mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-07-07 00:43:56 +07:00
Code Issues Packages Projects Releases Wiki Activity

readme

Browse Source
This commit is contained in:
Patrick Schleizer
2020-02-13 13:38:21 -05:00
parent 76a51a3b45
commit d1fa191bc0
1 changed files with 1 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
README.md
View File

@ -48,12 +48,7 @@ on uncorrectable errors in ECC memory that could be exploited.
* Kernel Page Table Isolation is enabled to mitigate Meltdown and increase * Kernel Page Table Isolation is enabled to mitigate Meltdown and increase
KASLR effectiveness. KASLR effectiveness.
* SMT is disabled as it can be used to exploit the MDS and other * Enables all mitigations for CPU vulnerabilities and disables SMT.
vulnerabilities.
* All mitigations for the MDS vulnerability are enabled.
* Enables mitigations for the L1TF (L1 Terminal Fault) vulnerability.
* A systemd service clears System.map on boot as these contain kernel symbols * A systemd service clears System.map on boot as these contain kernel symbols
that could be useful to an attacker. that could be useful to an attacker.