Commit Graph

91 Commits

Author SHA1 Message Date
Tommy
d61e21c966
Reimplement Docker Compose Plugin in Generic.yml
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-07 12:32:49 -07:00
Tommy
9ddc479705
Update copyright year
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-07 12:13:26 -07:00
Tommy
d48591d194
Fix gVisor downloader
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-07 11:33:33 -07:00
Tommy
dc0a155c30
More typo fixes
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-07 11:20:52 -07:00
Tommy
dca71564e7
Typo fix
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-07 10:54:09 -07:00
Tommy
461e4bca05
Fix gVisor Updater
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-07 10:37:36 -07:00
Tommy
4bad3e63a0
Split out configs
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-07 10:02:45 -07:00
Tommy
89b9395dfe
Code cleanup
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-07 07:27:18 -07:00
Tommy
8b6b26ad75
Fix unbound config typo
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-26 06:36:59 -07:00
Tommy
57f6171df3
Bug fixes
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-15 08:49:56 -07:00
Tommy
2617245427
Remove auditd
Signed-off-by: Tommy <contact@tommytran.io>
2023-12-31 00:17:47 -07:00
Tommy
0090193dfc
Remove non-functional /etc/issue
Signed-off-by: Tommy <contact@tommytran.io>
2023-12-18 13:44:17 -07:00
Tommy
1a4336a20f
Firewalld lockdown mode
Signed-off-by: Tommy <contact@tommytran.io>
2023-12-12 07:40:17 -07:00
Tommy
fdb0e8aac1
Upstream Docker
Signed-off-by: Tommy <contact@tommytran.io>
2023-12-12 07:31:17 -07:00
Tommy
a74ca44f68
Typo Fix
Signed-off-by: Tommy <contact@tommytran.io>
2023-12-07 17:07:37 -07:00
Tommy
1923f85786
Add license notice
Signed-off-by: Tommy <contact@tommytran.io>
2023-12-06 22:46:17 -07:00
Tommy
06bc0cce39
Fix missing efi=disable_early_pci_dma
Signed-off-by: Tommy <contact@tommytran.io>
2023-12-06 15:09:54 -07:00
Tommy
03fa2b6b8d
Bump Butane version to 1.5.0
Signed-off-by: Tommy <contact@tommytran.io>
2023-12-06 14:11:25 -07:00
Tommy
cd5cbb61fe
Update styling
Signed-off-by: Tommy <contact@tommytran.io>
2023-12-06 14:10:56 -07:00
Tommy
7796e161c8
IOMMU Fix
Signed-off-by: Tommy <contact@tommytran.io>
2023-12-06 13:56:57 -07:00
Tommy
5201fedaae
Run curl unprivileged
Signed-off-by: Tommy <contact@tommytran.io>
2023-12-02 08:15:27 -07:00
Tommy
7999d90e6c
Fix 990-security-misc path
Signed-off-by: Tommy <contact@tommytran.io>
2023-11-15 14:18:29 -07:00
Tommy
e7b703615d
Fix runsc path
Signed-off-by: Tommy <contact@tommytran.io>
2023-11-06 18:40:04 -07:00
Tommy
1c70f5040c
Update SSH Key
Signed-off-by: Tommy <contact@tommytran.io>
2023-11-04 13:54:13 -07:00
Thien Tran
0f478ae5d1
Add auditd
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-11-01 16:09:46 -07:00
Thien Tran
447136c03b
Update KickSecure configuration paths
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-10-31 09:23:35 -07:00
Thien Tran
7ccba15df9
Mask ctrl-alt-del.target
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-10-25 16:41:48 -07:00
Thien Tran
b26e2d7379
Disable CtrlAltDelBurstAction
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-10-25 16:12:34 -07:00
Thien Tran
caeeefc990
Mask debug shell
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-10-25 16:07:17 -07:00
Thien Tran
ce5d43d097
Typo Fixes
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-10-25 15:43:51 -07:00
Thien Tran
e348ca1b9b
/etc/issue(.net)
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-10-25 15:18:07 -07:00
Thien Tran
d2f65d8b2e
Remove outdated ZRAM comment
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-10-11 23:39:54 -07:00
Thien Tran
1498126454
ZRAM Compression
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-10-11 23:19:11 -07:00
Thien Tran
746ec7425b
Update SSH Hardening
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-10-10 12:29:15 -07:00
Thien Tran
a99d1f5e1d
Update SSH Hardening
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-10-10 12:05:22 -07:00
Thien Tran
3ffaeccc7f
Update runtimes
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-10-10 10:18:35 -07:00
Thien Tran
56aec4db80
Change sshd hardening filename
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-09-07 15:02:25 -07:00
Thien Tran
53e864b380
Update SSH Key
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-08-27 06:25:44 -07:00
Thien Tran
4eaf4eee81
Consistency fixes
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-08-16 03:37:26 -07:00
Thien Tran
3ee9f7c9d1
Setup Chrony seccomp filter
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-08-15 18:23:38 -07:00
Thien Tran
f66bce02e9
Use 1.1.1.2 for badness enumeration
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-07-27 04:58:07 -07:00
Thien Tran
b5afd8e0d5
Switch to Cloudflare DNS
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-06-25 13:19:57 -07:00
Thien Tran
45fa68d5c9
Typo fix
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-06-11 03:48:51 -07:00
Thien Tran
05b2df9c8b
Use systrap by default
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-06-08 16:06:20 -07:00
Tommy
af51a505ae
Fix gVisor SELinux context
Signed-off-by: Tommy <contact@tommytran.io>
2023-04-15 04:22:34 -04:00
Robin Ophalvens
6a0f4afe1d
Add missing sed in-place flag (#1)
* Add missing sed in-place flag

* Update README to warn passwordless users
2023-04-15 04:05:22 -04:00
Robin Ophalvens
a71b39940e
Unbound systemd overrides affect Service section, not the Unit (#2)
Unbound overrides affect Service section, not the Unit
2023-04-12 07:16:14 -04:00
Tommy
3b845ea7d2
Indentcation fix
Signed-off-by: Tommy <contact@tommytran.io>
2023-03-29 11:49:12 -04:00
Tommy
92fc6758d3
Regornaize the postinst service
Signed-off-by: Tommy <contact@tommytran.io>
2023-03-29 01:07:50 -04:00
Tommy
6393fd4f75
Allow ICMP
Signed-off-by: Tommy <contact@tommytran.io>
2023-03-20 13:59:24 -04:00