Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-02-24 21:09:47 -05:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • ee9c5742da
         output Patrick Schleizer 2019-12-23 01:29:48 -05:00
  • 6d05359abc
         output Patrick Schleizer 2019-12-23 01:21:52 -05:00
  • a1e78e8515
         fix needlessly re-adding entries Patrick Schleizer 2019-12-23 01:20:56 -05:00
  • 906b3d32e7
         output Patrick Schleizer 2019-12-23 01:09:57 -05:00
  • 4f76867da6
         lower debugging Patrick Schleizer 2019-12-23 01:08:02 -05:00
  • dc6e5d8508
         fix Patrick Schleizer 2019-12-23 01:06:38 -05:00
  • 87b999f92a
         refactoring Patrick Schleizer 2019-12-23 00:59:43 -05:00
  • 065ff4bd05
         sanity_tests Patrick Schleizer 2019-12-23 00:59:24 -05:00
  • fef1469fe6
         exit non-zero if capability removal failed Patrick Schleizer 2019-12-23 00:51:14 -05:00
  • 3670fcf48b
         depend on libcap2-bin for setcap / getcap / capsh Patrick Schleizer 2019-12-23 00:49:33 -05:00
  • 17a8c29470
         fix capability removal error handling Patrick Schleizer 2019-12-23 00:47:49 -05:00
  • b631e2ecd8
         refactoring Patrick Schleizer 2019-12-23 00:36:41 -05:00
  • 7aea304549
         comment Patrick Schleizer 2019-12-23 00:26:15 -05:00
  • f4b1df02ee
         Remove suid / gid and execute permission for 'group' and 'others'. Patrick Schleizer 2019-12-22 19:42:40 -05:00
  • 58a4e0bc7d
         dbus-daemon-launch-helper matchwhitelist Patrick Schleizer 2019-12-22 19:12:10 -05:00
  • 15e3a2832d
         comment Patrick Schleizer 2019-12-22 18:57:23 -05:00
  • 6eb8fd257a
         suid utempter/utempter matchwhitelist Patrick Schleizer 2019-12-22 18:56:36 -05:00
  • 9409209b48
         Merge remote-tracking branch 'origin/master' Patrick Schleizer 2019-12-22 10:29:08 -05:00
  • bce02ffdc0
         Merge pull request #47 from madaidan/msr Patrick Schleizer 2019-12-22 15:26:07 +00:00
  • 8f11a520f4
         Update control madaidan 2019-12-22 13:54:16 +00:00
  • dd93b11321
         Blacklist CPU MSRs madaidan 2019-12-22 13:52:43 +00:00
  • 008ce4817c
         bumped changelog version 12.9-1 Patrick Schleizer 2019-12-21 14:55:03 -05:00
  • d300db3cde
         output Patrick Schleizer 2019-12-21 14:45:11 -05:00
  • 3921846df6
         comment Patrick Schleizer 2019-12-21 14:36:42 -05:00
  • 1213415ce6
         bumped changelog version 12.8-1 Patrick Schleizer 2019-12-21 14:23:35 -05:00
  • 2ddf7b5db5
         /lib/ nosuid Patrick Schleizer 2019-12-21 14:06:51 -05:00
  • 1e8457ea47
         no longer remount /lib Patrick Schleizer 2019-12-21 14:06:10 -05:00
  • 10c19d6a8f
         Merge remote-tracking branch 'origin/master' Patrick Schleizer 2019-12-21 13:00:41 -05:00
  • fffdf5090c
         Merge pull request #46 from madaidan/remount-secure Patrick Schleizer 2019-12-21 17:59:56 +00:00
  • f5a52aeddc
         Don't remount /sys/kernel/security madaidan 2019-12-21 14:55:28 +00:00
  • b2260f48f4
         add support for /etc/exec / /usr/local/etc/exec Patrick Schleizer 2019-12-21 08:03:33 -05:00
  • 1c99b56c9b
         bumped changelog version 12.7-1 Patrick Schleizer 2019-12-21 07:49:55 -05:00
  • 161b6f6b88
         readme Patrick Schleizer 2019-12-21 07:49:29 -05:00
  • b74e5ca972
         comment Patrick Schleizer 2019-12-21 07:47:00 -05:00
  • 8fb17624bc
         comment Patrick Schleizer 2019-12-21 07:44:51 -05:00
  • aef796a524
         disable debugging Patrick Schleizer 2019-12-21 07:44:23 -05:00
  • 1fe83d683f
         comment Patrick Schleizer 2019-12-21 07:43:55 -05:00
  • 7c3da38bd5
         comment Patrick Schleizer 2019-12-21 07:42:25 -05:00
  • 9050058bc2
         fix Patrick Schleizer 2019-12-21 07:42:01 -05:00
  • 0c4db8c2b0
         bumped changelog version 12.6-1 Patrick Schleizer 2019-12-21 07:38:25 -05:00
  • 6b13a644df
         add /usr/lib/security-misc/permission-hardening-undo Patrick Schleizer 2019-12-21 07:37:41 -05:00
  • af8b04b73d
         rm_conffile /etc/apparmor.d/usr.lib.security-misc.pam_tally2-info rm_conffile /etc/apparmor.d/usr.lib.security-misc.permission-lockdown Patrick Schleizer 2019-12-21 06:58:01 -05:00
  • 2350e0f5d0
         Merge remote-tracking branch 'origin/master' Patrick Schleizer 2019-12-21 06:57:10 -05:00
  • efd65a3f15
         Merge pull request #45 from madaidan/apparmor Patrick Schleizer 2019-12-21 11:56:31 +00:00
  • 3ea587187e
         no need to exclude xorg nosuid on Debian Patrick Schleizer 2019-12-21 06:53:07 -05:00
  • c336bc4fd2
         comment Patrick Schleizer 2019-12-21 06:39:13 -05:00
  • fac17a963d
         bumped changelog version 12.5-1 Patrick Schleizer 2019-12-21 06:28:19 -05:00
  • b5f88efe20
         fix Patrick Schleizer 2019-12-21 06:27:01 -05:00
  • 2088628c8d
         debugging Patrick Schleizer 2019-12-21 06:24:08 -05:00
  • 2dca031527
         debugging Patrick Schleizer 2019-12-21 06:22:46 -05:00
  • 195e00cc87
         output Patrick Schleizer 2019-12-21 06:16:38 -05:00
  • 78d33d8b57
         bumped changelog version 12.4-1 Patrick Schleizer 2019-12-21 06:12:20 -05:00
  • 4b21b6df41
         fix Patrick Schleizer 2019-12-21 06:11:44 -05:00
  • ff48b672a8
         bumped changelog version 12.3-1 Patrick Schleizer 2019-12-21 06:00:17 -05:00
  • 8436da2b7b
         output Patrick Schleizer 2019-12-21 05:58:50 -05:00
  • da15265e1c
         fix Patrick Schleizer 2019-12-21 05:55:23 -05:00
  • 2a248fe0de
         fix Patrick Schleizer 2019-12-21 05:54:39 -05:00
  • 4f12664362
         output Patrick Schleizer 2019-12-21 05:54:07 -05:00
  • e3355843c8
         fix Patrick Schleizer 2019-12-21 05:51:22 -05:00
  • 234ec5fe93
         fix Patrick Schleizer 2019-12-21 05:47:35 -05:00
  • 65b5adb2d7
         bumped changelog version 12.2-1 Patrick Schleizer 2019-12-21 05:38:39 -05:00
  • 7ff900c204
         fix Patrick Schleizer 2019-12-21 05:37:43 -05:00
  • 2b5a49a61b
         bumped changelog version 12.1-1 Patrick Schleizer 2019-12-21 05:31:55 -05:00
  • e1a5ee4bcf
         output Patrick Schleizer 2019-12-21 05:26:55 -05:00
  • 66aaf3e22c
         output Patrick Schleizer 2019-12-21 05:25:54 -05:00
  • 7aa7d0b5a0
         improve error handling Patrick Schleizer 2019-12-21 05:22:27 -05:00
  • 8919d38de9
         disable debugging Patrick Schleizer 2019-12-21 05:21:46 -05:00
  • cf5dee64fd
         refactoring Patrick Schleizer 2019-12-21 05:18:34 -05:00
  • 29cd9a0c38
         fix Patrick Schleizer 2019-12-21 05:17:35 -05:00
  • 486027a4d7
         fix Patrick Schleizer 2019-12-21 05:15:38 -05:00
  • 1fd26be864
         fix Patrick Schleizer 2019-12-21 05:14:51 -05:00
  • 0fc97c37be
         fix Patrick Schleizer 2019-12-21 05:14:39 -05:00
  • 1018d5b3b0
         output Patrick Schleizer 2019-12-21 05:11:51 -05:00
  • 4388fc4d5a
         refactoring Patrick Schleizer 2019-12-21 05:11:19 -05:00
  • ed20980f4c
         refactoring Patrick Schleizer 2019-12-21 05:07:10 -05:00
  • 315ce86b9a
         refactoring Patrick Schleizer 2019-12-21 04:33:03 -05:00
  • 0c5848494b
         do not remount if already has intended mount options Patrick Schleizer 2019-12-21 04:21:26 -05:00
  • 203f4ad46e
         refactoring Patrick Schleizer 2019-12-21 04:17:10 -05:00
  • e7fd0dadb0
         output Patrick Schleizer 2019-12-21 04:09:35 -05:00
  • e6ea21c775
         record existing modes in separate dpkg-statoverwrite databases Patrick Schleizer 2019-12-21 04:08:35 -05:00
  • 89be5f2ecb
         bumped changelog version 12.0-1 Patrick Schleizer 2019-12-21 02:05:39 -05:00
  • c28ddf5c4d
         Delete usr.lib.security-misc.pam_tally2-info madaidan 2019-12-20 22:44:31 +00:00
  • cfe69dd669
         Delete usr.lib.security-misc.permission-lockdown madaidan 2019-12-20 22:44:27 +00:00
  • d220bb3bc4
         suid /usr/lib/chromium/chrome-sandbox whitelist Patrick Schleizer 2019-12-20 13:07:01 -05:00
  • 77b3dd5d6b
         comments Patrick Schleizer 2019-12-20 13:02:33 -05:00
  • d7bd477e73
         add "/usr/lib/xorg/Xorg.wrap whitelist" Patrick Schleizer 2019-12-20 12:59:27 -05:00
  • 17e8605119
         add matchwhitelist feature Patrick Schleizer 2019-12-20 12:57:24 -05:00
  • 3fab387669
         suid /usr/bin/firejail whitelist Patrick Schleizer 2019-12-20 12:50:35 -05:00
  • d3f16a5bf4
         sgid /usr/lib/qubes/qfile-unpacker whitelist Patrick Schleizer 2019-12-20 12:47:10 -05:00
  • 508ec0c6fa
         comment Patrick Schleizer 2019-12-20 12:34:07 -05:00
  • 1b569ea790
         comment Patrick Schleizer 2019-12-20 12:32:36 -05:00
  • f88ca25889
         fix terminology, sguid -> sgid Patrick Schleizer 2019-12-20 11:58:07 -05:00
  • 1cd5fb6a00
         bumped changelog version 11.9-1 Patrick Schleizer 2019-12-20 11:50:25 -05:00
  • ff0a26fb5d
         comment Patrick Schleizer 2019-12-20 11:49:19 -05:00
  • 71496a33ab
         skip folders are these are not suid / guid Patrick Schleizer 2019-12-20 11:47:53 -05:00
  • 9321ecff41
         no more need to add/remove / Patrick Schleizer 2019-12-20 11:43:53 -05:00
  • b95225b6a6
         pipefail Patrick Schleizer 2019-12-20 11:37:05 -05:00
  • cad6f328f4
         minor Patrick Schleizer 2019-12-20 11:34:44 -05:00
  • 3265f9894d
         output Patrick Schleizer 2019-12-20 11:27:43 -05:00
  • 28d12c3966
         bumped changelog version 11.8-1 Patrick Schleizer 2019-12-20 11:09:22 -05:00