mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-02-22 12:38:52 +07:00
Code Issues Packages Projects Releases Wiki Activity
cda6724755
security-misc/debian
History
Patrick Schleizer 6479c883bf
Console Lockdown. 
Allow members of group 'console' to use tty1 to tty7. Everyone else except
members of group 'console-unrestricted' are restricted from using console
using ancient, unpopular login methods such as using /bin/login over networks,
which might be exploitable. (CVE-2001-0797)

Not enabled by default in this package since this package does not know which
users shall be added to group 'console'.

In new Whonix builds, user 'user" will be added to group 'console' and
pam console-lockdown enabled by package anon-base-files.

/usr/share/pam-configs/console-lockdown

/etc/security/access-security-misc.conf

https://forums.whonix.org/t/etc-security-hardening/8592
2019-12-07 05:40:20 -05:00
..
source
changelog bumped changelog version 2019-12-07 02:02:32 -05:00
compat
control Console Lockdown. 2019-12-07 05:40:20 -05:00
copyright remove umask changes since these are causing issues are are not needed anymore 2019-08-24 12:14:22 -04:00
rules copyright 2019-10-31 11:19:44 -04:00
security-misc.displace Redirect calls for pkexec to lxqt-sudo because pkexec is incompatible with hidepid. 2019-10-21 05:46:49 -04:00
security-misc.displace-extension
security-misc.gconf-defaults
security-misc.maintscript Revert "undo Disabling TCP SACK, DSACK, FACK" 2019-10-05 13:13:46 +00:00
security-misc.postinst Console Lockdown. 2019-12-07 05:40:20 -05:00
security-misc.postrm fix, make sure to undo pam changes on package removal 2019-11-27 10:22:31 -05:00
security-misc.preinst comment 2019-11-22 12:24:35 -05:00
security-misc.prerm copyright 2019-10-31 11:19:44 -04:00
security-misc.undisplace remove umask changes since these are causing issues are are not needed anymore 2019-08-24 12:14:22 -04:00
watch