|
|
4bec41379d
|
fix remount with noexec if /etc/noexec exists
|
2019-12-06 11:15:13 -05:00 |
|
|
|
bff425fec2
|
bumped changelog version
10.3-1
|
2019-12-06 09:32:18 -05:00 |
|
|
|
b22289f2a8
|
readme
|
2019-12-06 09:30:05 -05:00 |
|
|
|
470cad6e91
|
remount /home /tmp /dev/shm /run with nosuid,nodev (default) and noexec (opt-in)
https://forums.whonix.org/t/re-mount-home-and-other-with-noexec-and-nosuid-among-other-useful-mount-options-for-better-security/7707
|
2019-12-06 05:14:02 -05:00 |
|
|
|
8cf5ed990a
|
comment
|
2019-12-05 15:52:24 -05:00 |
|
|
|
19add3299c
|
Merge remote-tracking branch 'origin/master'
|
2019-12-05 15:46:19 -05:00 |
|
|
|
9679292878
|
Merge pull request #39 from madaidan/rp_filter
Enable reverse path filtering
|
2019-12-05 20:33:47 +00:00 |
|
|
|
af9e19c51f
|
Update control
|
2019-12-05 20:14:55 +00:00 |
|
|
|
30289c68c2
|
Enable reverse path filtering
|
2019-12-05 20:13:10 +00:00 |
|
|
|
0c25a96b59
|
description / comments
|
2019-12-03 02:18:32 -05:00 |
|
|
|
d26ba05c47
|
Merge remote-tracking branch 'origin/master'
|
2019-12-03 01:52:04 -05:00 |
|
|
|
73c6410a0e
|
Merge pull request #38 from madaidan/distrust-cpu
Distrust the CPU for initial entropy
|
2019-12-03 06:51:31 +00:00 |
|
|
|
8d63da3cef
|
Update control
|
2019-12-02 16:46:12 +00:00 |
|
|
|
5da2a27bf0
|
Distrust the CPU for initial entropy
|
2019-12-02 16:43:00 +00:00 |
|
|
|
6ca48fffdc
|
bumped changelog version
10.2-1
|
2019-11-28 10:22:41 -05:00 |
|
|
|
ab696f5571
|
readme
|
2019-11-28 10:05:39 -05:00 |
|
|
|
25aed91eb1
|
description
|
2019-11-28 09:20:46 -05:00 |
|
|
|
0c4e5df3e0
|
description
|
2019-11-28 09:18:05 -05:00 |
|
|
|
5ac2a6f9ac
|
description
|
2019-11-28 09:17:32 -05:00 |
|
|
|
ff3412fbe0
|
fix, make sure to undo pam changes on package removal
Thanks to minimal for the bug report!
https://forums.whonix.org/t/is-security-misc-suitable-for-hardening-bridges-and-relays/8299/11
|
2019-11-27 10:22:31 -05:00 |
|
|
|
62b924eea7
|
Merge remote-tracking branch 'origin/master'
|
2019-11-26 13:00:36 -05:00 |
|
|
|
ba02dcb267
|
Merge pull request #37 from madaidan/apparmor-fixes
Fix permission-lockdown
|
2019-11-26 18:00:11 +00:00 |
|
|
|
d9d6d07714
|
/dev/pts/[0-9]* rw,
|
2019-11-26 17:12:12 +00:00 |
|
|
|
9091f69edd
|
bumped changelog version
10.1-1
|
2019-11-25 08:51:36 +00:00 |
|
|
|
57ce06c0eb
|
readme
|
2019-11-25 08:41:45 +00:00 |
|
|
|
aa5451c8cd
|
Lock user accounts after 50 rather than 100 failed login attempts.
https://forums.whonix.org/t/how-strong-do-linux-user-account-passwords-have-to-be-when-using-full-disk-encryption-fde-too/7698/19
|
2019-11-25 01:39:53 -05:00 |
|
|
|
6277db1383
|
bumped changelog version
9.12-1
|
2019-11-23 14:07:45 +00:00 |
|
|
|
6a6a638ef0
|
readme
|
2019-11-23 14:06:28 +00:00 |
|
|
|
fe1f1b73a7
|
load jitterentropy_rng kernel module for better entropy collection
https://www.whonix.org/wiki/Dev/Entropy
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927972
https://forums.whonix.org/t/jitterentropy-rngd/7204
|
2019-11-23 11:20:32 +00:00 |
|
|
|
d32024a3da
|
/usr/sbin/pam_tally2 mrix,
https://forums.whonix.org/t/apparmor-for-complete-system-including-init-pid1-systemd-everything-full-system-mac-policy/8339/152
|
2019-11-23 05:53:19 -05:00 |
|
|
|
03e8023847
|
output
|
2019-11-22 14:11:30 -05:00 |
|
|
|
e76e1475b0
|
comment
|
2019-11-22 12:24:35 -05:00 |
|
|
|
a99dfd067a
|
bumped changelog version
9.11-1
|
2019-11-19 15:31:55 +00:00 |
|
|
|
81e4f580af
|
etc/apparmor.d/usr.lib.security-misc.permission-lockdown: /usr/bin/chmod mrix,
|
2019-11-19 15:29:02 +00:00 |
|
|
|
8ad8dbea5a
|
bumped changelog version
9.10-1
|
2019-11-18 19:16:16 +00:00 |
|
|
|
9a20b85fe1
|
Merge remote-tracking branch 'origin/master'
|
2019-11-17 11:20:17 -05:00 |
|
|
|
2b17c0f3e4
|
Merge pull request #36 from madaidan/hidepid-fix
Remove proc-hidepid systemd sandboxing
|
2019-11-17 16:19:55 +00:00 |
|
|
|
e92022a21c
|
Remove systemd sandboxing
|
2019-11-16 14:56:28 +00:00 |
|
|
|
477d476bb1
|
etc/apparmor.d/usr.lib.security-misc.pam_tally2-info: add '#include <abstractions/base>'
|
2019-11-10 08:29:44 -05:00 |
|
|
|
11dc23bf08
|
etc/apparmor.d/usr.lib.security-misc.permission-lockdown: add '#include <abstractions/base>'
|
2019-11-10 08:28:32 -05:00 |
|
|
|
d1d61b106b
|
bumped changelog version
9.9-1
|
2019-11-09 18:44:50 +00:00 |
|
|
|
9f2932faab
|
/usr/bin/id rix,
|
2019-11-09 13:32:21 -05:00 |
|
|
|
6b7df973f6
|
bumped changelog version
9.8-1
|
2019-11-09 12:57:45 +00:00 |
|
|
|
2e73c053b5
|
fix lintian warning
|
2019-11-09 12:55:00 +00:00 |
|
|
|
6e28774f95
|
bumped changelog version
9.7-1
|
2019-11-09 12:23:15 +00:00 |
|
|
|
94d40c68d4
|
do not set kernel boot parameter page_poison=1 in Qubes since does not work
https://github.com/QubesOS/qubes-issues/issues/5212#issuecomment-533873012
|
2019-11-05 10:02:55 -05:00 |
|
|
|
f57702c158
|
comments; copyright
|
2019-11-05 09:55:43 -05:00 |
|
|
|
74293bcd2f
|
output
|
2019-11-05 01:59:25 -05:00 |
|
|
|
2b5b06b602
|
output
|
2019-11-05 01:59:19 -05:00 |
|
|
|
d6977becba
|
refactoring
|
2019-11-05 01:51:14 -05:00 |
|
