge 53d90b1128 into 5b97e7bd27 raja-grewal 2025-11-03 15:44:42 +11:00
  • 53d90b1128
         Update docs on ssbd=force-on raja-grewal 2025-11-03 04:32:49 +00:00
  • 322584db33
         Update docs on pti=on raja-grewal 2025-11-03 04:31:59 +00:00
  • 5e87c9bea4
         Set kpti=1 raja-grewal 2025-11-03 04:30:58 +00:00
  • 3fdfebc464
         Set proc_mem.force_override=ptrace raja-grewal 2025-11-03 00:48:49 +00:00
  • 5b97e7bd27
         bumped changelog version 49.4-1 Patrick Schleizer 2025-11-02 11:41:51 +00:00
  • 58d5f738e6
         Merge remote-tracking branch 'ArrayBolt3/arraybolt3/trixie' Patrick Schleizer 2025-11-02 06:08:46 -05:00
  • 5121f80f28
         comment Patrick Schleizer 2025-11-02 06:00:24 -05:00
  • 29685938bd
         move usbguard reject rules to the top Patrick Schleizer 2025-11-02 05:57:52 -05:00
  • c5f91eb33a
         Add another method to disable 32-bit legacy vsyscalls raja-grewal 2025-11-02 06:15:06 +00:00
  • d175d1be52
         Add doc on entropy related failure on AMD Zen 5 CPUs raja-grewal 2025-11-02 15:54:34 +11:00
  • 7beb19b64a
         Update README.md with info about flatpak auth hardening Aaron Rainbolt 2025-11-01 22:06:44 -05:00