8f3896c3da
Upgrade hyperlinks to HTTPS
2024-07-17 23:44:37 +10:00
d13d1aa7ec
comments
2024-02-22 15:07:53 -05:00
c3dd178b19
output
2024-02-22 14:57:50 -05:00
6d7cf3c12a
output
2024-02-22 09:49:48 -05:00
f7831db197
do not exit non-zero if folder does not exist
2024-02-22 09:17:41 -05:00
5bdd7b8475
output
2024-02-22 09:14:52 -05:00
44a15cd97d
mount --make-private
...
https://github.com/Kicksecure/security-misc/issues/172
2024-02-22 09:13:56 -05:00
c0f98b05b6
comment
...
https://github.com/Kicksecure/security-misc/pull/202
2024-02-22 06:03:59 -05:00
1e1613aa93
allow /opt exec as usually optional binaries are placed there such as firefox
...
https://github.com/Kicksecure/security-misc/pull/202
2024-02-22 06:02:28 -05:00
7c7b4b24b4
fix home_noexec_maybe -> most_noexec_maybe
...
https://github.com/Kicksecure/security-misc/pull/202
2024-02-22 06:02:00 -05:00
38783faf60
add more bind mounts of mount options hardening
...
as suggested in https://github.com/Kicksecure/security-misc/pull/202
2024-02-22 05:58:53 -05:00
b0dd967611
usrmerge
...
https://github.com/Kicksecure/security-misc/issues/157
2023-12-25 09:28:08 -05:00
1123d23114
remount-secure: disable debugging to save space in initrd
2023-10-26 18:45:07 -04:00
f0857fd560
Fix double mount issue for /var/log and /var/tmp
...
Mounting var with bind and mounting a subdirectory causes /var/tmp and /var/log bind mounted twice each. can be checked with lsblk. When we bind mount var only after having mounted the subdirectories, everything is mounted only one.
2023-10-23 15:33:05 +00:00
d2e8a6dad3
debugging
2023-10-22 19:21:51 -04:00
e7aafd64d4
refactoring
2023-10-22 19:16:12 -04:00
d521662d04
comment
2023-10-22 16:49:36 -04:00
0e80acf38d
fix
2023-10-22 16:45:10 -04:00
5182d7502b
improve remount-secure
2023-10-22 16:08:21 -04:00
a88c0a3ad2
fix
2023-10-22 15:44:30 -04:00
a7629b98cf
fix
2023-10-22 15:40:49 -04:00
7112eac3be
output
2023-10-22 15:37:21 -04:00
f80b5fe376
fix
2023-10-22 15:36:16 -04:00
ce0babce21
comment
2023-10-22 15:35:03 -04:00
70cbe4daaa
fix
2023-10-22 15:33:11 -04:00
9b9e9ce1c0
fix
2023-10-22 15:27:01 -04:00
3731716a49
fix
2023-10-22 15:14:22 -04:00
eec87a0508
fix
2023-10-22 15:11:26 -04:00
f3286cf440
fix
2023-10-22 15:10:21 -04:00
eb90d38d8c
fix
2023-10-22 15:05:33 -04:00
7f03c2b137
fix
2023-10-22 14:45:45 -04:00
c85db586ca
improve
2023-10-22 14:44:58 -04:00
7c0ea4324a
fix
2023-10-22 14:39:52 -04:00
6198ae317c
fix
2023-10-22 14:29:02 -04:00
245fad0986
fix
2023-10-22 14:00:06 -04:00
619f1705e1
output
2023-10-22 13:58:55 -04:00
e689f38ad0
todo
2023-10-22 13:31:44 -04:00
6675a2e931
fix
2023-10-22 13:30:50 -04:00
84ca0ac8a0
improve remount-secure
2023-10-22 12:54:25 -04:00
e7d30955e8
debugging
2023-10-22 11:28:08 -04:00
8eb4607a0e
improve
2023-10-22 11:12:54 -04:00
f1da0ce746
fix
2023-10-22 11:11:10 -04:00
26826e8398
fix
2023-10-22 11:06:34 -04:00
233fa4625b
output
2023-10-22 10:49:53 -04:00
3ebe8cf4de
refactoring
2023-10-22 10:41:42 -04:00
24d2e26397
no longer reproducible
2023-10-22 10:40:19 -04:00
fcba70df2e
refactoring
2023-10-22 10:38:48 -04:00
a05bd3dd0e
/home last because most likely to fail
2023-10-22 10:37:02 -04:00
41077c94fb
improve remount-secure
2023-10-22 10:32:24 -04:00
ef69e512bd
refactoring
2023-10-22 10:25:57 -04:00
