mirror of
https://github.com/optim-enterprises-bv/secureblue.git
synced 2025-11-14 17:15:08 +00:00
docs: clarify readme language
This commit is contained in:
qoijjj
@@ -37,7 +37,7 @@ The following are not in scope:
|
|||||||
- Enabling only the [flathub-verified](https://flathub.org/apps/collection/verified/1) remote by default
|
- Enabling only the [flathub-verified](https://flathub.org/apps/collection/verified/1) remote by default
|
||||||
- Sets numerous hardening kernel arguments (Inspired by [Madaidan's Hardening Guide](https://madaidans-insecurities.github.io/guides/linux-hardening.html)) <sup>[details](https://github.com/secureblue/secureblue/blob/live/files/system/usr/share/ublue-os/just/60-custom.just.readme.md)</sup>
|
- Sets numerous hardening kernel arguments (Inspired by [Madaidan's Hardening Guide](https://madaidans-insecurities.github.io/guides/linux-hardening.html)) <sup>[details](https://github.com/secureblue/secureblue/blob/live/files/system/usr/share/ublue-os/just/60-custom.just.readme.md)</sup>
|
||||||
- Reduce the sudo timeout to 1 minute
|
- Reduce the sudo timeout to 1 minute
|
||||||
- Disable passwordless sudo for `rpm-ostree install` <sup>[why?](https://github.com/rohanssrao/silverblue-privesc)
|
- Require wheel user authentication via polkit for `rpm-ostree install` <sup>[why?](https://github.com/rohanssrao/silverblue-privesc)
|
||||||
- Brute force protection by locking user accounts for 24 hours after 50 failed login attempts, hardened password encryption and password quality suggestions
|
- Brute force protection by locking user accounts for 24 hours after 50 failed login attempts, hardened password encryption and password quality suggestions
|
||||||
- Installing usbguard and providing `ujust` commands to enable it
|
- Installing usbguard and providing `ujust` commands to enable it
|
||||||
- Installing bubblejail for additional sandboxing tooling
|
- Installing bubblejail for additional sandboxing tooling
|
||||||
|
|||||||
Reference in New Issue
Block a user