scottk/secureblue
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/secureblue.git synced 2025-11-25 22:45:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,160 Commits 1 Branch 0 Tags
8e4bffea830697828e2d69117b5bec9113e6463c
Commit Graph

1160 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
qoijjj
34759e24d2 fix: wayblue image tag 2024-07-19 01:44:52 -07:00
qoijjj
5254dfc744 fix: use correct tag 2024-07-19 01:24:45 -07:00
qoijjj
b877fd5d6a fix: temporarily set known good image due to upstream issue 2024-07-19 01:10:15 -07:00
qoijjj
9fffc9460d fix: remove setroubleshoot gui from server images 2024-07-18 23:21:57 -07:00
qoijjj
9102caf67e docs: clarify readme 2024-07-17 17:40:45 -07:00
qoijjj
6bf739f930 docs: fix typo 2024-07-14 23:29:07 -07:00
qoijjj
35d44f87a8 docs: formatting 2024-07-14 23:28:30 -07:00
qoijjj
c35691a091 docs: clarify scope (#319) 2024-07-14 23:27:18 -07:00
Tommy
a3701c7e4f Update chrony.conf (#317) 2024-07-11 20:21:23 -07:00
Tommy
8e14992100 Consistency Fix (#316) 2024-07-11 20:04:39 -07:00
Tommy
f38a520295 Cleaner syntax for disabling ICMP Redirect (#314) 2024-07-11 11:43:18 -07:00
qoijjj
081a2d2978 fix: disable automatic PR builds 2024-07-11 10:44:08 -07:00
Tommy
ffc88b6c9b Disable SSH Stream Local Forwarding & Lowering Config Priority (#312) 
* Better SSH Hardening

* Rename 00-hardening.conf to 30-hardening.conf

* Update 30-hardening.conf

* Update 30-hardening.conf

* Remove extra line
 2024-07-11 10:39:29 -07:00
qoijjj
df4a19f280 fix: use JIT cli setting instead of policy setting (see https://github.com/secureblue/secureblue/issues/304) 2024-07-10 09:51:53 -07:00
qoijjj
f9784d83d7 chore: switch server images to fcos-testing due to stable lagging on patches 2024-07-05 22:38:30 -07:00
qoijjj
79e30ea6d2 docs: add zfs images to readme 2024-07-02 13:42:35 -07:00
qoijjj
eec977755b feat: add server images with zfs built-in 2024-07-02 13:42:04 -07:00
qoijjj
a25075facc feat: update chromium configuration 2024-07-01 23:45:00 -07:00
Tommy
9c7630cc79 Improve ALSR effectiveness for mmap (#307) 2024-07-01 18:39:35 -07:00
qoijjj
667dd4acea chore: ensure /etc/usbguard directory is readable 2024-07-01 18:02:20 -07:00
Tommy
7f090137dc io_uring typo fix (#306) 2024-07-01 17:45:02 -07:00
qoijjj
237f6235e1 chore: ensure usbguard-notifier is present 2024-07-01 16:55:26 -07:00
qoijjj
018608bcb0 chore: update MOTD text 2024-07-01 12:41:32 -07:00
qoijjj
f9c3e15b3f fix: colord issue on no-userns images 2024-07-01 11:18:05 -07:00
qoijjj
8f2a9b16cc chore: add usbguard-notifier to usbguard setup ujust command 2024-06-30 12:16:04 -07:00
qoijjj
bebb18c06c fix: set executable flag on caps script 2024-06-29 23:42:19 -07:00
qoijjj
bc325cca6d feat: replace SUID root with capabilities where possible (#303) 2024-06-29 10:34:06 -07:00
qoijjj
f6d8037b26 fix: temp fix bug due to upstream chromium flag change 2024-06-29 10:32:53 -07:00
qoijjj
9f92777c95 feat: add anticheat toggle to justfile 2024-06-27 23:51:50 -07:00
qoijjj
6180c4f4c8 docs: update steam FAQ 2024-06-27 23:27:49 -07:00
qoijjj
2f856069ee docs: add usbguard setup step to postinstall instructions 2024-06-26 08:48:32 -07:00
qoijjj
27db2dbfa7 fix: usbguard ujust command 2024-06-25 19:38:16 -07:00
qoijjj
99ff4757ec feat: add usbguard and yafti ujust commands 2024-06-25 17:47:45 -07:00
qoijjj
4df6e03846 fix: build error caused by missing script parameter 2024-06-25 17:32:45 -07:00
qoijjj
ec4fd2bfe8 chore: chromium documentation and flag additions 2024-06-25 17:24:23 -07:00
qoijjj
64426b9a35 fix: create missing directories for usbguard and setroubleshoot 2024-06-25 16:46:55 -07:00
qoijjj
53183dd6e6 chore: adjust build time to reflect upstream schedule change 2024-06-23 20:58:21 -07:00
qoijjj
71f2b3a64b chore: remove redundant sysctl that has no effect on fedora's kernel 2024-06-22 14:51:16 -07:00
qoijjj
408f7d7f51 feat: add build-container-installer signing 2024-06-21 09:14:22 -07:00
qoijjj
2e2725346b chore: remove redundant fb blacklists already blacklisted by fedora 2024-06-19 11:19:49 -07:00
qoijjj
4b21d959e8 feat: add additional filesystems to the blacklist (#292) 2024-06-19 11:05:04 -07:00
qoijjj
8bd6269976 docs: fix typo 2024-06-18 19:21:18 -07:00
qoijjj
7e609dc39e docs: include post-install note about flatpak hardened_malloc instruction set optimizations 2024-06-18 19:11:24 -07:00
qoijjj
cb00ab019e Revert all temporary fixes due to upstream issue 2024-06-18 18:32:29 -07:00
qoijjj
1c13f7a527 fix: sericea temporarily pinned version 2024-06-18 14:04:47 -07:00
qoijjj
828f8ef2cf fix: build fixes resulting from upstream breakage 2024-06-18 13:35:03 -07:00
qoijjj
cf10674a3a fix: pinning last good upstream build 20240616 temporarily, due to upstream breakage 2024-06-18 13:07:27 -07:00
qoijjj
2a3bbc247d fix: temporary build changes due to recent upstream breakage 2024-06-18 12:55:18 -07:00
qoijjj
c6724ec997 fix: temporarily pinning 40-20240617 due to upstream breakage (https://github.com/fedora-silverblue/issue-tracker/issues/543) 2024-06-18 12:42:37 -07:00
Tommy
456cac1804 Blacklist reiserfs (#290) 
No one will fix it anytime soon
 2024-06-18 11:49:11 -07:00