Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-02-24 18:09:49 -05:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 9df7407286
         Remove SUID bits madaidan 2019-12-19 17:01:33 +00:00
  • 3c2ca0257f
         Support for removing SUID bits madaidan 2019-12-19 17:01:08 +00:00
  • a2f5cfe05f
         Update control madaidan 2019-12-18 20:47:47 +00:00
  • cd9c602925
         More kernel hardening madaidan 2019-12-18 20:43:01 +00:00
  • 62eb462920
         skip console_users_check for Qubes users Patrick Schleizer 2019-12-16 06:46:48 -05:00
  • ab68182e11
         bumped changelog version 11.4-1 Patrick Schleizer 2019-12-16 06:27:51 -05:00
  • 2cab38a8b3
         readme Patrick Schleizer 2019-12-16 06:24:14 -05:00
  • 4ca9fc5920
         fix Patrick Schleizer 2019-12-16 03:53:10 -05:00
  • f68efd53cf
         remount /sys/kernel/security with nodev,nosuid[,noexec] Patrick Schleizer 2019-12-16 03:52:09 -05:00
  • 2c4170e6f3
         description Patrick Schleizer 2019-12-12 09:47:58 -05:00
  • 2d5ef378f3
         description Patrick Schleizer 2019-12-12 09:39:39 -05:00
  • 300f010fc2
         increase priority of pam-abort-on-locked-password-security-misc Patrick Schleizer 2019-12-12 09:29:00 -05:00
  • a10597de92
         bumped changelog version 11.3-1 Patrick Schleizer 2019-12-12 09:04:15 -05:00
  • 729fa26eca
         use pam_acccess only for /etc/pam.d/login remove "Allow members of group 'ssh' to login." remove "+:ssh:ALL EXCEPT LOCAL" Patrick Schleizer 2019-12-12 09:00:08 -05:00
  • 22b6480bc4
         bumped changelog version 11.2-1 Patrick Schleizer 2019-12-10 11:44:02 -05:00
  • 88bea2a6ef
         comment Patrick Schleizer 2019-12-10 03:53:10 -05:00
  • 7d8001ddc9
         refactoring Patrick Schleizer 2019-12-10 03:51:39 -05:00
  • d2f6ac0491
         fix, do user/group modifications in preinst rather than postinst Patrick Schleizer 2019-12-10 03:50:23 -05:00
  • 64ae53edb9
         bumped changelog version 11.1-1 Patrick Schleizer 2019-12-09 08:25:30 -05:00
  • d80bf036f3
         Disable permission hardening now until development finished / tested. Patrick Schleizer 2019-12-09 03:50:43 -05:00
  • b72eb30056
         quotes Patrick Schleizer 2019-12-09 02:32:05 -05:00
  • c258376b7e
         use read (built-in) rather than awk (external) Patrick Schleizer 2019-12-09 02:31:10 -05:00
  • 02165201ab
         read -r; refactoring Patrick Schleizer 2019-12-09 02:23:43 -05:00
  • 7467252122
         quotes Patrick Schleizer 2019-12-09 02:22:16 -05:00
  • 9bea996017
         Merge remote-tracking branch 'origin/master' Patrick Schleizer 2019-12-09 02:21:47 -05:00
  • af62da3445
         Merge pull request #42 from madaidan/permission-hardening Patrick Schleizer 2019-12-08 20:45:16 +00:00
  • d7e2deae92
         Create permission-hardening.service madaidan 2019-12-08 16:50:54 +00:00
  • 6c564f6e95
         Create permission-hardening.conf madaidan 2019-12-08 16:50:11 +00:00
  • 61e19fa5f1
         Create permission-hardening madaidan 2019-12-08 16:49:28 +00:00
  • 6f944234a9
         bumped changelog version 11.0-1 Patrick Schleizer 2019-12-08 05:26:29 -05:00
  • e64741c01e
         readme Patrick Schleizer 2019-12-08 05:25:19 -05:00
  • c192644ee3
         security-misc /usr/share/pam-configs/permission-lockdown-security-misc is no longer required, removed. Patrick Schleizer 2019-12-08 05:21:35 -05:00
  • edcc2de71d
         bumped changelog version 10.9-1 Patrick Schleizer 2019-12-08 04:38:33 -05:00
  • 1227ccd1f7
         After=qubes-sysinit.service Patrick Schleizer 2019-12-08 04:37:53 -05:00
  • 17d81d0083
         bumped changelog version 10.8-1 Patrick Schleizer 2019-12-08 04:27:01 -05:00
  • ebae9eef38
         skip sudo_users_check in Qubes Patrick Schleizer 2019-12-08 04:25:19 -05:00
  • 53e4717c62
         bumped changelog version 10.7-1 Patrick Schleizer 2019-12-08 04:05:29 -05:00
  • bc45ed385e
         readme Patrick Schleizer 2019-12-08 04:03:02 -05:00
  • ac96708b24
         improve usr/bin/hardening-enable Patrick Schleizer 2019-12-08 04:01:11 -05:00
  • a345a0fb64
         abort installation if ssh.service is enabled but no user is member of group ssh Patrick Schleizer 2019-12-08 03:27:12 -05:00
  • 50ac03363f
         output Patrick Schleizer 2019-12-08 03:18:32 -05:00
  • c7c65fe4e7
         higher priority usr/share/pam-configs/tally2-security-misc Patrick Schleizer 2019-12-08 03:15:53 -05:00
  • 3bd0b3f837
         notify when attempting to use ssh but user is member of group ssh Patrick Schleizer 2019-12-08 03:10:41 -05:00
  • cea598dc1a
         refactoring Patrick Schleizer 2019-12-08 02:43:05 -05:00
  • 54f5e02c21
         comment Patrick Schleizer 2019-12-08 02:42:30 -05:00
  • b4265195f4
         refactoring Patrick Schleizer 2019-12-08 02:41:36 -05:00
  • 0f65b2e85c
         abort installation if no user is a member of group "console"; output Patrick Schleizer 2019-12-08 02:38:19 -05:00
  • 1dbca1ea2d
         add usr/bin/hardening-enable Patrick Schleizer 2019-12-08 02:27:09 -05:00
  • 19cc6d7555
         pam description Patrick Schleizer 2019-12-08 02:10:43 -05:00
  • 24423b42f0
         description Patrick Schleizer 2019-12-08 02:03:05 -05:00
  • 6b01e5be14
         comment Patrick Schleizer 2019-12-08 02:01:22 -05:00
  • 66bebefc9f
         description Patrick Schleizer 2019-12-08 02:00:23 -05:00
  • 52e0f104cc
         comment Patrick Schleizer 2019-12-08 01:59:55 -05:00
  • 731d486fa0
         refactoring Patrick Schleizer 2019-12-08 01:58:58 -05:00
  • 221a2df2a2
         refactoring Patrick Schleizer 2019-12-08 01:58:37 -05:00
  • b871421a54
         usr/share/pam-configs/console-lockdown -> usr/share/pam-configs/console-lockdown-security-misc Patrick Schleizer 2019-12-08 01:57:43 -05:00
  • d36669596f
         comment Patrick Schleizer 2019-12-08 01:56:30 -05:00
  • 1a0f353708
         comment Patrick Schleizer 2019-12-08 01:47:40 -05:00
  • eed1f0a462
         comment Patrick Schleizer 2019-12-08 01:46:32 -05:00
  • 2491b62393
         refactoring, add all groups first before adding any users to any groups Patrick Schleizer 2019-12-08 01:43:45 -05:00
  • 1464f01d19
         description Patrick Schleizer 2019-12-08 01:30:42 -05:00
  • 491dd4d93d
         Merge remote-tracking branch 'origin/master' Patrick Schleizer 2019-12-08 01:22:16 -05:00
  • a78a7e5571
         Merge pull request #41 from madaidan/system.map Patrick Schleizer 2019-12-08 06:21:44 +00:00
  • 6846a94327
         Check for more locations of System.map madaidan 2019-12-07 19:38:12 +00:00
  • 9432d16378
         /usr/bin/cat mrix, Patrick Schleizer 2019-12-07 12:13:42 -05:00
  • 373e8733d3
         Merge remote-tracking branch 'origin/master' Patrick Schleizer 2019-12-07 11:34:42 -05:00
  • 447eb14432
         Merge pull request #40 from madaidan/system.map Patrick Schleizer 2019-12-07 16:34:21 +00:00
  • c1800b13fe
         separate group "ssh" for incoming ssh console permission Patrick Schleizer 2019-12-07 11:26:39 -05:00
  • 668b6420de
         Remove hyphen madaidan 2019-12-07 14:15:02 +00:00
  • 55225aa30e
         description Patrick Schleizer 2019-12-07 07:16:07 -05:00
  • 34a2bc16c8
         description Patrick Schleizer 2019-12-07 07:15:58 -05:00
  • d823f06c78
         description Patrick Schleizer 2019-12-07 07:13:42 -05:00
  • 9ba84f34c6
         comment Patrick Schleizer 2019-12-07 06:51:59 -05:00
  • dc1dfc8c20
         output Patrick Schleizer 2019-12-07 06:51:16 -05:00
  • 8636d2f629
         add securetty Patrick Schleizer 2019-12-07 06:51:10 -05:00
  • 532a1525c2
         comment Patrick Schleizer 2019-12-07 06:26:55 -05:00
  • 14aa6c5077
         comment Patrick Schleizer 2019-12-07 06:26:23 -05:00
  • 8b3f5a555b
         add console lockdown to pam info output Patrick Schleizer 2019-12-07 06:25:45 -05:00
  • 021b06dac9
         add hvc0 to hvc9 Patrick Schleizer 2019-12-07 06:04:45 -05:00
  • 8a59662a44
         comment Patrick Schleizer 2019-12-07 06:02:45 -05:00
  • 090ddbe96a
         description Patrick Schleizer 2019-12-07 06:00:41 -05:00
  • cda6724755
         add pts/0 to pts/9 Patrick Schleizer 2019-12-07 05:56:57 -05:00
  • 218cbddba9
         comment Patrick Schleizer 2019-12-07 05:52:06 -05:00
  • 6479c883bf
         Console Lockdown. Patrick Schleizer 2019-12-07 05:40:20 -05:00
  • 52934c9288
         bumped changelog version 10.6-1 Patrick Schleizer 2019-12-07 02:02:32 -05:00
  • 6faa977cd7
         readme Patrick Schleizer 2019-12-07 02:02:06 -05:00
  • 6d92d03b31
         description Patrick Schleizer 2019-12-07 01:54:50 -05:00
  • 5a4eda0d05
         also support /usr/local/etc/remount-disable and /usr/local/etc/noexec Patrick Schleizer 2019-12-07 01:53:33 -05:00
  • 0afcc5e798
         bumped changelog version 10.5-1 Patrick Schleizer 2019-12-06 12:43:21 -05:00
  • 2954dcbccf
         minor Patrick Schleizer 2019-12-06 12:24:55 -05:00
  • f3647e7478
         RemainAfterExit=yes Patrick Schleizer 2019-12-06 12:18:18 -05:00
  • af0cf058e7
         bumped changelog version 10.4-1 Patrick Schleizer 2019-12-06 11:18:20 -05:00
  • 9b14f24d5e
         refactoring Patrick Schleizer 2019-12-06 11:17:32 -05:00
  • a6133f5912
         output Patrick Schleizer 2019-12-06 11:16:43 -05:00
  • c1ea35e2ef
         output Patrick Schleizer 2019-12-06 11:15:54 -05:00
  • 4bec41379d
         fix remount with noexec if /etc/noexec exists Patrick Schleizer 2019-12-06 11:15:13 -05:00
  • bff425fec2
         bumped changelog version 10.3-1 Patrick Schleizer 2019-12-06 09:32:18 -05:00
  • b22289f2a8
         readme Patrick Schleizer 2019-12-06 09:30:05 -05:00
  • 470cad6e91
         remount /home /tmp /dev/shm /run with nosuid,nodev (default) and noexec (opt-in) Patrick Schleizer 2019-12-06 05:14:02 -05:00
  • 8cf5ed990a
         comment Patrick Schleizer 2019-12-05 15:52:24 -05:00