mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-07-31 07:10:24 +07:00
Code Issues Packages Projects Releases Wiki Activity
1,308 Commits 4 Branches 457 Tags
78a9956b73498bad471ee1cb0fa0993f2e5ce3c0
Commit Graph

1308 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Patrick Schleizer
c22adbd92f notify if security-misc installation is forced 2020-03-30 18:39:23 -04:00
Patrick Schleizer
7ee5fc1b76 bumped changelog version 17.1-1 2020-03-30 17:16:46 -04:00
Patrick Schleizer
f663b5eff8 skip check if any non-root user is a member of group sudo and console if 
environment variable `SECURITY_MISC_INSTALL` is set to `force`
 2020-03-30 17:15:02 -04:00
Patrick Schleizer
bc22fc9fdb skip check if any non-root user is a member of group sudo and console if file 
/var/lib/security-misc/skip_install_check exists
 2020-03-30 17:12:43 -04:00
Patrick Schleizer
d7a69628b1 bumped changelog version 17.0-1 2020-03-21 14:56:48 -04:00
Patrick Schleizer
5f0dd8270b consistent use of quotes 2020-03-21 14:14:35 -04:00
Patrick Schleizer
66ea1a3a12 minor 2020-03-21 14:14:15 -04:00
Patrick Schleizer
23bd7ead59 remove trailing space 2020-03-21 14:12:42 -04:00
Patrick Schleizer
7c25fc517e Merge remote-tracking branch 'origin/master' 2020-03-21 14:12:25 -04:00
Patrick Schleizer
1cbc7f6bed Merge pull request #73 from madaidan/sysctl-initramfs 
Only remount in sysctl-initramfs if already mounted read-only
 2020-03-21 18:11:57 +00:00
madaidan
89ada11cf9 Only remount if already mounted read-only 2020-03-21 17:49:07 +00:00
Patrick Schleizer
20f0c574d5 Merge remote-tracking branch 'origin/master' 2020-03-21 13:28:43 -04:00
Patrick Schleizer
2938182ce6 Merge pull request #72 from madaidan/master 
Fix sysctl-initramfs logs
 2020-03-21 17:26:37 +00:00
madaidan
c8826d6702 Fix sysctl-initramfs logs 2020-03-21 17:15:25 +00:00
onions-knight
8dfdec1d3b Update thunar.xml 
Adding Delete option for thunar on right mouse click (removed in Debian 10). See https://forums.whonix.org/t/whonix-host-calamares-branding-suggestion/7772/26
 2020-03-17 16:38:53 +00:00
Patrick Schleizer
e4118cb21e bumped changelog version 16.9-1 2020-03-12 04:43:08 -04:00
Patrick Schleizer
e6e7886a6e Merge remote-tracking branch 'origin/master' 2020-03-11 09:08:41 -04:00
Patrick Schleizer
711e786be5 Merge pull request #70 from madaidan/userfaultfd 
Fix unprivileged_userfaultfd
 2020-03-11 13:06:23 +00:00
madaidan
4d0de87f79 Disable unprivileged userfaultfd use again 2020-03-08 17:49:49 +00:00
madaidan
efb2683cfc Hide unprivileged_userfaultfd error 2020-03-08 17:49:12 +00:00
Patrick Schleizer
04a87f7029 bumped changelog version 16.8-1 2020-03-08 09:43:24 -04:00
Patrick Schleizer
284a491100 disable vm.unprivileged_userfaultfd=0 for now 
because broken

https://forums.whonix.org/t/kernel-hardening/7296/406

reverts "Restrict the userfaultfd() syscall to root as it can make heap sprays easier."

https://duasynt.com/blog/linux-kernel-heap-spray
 2020-03-08 08:07:10 -04:00
Patrick Schleizer
44351ec9b7 remove no longer needed code for installation of apparmor profiles 2020-03-07 21:44:19 -05:00
Patrick Schleizer
71ae623916 bumped changelog version 16.7-1 2020-03-05 08:36:27 -05:00
Patrick Schleizer
76eb9579a3 readme 2020-03-05 08:33:00 -05:00
Patrick Schleizer
15dde15a36 typo 2020-03-03 09:42:24 -05:00
Patrick Schleizer
8887af26d6 bumped changelog version 16.6-1 2020-03-03 09:19:49 -05:00
Patrick Schleizer
1dea4dbcf6 readme 2020-03-03 09:18:38 -05:00
Patrick Schleizer
cd19c2da00 fix lintian warning 2020-03-03 09:18:24 -05:00
Patrick Schleizer
7e3fedefb2 bumped changelog version 16.5-1 2020-03-03 09:12:50 -05:00
Patrick Schleizer
201d6b5efc readme 2020-03-03 09:07:42 -05:00
Patrick Schleizer
63c6405ab7 Merge remote-tracking branch 'origin/master' 2020-02-29 07:34:46 -05:00
Patrick Schleizer
453aa8a4eb Merge pull request #65 from madaidan/userfaultfd 
Restrict the userfaultfd() syscall to root
 2020-02-29 12:28:32 +00:00
Patrick Schleizer
e3e39f2235 Merge remote-tracking branch 'origin/master' 2020-02-29 05:01:41 -05:00
Patrick Schleizer
649ec5dfa1 pkexec wrapper: fix gdebi / synaptic 
but at cost of checking for passwordless sudo /etc/suders /etc/sudoers.d
exceptions.

http://forums.whonix.org/t/cannot-use-pkexec/8129/53
 2020-02-29 04:59:56 -05:00
Patrick Schleizer
32269d32b6 description 2020-02-29 04:59:15 -05:00
Patrick Schleizer
b31caefdeb description 2020-02-29 04:59:02 -05:00
Patrick Schleizer
bd7678c574 Merge pull request #66 from madaidan/mce 
Fix docs
 2020-02-28 12:04:05 +00:00
madaidan
42d3b986c4 Update control 2020-02-27 17:41:14 +00:00
Patrick Schleizer
d04d4bf095 description 2020-02-25 02:08:10 -05:00
Patrick Schleizer
4043d2af3f description 2020-02-25 02:06:48 -05:00
Patrick Schleizer
0e5187ff24 description 2020-02-25 02:00:27 -05:00
madaidan
60fbf8b0de Update control 2020-02-24 18:24:07 +00:00
madaidan
6b64b36b01 Restrict the userfaultfd() syscall to root 2020-02-24 18:23:15 +00:00
Patrick Schleizer
221000db5b Merge remote-tracking branch 'origin/master' 2020-02-17 03:17:11 -05:00
Patrick Schleizer
c7f2537930 Merge pull request #64 from madaidan/extra_latent_entropy 
Gather more entropy during boot
 2020-02-17 08:16:34 +00:00
madaidan
8ea4e50c8e Update control 2020-02-16 19:52:40 +00:00
madaidan
f6b6ab374e Gather more entropy during boot 2020-02-16 19:51:32 +00:00
Patrick Schleizer
01eaee997e bumped changelog version 16.4-1 2020-02-15 15:35:44 -05:00
Patrick Schleizer
412a83923d Merge remote-tracking branch 'origin/master' 16.3-1 2020-02-15 15:30:32 -05:00