Ashlen 3559bc86b7 fix(permission-hardener): ssh-agent gets 2755 perms ... Change from exactwhitelist to matchwhitelist. Discussion revealed that there's a good reason to leave setgid in here, which is essentially defense-in-depth (sometimes users may want to revert Kicksecure's default of kernel.yama.ptrace_scope=2, e.g. to debug a program, and Kicksecure should not be less secure than vanilla Debian in that situation).		2025-05-27 15:32:41 -06:00
..
25_default_whitelist_bubblewrap.conf	Don't worry about files under /bin anymore, Bookworm uses a merged /usr directory	2025-01-07 14:10:46 -06:00
25_default_whitelist_chromium.conf	permission hardener: disable SUID for chrome-sandbox	2025-01-14 04:09:57 -05:00
25_default_whitelist_dbus.conf	comment	2025-01-14 04:12:12 -05:00
25_default_whitelist_firejail.conf	comments	2025-04-08 06:53:08 -04:00
25_default_whitelist_fuse.conf	comment	2025-01-14 03:54:35 -05:00
25_default_whitelist_hardened_malloc.conf	copyright	2024-12-31 13:26:21 -05:00
25_default_whitelist_mount.conf	Don't worry about files under /bin anymore, Bookworm uses a merged /usr directory	2025-01-07 14:10:46 -06:00
25_default_whitelist_pam.conf	comment	2025-01-14 03:56:55 -05:00
25_default_whitelist_passwd.conf	usrmerge	2025-01-20 06:28:16 -05:00
25_default_whitelist_policykit.conf	comments	2025-01-20 04:29:42 -05:00
25_default_whitelist_postfix.conf	comments	2025-01-20 04:29:42 -05:00
25_default_whitelist_qubes.conf	comment	2025-01-14 04:13:39 -05:00
25_default_whitelist_selinux.conf	comments	2025-01-20 04:29:42 -05:00
25_default_whitelist_spice.conf	comments	2025-01-20 04:29:42 -05:00
25_default_whitelist_ssh.conf	fix(permission-hardener): ssh-agent gets 2755 perms	2025-05-27 15:32:41 -06:00
25_default_whitelist_sudo.conf	comments	2025-01-20 04:29:42 -05:00
25_default_whitelist_unix_chkpwd.conf	usrmerge	2025-01-20 06:28:16 -05:00
25_default_whitelist_virtualbox.conf	usrmerge	2025-01-20 06:28:16 -05:00
30_default.conf	copyright	2024-12-31 13:26:21 -05:00