Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-08-05 09:44:16 -04:00
Code Issues Projects Releases Packages Wiki Activity

Commit graph

  • 486027a4d7
         fix Patrick Schleizer 2019-12-21 05:15:38 -05:00
  • 1fd26be864
         fix Patrick Schleizer 2019-12-21 05:14:51 -05:00
  • 0fc97c37be
         fix Patrick Schleizer 2019-12-21 05:14:39 -05:00
  • 1018d5b3b0
         output Patrick Schleizer 2019-12-21 05:11:51 -05:00
  • 4388fc4d5a
         refactoring Patrick Schleizer 2019-12-21 05:11:19 -05:00
  • ed20980f4c
         refactoring Patrick Schleizer 2019-12-21 05:07:10 -05:00
  • 315ce86b9a
         refactoring Patrick Schleizer 2019-12-21 04:33:03 -05:00
  • 0c5848494b
         do not remount if already has intended mount options Patrick Schleizer 2019-12-21 04:21:26 -05:00
  • 203f4ad46e
         refactoring Patrick Schleizer 2019-12-21 04:17:10 -05:00
  • e7fd0dadb0
         output Patrick Schleizer 2019-12-21 04:09:35 -05:00
  • e6ea21c775
         record existing modes in separate dpkg-statoverwrite databases Patrick Schleizer 2019-12-21 04:08:35 -05:00
  • 89be5f2ecb
         bumped changelog version 12.0-1 Patrick Schleizer 2019-12-21 02:05:39 -05:00
  • c28ddf5c4d
         Delete usr.lib.security-misc.pam_tally2-info madaidan 2019-12-20 22:44:31 +00:00
  • cfe69dd669
         Delete usr.lib.security-misc.permission-lockdown madaidan 2019-12-20 22:44:27 +00:00
  • d220bb3bc4
         suid /usr/lib/chromium/chrome-sandbox whitelist Patrick Schleizer 2019-12-20 13:07:01 -05:00
  • 77b3dd5d6b
         comments Patrick Schleizer 2019-12-20 13:02:33 -05:00
  • d7bd477e73
         add "/usr/lib/xorg/Xorg.wrap whitelist" Patrick Schleizer 2019-12-20 12:59:27 -05:00
  • 17e8605119
         add matchwhitelist feature Patrick Schleizer 2019-12-20 12:57:24 -05:00
  • 3fab387669
         suid /usr/bin/firejail whitelist Patrick Schleizer 2019-12-20 12:50:35 -05:00
  • d3f16a5bf4
         sgid /usr/lib/qubes/qfile-unpacker whitelist Patrick Schleizer 2019-12-20 12:47:10 -05:00
  • 508ec0c6fa
         comment Patrick Schleizer 2019-12-20 12:34:07 -05:00
  • 1b569ea790
         comment Patrick Schleizer 2019-12-20 12:32:36 -05:00
  • f88ca25889
         fix terminology, sguid -> sgid Patrick Schleizer 2019-12-20 11:58:07 -05:00
  • 1cd5fb6a00
         bumped changelog version 11.9-1 Patrick Schleizer 2019-12-20 11:50:25 -05:00
  • ff0a26fb5d
         comment Patrick Schleizer 2019-12-20 11:49:19 -05:00
  • 71496a33ab
         skip folders are these are not suid / guid Patrick Schleizer 2019-12-20 11:47:53 -05:00
  • 9321ecff41
         no more need to add/remove / Patrick Schleizer 2019-12-20 11:43:53 -05:00
  • b95225b6a6
         pipefail Patrick Schleizer 2019-12-20 11:37:05 -05:00
  • cad6f328f4
         minor Patrick Schleizer 2019-12-20 11:34:44 -05:00
  • 3265f9894d
         output Patrick Schleizer 2019-12-20 11:27:43 -05:00
  • 28d12c3966
         bumped changelog version 11.8-1 Patrick Schleizer 2019-12-20 11:09:22 -05:00
  • 1615ebec58
         output Patrick Schleizer 2019-12-20 11:07:44 -05:00
  • 1e11b775cf
         output Patrick Schleizer 2019-12-20 11:05:05 -05:00
  • 731f802895
         output Patrick Schleizer 2019-12-20 11:04:12 -05:00
  • cd8efe5800
         output Patrick Schleizer 2019-12-20 11:03:22 -05:00
  • c0ddb76d74
         bumped changelog version 11.7-1 Patrick Schleizer 2019-12-20 10:50:51 -05:00
  • b31abea0af
         improve error handling Patrick Schleizer 2019-12-20 10:49:31 -05:00
  • 79cd3b86b6
         comment Patrick Schleizer 2019-12-20 10:47:23 -05:00
  • b3458cc6ee
         fix checking existing entries to avoid needless calls to dpkg-statoverride Patrick Schleizer 2019-12-20 10:45:59 -05:00
  • 370f3c5e54
         comment Patrick Schleizer 2019-12-20 10:35:05 -05:00
  • 133d09f298
         output Patrick Schleizer 2019-12-20 10:33:16 -05:00
  • 1ffa8e197e
         speed up setuid removal by using find with '-perm /u=s,g=s' Patrick Schleizer 2019-12-20 10:31:26 -05:00
  • 4cfdf2c65b
         fix, re-enforce nosuid even if changed on the disk Patrick Schleizer 2019-12-20 10:21:27 -05:00
  • e36868e675
         output Patrick Schleizer 2019-12-20 10:02:46 -05:00
  • 50b8f65490
         add sanity test: count if we really processed all files Patrick Schleizer 2019-12-20 09:59:28 -05:00
  • e28da89253
         /bin/sudo whitelist / /bin/bwrap whitelist Patrick Schleizer 2019-12-20 09:48:06 -05:00
  • 55faa7b997
         fix missing processing files bug Patrick Schleizer 2019-12-20 09:43:23 -05:00
  • fbe2479f48
         count processed file system objects Patrick Schleizer 2019-12-20 08:54:56 -05:00
  • 195ea522f5
         fix Patrick Schleizer 2019-12-20 08:52:14 -05:00
  • 6f8231be70
         debugging Patrick Schleizer 2019-12-20 08:51:55 -05:00
  • ed50f98010
         output Patrick Schleizer 2019-12-20 08:47:22 -05:00
  • 089c40135f
         bumped changelog version 11.6-1 Patrick Schleizer 2019-12-20 08:15:00 -05:00
  • 6d30e3b4a2
         do not remove suid from whitelisted binaries ever Patrick Schleizer 2019-12-20 08:13:23 -05:00
  • d5f1bd8dd2
         fix mode sanity check Patrick Schleizer 2019-12-20 08:02:30 -05:00
  • ddc0eec63d
         bumped changelog version 11.5-1 Patrick Schleizer 2019-12-20 07:12:36 -05:00
  • 65248a94ef
         readme Patrick Schleizer 2019-12-20 07:06:50 -05:00
  • 8e112c3423
         description Patrick Schleizer 2019-12-20 06:53:24 -05:00
  • 24ea70384b
         description Patrick Schleizer 2019-12-20 06:53:03 -05:00
  • 0ae3e689b5
         comment Patrick Schleizer 2019-12-20 06:35:02 -05:00
  • 050f4d8b94
         comment Patrick Schleizer 2019-12-20 06:34:37 -05:00
  • 36043fe5cc
         comment Patrick Schleizer 2019-12-20 06:33:41 -05:00
  • fb4254547b
         comment Patrick Schleizer 2019-12-20 06:32:04 -05:00
  • cca0908d9a
         fix Patrick Schleizer 2019-12-20 06:11:38 -05:00
  • e254b8b52d
         fix Patrick Schleizer 2019-12-20 06:09:17 -05:00
  • 7f8b3c76de
         output Patrick Schleizer 2019-12-20 06:02:17 -05:00
  • 071c64dc41
         enable 'set -e' Patrick Schleizer 2019-12-20 06:01:49 -05:00
  • b97c66707c
         minor Patrick Schleizer 2019-12-20 05:59:05 -05:00
  • 17b4f12276
         output Patrick Schleizer 2019-12-20 05:58:42 -05:00
  • 48fe7312bf
         update config Patrick Schleizer 2019-12-20 05:57:41 -05:00
  • 87d820d84c
         comment Patrick Schleizer 2019-12-20 05:54:16 -05:00
  • 918cbb4e25
         output Patrick Schleizer 2019-12-20 05:51:25 -05:00
  • c8cf09a4cb
         output Patrick Schleizer 2019-12-20 05:50:16 -05:00
  • 46466c12ad
         parse drop-in config folder rather than only one config file Patrick Schleizer 2019-12-20 05:49:11 -05:00
  • 66fd31189d
         improve output if set-user-id / set-group-id is set Patrick Schleizer 2019-12-20 05:37:33 -05:00
  • 6dd6530fa5
         remove hardening-enable Patrick Schleizer 2019-12-20 05:32:26 -05:00
  • 6c8127e3cd
         remove "/lib/ nosuid" from permission hardening Patrick Schleizer 2019-12-20 05:29:37 -05:00
  • af0f074987
         remount /lib with nosuid,nodev Patrick Schleizer 2019-12-20 05:27:11 -05:00
  • 7f20160477
         comment Patrick Schleizer 2019-12-20 05:24:00 -05:00
  • a135ae9400
         use must manually enable permission-hardening.service Patrick Schleizer 2019-12-20 05:22:59 -05:00
  • fa6f1e1568
         output Patrick Schleizer 2019-12-20 05:19:39 -05:00
  • a26cb94bfd
         globstar no longer required Patrick Schleizer 2019-12-20 04:49:21 -05:00
  • c66e9abe18
         comment Patrick Schleizer 2019-12-20 04:48:57 -05:00
  • d1d0afff34
         fix Patrick Schleizer 2019-12-20 04:48:02 -05:00
  • e74d2e4f94
         output Patrick Schleizer 2019-12-20 04:23:14 -05:00
  • eb86359033
         refactoring Patrick Schleizer 2019-12-20 04:20:05 -05:00
  • bb84fca184
         refactoring Patrick Schleizer 2019-12-20 04:08:46 -05:00
  • f92b414195
         refactoring Patrick Schleizer 2019-12-20 04:06:28 -05:00
  • 4c44871e9d
         comment Patrick Schleizer 2019-12-20 04:02:05 -05:00
  • 6876a2eaa8
         comment Patrick Schleizer 2019-12-20 04:01:40 -05:00
  • 35c4fce61b
         fix "dpkg-statoverride: warning: stripping trailing /" Patrick Schleizer 2019-12-20 03:54:46 -05:00
  • 9bd9012ab1
         refactoring Patrick Schleizer 2019-12-20 03:46:50 -05:00
  • 788a2c1ba3
         comment Patrick Schleizer 2019-12-20 03:45:01 -05:00
  • 55933f8876
         refactoring Patrick Schleizer 2019-12-20 03:43:36 -05:00
  • 9e493a9f48
         refactoring Patrick Schleizer 2019-12-20 03:42:09 -05:00
  • b92a690c16
         refactoring Patrick Schleizer 2019-12-20 03:40:47 -05:00
  • 98535e3a2b
         refactoring Patrick Schleizer 2019-12-20 03:39:25 -05:00
  • ecbba2fd61
         refactoring Patrick Schleizer 2019-12-20 03:38:39 -05:00
  • 20b8a407ac
         refactoring Patrick Schleizer 2019-12-20 03:25:17 -05:00
  • 6cd9eb44fb
         refactoring Patrick Schleizer 2019-12-20 03:24:07 -05:00
  • 706dba104d
         code simplification Patrick Schleizer 2019-12-20 03:19:12 -05:00