mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2024-12-22 20:03:36 +07:00
Code Issues Packages Projects Releases Wiki Activity

refactoring

Browse Source
This commit is contained in:
Patrick Schleizer 2024-10-28 05:03:20 -04:00
parent b44e507900
commit 6c2e808b9f
No known key found for this signature in database
GPG Key ID: CB8D50BB77BB3C48
1 changed files with 3 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
usr/libexec/security-misc/hide-hardware-info
View File

@ -28,8 +28,7 @@ selinux=0
shopt -s nullglob
## Allows for disabling the whitelist.
for i in /etc/hide-hardware-info.d/*.conf
do
for i in /etc/hide-hardware-info.d/*.conf ; do
bash -n "${i}"
source "${i}"
done
@ -63,8 +62,7 @@ create_whitelist() {
## and /proc/scsi to the root user only. This hides
## many hardware identifiers from ordinary users
## and increases security.
for i in /proc/cpuinfo /proc/bus /proc/scsi /sys
do
for i in /proc/cpuinfo /proc/bus /proc/scsi /sys ; do
if [ -e "${i}" ]; then
if [ "${i}" = "/sys" ]; then
if [ "${sysfs}" = "1" ]; then
@ -99,8 +97,7 @@ done
if [ "${sysfs}" = "1" ]; then
## restrict permissions on everything but
## what is needed
for i in /sys/* /sys/fs/*
do
for i in /sys/* /sys/fs/* ; do
## Using '|| true':
## https://github.com/Kicksecure/security-misc/pull/108
if [ "${sysfs_whitelist}" = "1" ]; then