1
0
mirror of https://github.com/PrivSec-dev/privsec.dev synced 2024-12-23 13:21:34 -05:00
Commit Graph

300 Commits

Author SHA1 Message Date
kimg45
ba517eb61a
add .dmg vs .pkg info 2024-08-11 19:01:18 -05:00
kimg45
d196c25001
wording 2024-08-11 01:12:52 -05:00
kimg45
a86145bc2a
add disclaimer at the beginning 2024-08-11 01:12:18 -05:00
kimg45
e3601d14ba
grammar 2024-08-10 22:58:38 -05:00
kimg45
671bbb5c9a
add restricted column info 2024-08-10 22:58:20 -05:00
kimg45
d2023812c5
add hardare disconnect for microphone 2024-08-10 22:56:19 -05:00
kimg45
9a8b622f3f
add bluetooth 2024-08-10 22:53:12 -05:00
kimg45
497f089da8
add aridrop and handoff info 2024-08-10 22:52:08 -05:00
kimg45
0acf25f18a
fix image 2024-08-10 20:45:35 -05:00
kimg45
992b55238d
fix image 2024-08-10 20:44:06 -05:00
kimg45
bb7ce57ddd
fix image 2024-08-10 20:40:45 -05:00
kimg45
08f550c565
chance custom to stricter 2024-08-10 20:35:25 -05:00
kimg45
480af4c444
spelling 2024-08-10 20:32:39 -05:00
kimg45
626bc7ff2b
add kernel integrity protection 2024-08-10 20:32:01 -05:00
kimg45
7c7388f760
add bold 2024-08-10 20:27:06 -05:00
kimg45
acc4054bf3
spelling 2024-08-10 20:24:24 -05:00
kimg45
5437377b3f
grammar 2024-08-10 20:22:39 -05:00
kimg45
1efe2fde5b
grammar 2024-08-10 20:21:59 -05:00
kimg45
f83379375e
remove redundant sentence 2024-08-10 20:20:53 -05:00
kimg45
79d8d5df2b
wording 2024-08-10 20:17:44 -05:00
kimg45
fa85ce4642
add file extension 2024-08-10 20:15:45 -05:00
kimg45
e8ace076be
add firewall 2024-08-10 09:24:31 -05:00
kimg45
3035a6bd01
Merge branch 'main' into macos 2024-08-10 09:19:21 -05:00
friendly-rabbit-35
2cca75ed85
Update link to kernel module config (again) (#271)
Update link to secureblue's kmod blacklist

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-08-10 04:59:44 -07:00
kimg45
9343a4dc33
update name 2024-08-10 00:39:55 -05:00
kimg45
40d669dfc5
add apps requiring admin 2024-08-10 00:26:11 -05:00
kimg45
395a85aa99
add lock screen keyboard shortcut 2024-08-10 00:12:14 -05:00
kimg45
ea2cd286c6
add lock screen security 2024-08-10 00:07:59 -05:00
kimg45
fb0132721b
add system extension info 2024-08-10 00:00:45 -05:00
kimg45
3ad9d5e25a
add trash and file extensions 2024-08-09 23:51:45 -05:00
kimg45
2ffb9448fe
add reopen windows 2024-08-09 23:37:40 -05:00
kimg45
9c3c63fc8b
add metadata 2024-08-09 23:27:39 -05:00
kimg45
c3475b8061
add admin account info 2024-08-09 23:25:37 -05:00
kimg45
62d51bdae5
add secure keyboard entry 2024-08-09 23:17:12 -05:00
kimg45
88f4bf926f
add custom umask 2024-08-09 23:14:39 -05:00
kimg45
4afc0a272f
add lockdown mode info 2024-08-09 23:10:26 -05:00
kimg45
00b633af1e
add link to apple platform security 2024-08-09 23:07:25 -05:00
kimg45
fafeab0ac4
add DMA info 2024-08-09 23:05:00 -05:00
kimg45
9b83ec0465
add secure boot info 2024-08-09 23:02:29 -05:00
kimg45
947298da80
Merge branch 'PrivSec-dev:main' into macos 2024-08-09 19:06:09 -05:00
A Racasan
6c2a17dd31
Update Kroo bank play store link (#260)
Signed-off-by: A Racasan <andrei@racasan.com>
2024-08-09 10:17:48 -07:00
kimg45
d583d90627
add xprotect info 2024-08-08 15:21:55 -05:00
kimg45
a0ae942229
add gatekeeper 2024-08-08 14:06:38 -05:00
kimg45
f55e87b950
add hardened runtime info 2024-08-08 13:38:21 -05:00
kimg45
04dccb9469
add app sandbox info 2024-08-08 13:27:03 -05:00
kimg45
8c0ad3910e
add macos security overview 2024-08-08 12:57:56 -05:00
spring-onion
4e80cb6cfd
Add banking app reports 476 and 477, 479-483 (#269) 2024-08-06 15:22:13 -07:00
f8c80c0f45
Remove KDE mentions & Reorganize images in the "Choosing your distro" post (#267)
* Remove KDE mentions

Signed-off-by: Tommy <contact@tommytran.io>
Co-authored-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Move screenshot location

Signed-off-by: Tommy <contact@tommytran.io>

---------

Signed-off-by: Tommy <contact@tommytran.io>
Co-authored-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-07-31 22:17:19 -07:00
00a5265e14
Clean up Secure Boot section (#265)
* Clean up Secure Boot section

Signed-off-by: Tommy <contact@tommytran.io>

---------

Signed-off-by: Tommy <contact@tommytran.io>
2024-07-29 11:16:54 -07:00
spring-onion
43bb49155f
Update banking app report 156, add 453 and 473 (#264) 2024-07-23 13:28:20 -07:00
Friendly Rabbit
c2b3c19872
Update link to kernel module config (#262)
Update link to secureblue's kmod blacklist

Signed-off-by: Friendly Rabbit <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-07-21 19:00:02 -07:00
01b9a4cff5
Typo Fix
Signed-off-by: Tommy <contact@tommytran.io>
2024-07-15 13:57:58 -07:00
4abf35e257
Fix zpool commands
Signed-off-by: Tommy <contact@tommytran.io>
2024-07-15 13:26:53 -07:00
Friendly Rabbit
7843b6f163
Fix typos in ZFS Encryption post (#261)
Fix typos

Signed-off-by: Friendly Rabbit <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-07-07 22:45:01 -07:00
c508504759
Better ZFS properties
Signed-off-by: Tommy <contact@tommytran.io>
2024-07-07 20:52:18 -07:00
spring-onion
281f43eabe
Add banking app reports 463-468 and 471 (#259)
* Add banking app reports 463-468 and 47
2024-07-03 13:49:26 -07:00
9604aed927
Remove Ubuntu USG mention (#250)
* Remove Ubuntu Pro mention

Signed-off-by: Tommy <contact@tommytran.io>

* Remove USG

---------

Signed-off-by: Tommy <contact@tommytran.io>
2024-06-26 09:52:17 -07:00
eb1098bc37
Change /dev/urandom to /dev/random
Signed-off-by: Tommy <contact@tommytran.io>
2024-06-18 16:07:42 -07:00
spring-onion
714655c49c
Add Egypt, banking app reports 457-462 (#257) 2024-06-17 09:12:33 -07:00
friendly-rabbit-35
1ceabea0fc
Update kernel module blacklisting recommendation (#255)
* Replace Kicksecure kmod blacklist with secureblue's and move disclaimer about Kicksecure morphing

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-06-16 21:40:37 -07:00
friendly-rabbit-35
cbe365251d
Remove link to archived Kicksecure repository for AppArmor profiles (#254)
* Remove link to deprecated Kicksecure AppArmor profile repo

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Add apparmor.d mention as a reference

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Remove mentions of Whonix sandboxed app launcher and AppArmor profiles

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

---------

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-06-16 15:49:53 -07:00
friendly-rabbit-35
074f5d1813
Remove hardened_malloc mention from Whonix section (#253)
Remove hardened_malloc mention from Whonix section and expand on Aeon RC

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-06-16 13:53:37 -07:00
7f75180bfc
Update sysctl settings recommendations (#251)
* Update sysctl settings recommendations
* Update author names

Signed-off-by: Tommy <contact@tommytran.io>
Co-authored-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>
2024-06-16 13:47:54 -07:00
6f6b9b5c16
Update hardened_malloc information (#249)
* Update hardened_malloc information

Signed-off-by: Tommy <contact@tommytran.io>
Co-authored-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>
2024-06-16 13:38:37 -07:00
friendly-rabbit-35
4783e250ee
Make grammar changes and apply other fixes across various posts (#248)
* Make grammar changes and other fixes

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* More fixes and touch-ups

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Clean up

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Make minor grammar changes

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* More cleanup

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Slightly reword

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

---------

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-06-11 14:20:47 -07:00
spring-onion
7b813c8012
Add banking app reports 454-456 (#243) 2024-06-06 19:01:18 +00:00
spring-onion
601276190b
Add banking app report 452 (#242) 2024-06-03 09:38:07 -07:00
Leonardo Brondani Schenkel
c2958d9525
Move Klarna to international section (#240)
Klarna is a Swedish company with presence in many countries.
Move it to the International section, just like Revolut.

Signed-off-by: Leonardo Brondani Schenkel <leonardo@schenkel.net>
2024-05-31 10:49:01 -07:00
95f945b56f
Remove fsverity mention
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-29 17:58:01 -07:00
spring-onion
8b5010c633
Add banking app reports 448-451, split 105 (#239) 2024-05-28 20:12:52 -07:00
7db27f6074
security_opt expects =
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-28 14:45:27 -07:00
e7d1cff73d
Update kargs
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-27 13:39:09 -07:00
friendly-rabbit-35
ee4909b16a
Fix grammar errors in Lokinet post and in other Qubes posts (#238)
* Convert hyphen to em dash and noun to verb

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Update link to community guide

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Fix grammar errors

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

---------

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-05-25 19:00:55 -07:00
18770b5c3a
Update Lokinet post (#237)
* Update Lokinet post

Signed-off-by: Tommy <contact@tommytran.io>
2024-05-24 23:04:23 -07:00
friendly-rabbit-35
5049772a67
Remove provider description and reword other category descriptions (#235)
* Remove VPN provider description

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Reword description slightly

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Reword description slightly

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Reword description slightly

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Make various grammar changes

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Fix grammar

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Fix grammar

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Fix grammar

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

---------

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-05-25 03:13:23 +00:00
akc3n
70b41194be
Update Netherlands listings (#236)
Fixes https://github.com/PrivSec-dev/banking-apps-compat-report/issues/105#issuecomment-2036801534
2024-05-25 03:09:53 +00:00
spring-onion
db972bf52b
Add banking app reports 168 and 447, remove 114 and 198, update 162 and 178, move 222 and 305, miscellaneous fixes (#234) 2024-05-21 21:50:16 +00:00
ceec9636d2
Fix systemd-resolved restart ratelimiting
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-21 11:54:13 -07:00
36f9afbe98
Restart systemd-resolved before qubes-setup-dnat-to-ns
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-20 16:01:13 -07:00
e97a69d06a
Add StartLimitIntervalSec=0 to dnat-to-ns.service
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-20 13:34:03 -07:00
friendly-rabbit-35
9ef57f03e8
Fix more dead links on Desktop Linux Hardening page (#232)
* Fix dead links

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Remove outdated line about BT

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

---------

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-05-17 16:56:15 -07:00
spring-onion
41c314574f
Update banking app report 39, add 445 and 446 (#231) 2024-05-17 10:04:19 -07:00
121f5e3913
Fix IVPN for chaining ProxyVMs
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-17 02:32:12 -07:00
5bf6e2133e
Fix IVPN instructions
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 23:39:11 -07:00
8e140c3ac9
--now is not needed for Mullvad setup
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 23:36:46 -07:00
f70a162f66
Fix file name
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 19:27:44 -07:00
546c814e21
Using IVPN on Qubes OS (#230)
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 19:17:31 -07:00
6b8b46f455
More info on Qubes VPN Firewall handling
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 17:08:32 -07:00
friendly-rabbit-35
2a0f8344d7
Fix dead links on Desktop Linux Hardening page (#228)
* Make various grammar and wording changes for improved clarity
* Fix dead link
---------

Signed-off-by: friendly-rabbit-35 <chariot-barbed-0v@icloud.com>
Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 16:03:26 -07:00
5c422f217d
Stress that the Mullvad guide is for GNOME
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-12 04:58:16 -07:00
5cb4ad0ede
Use systemd path for dnat-to-ns (#227)
* Use systemd path for dnat-to-ns

Signed-off-by: Tommy <contact@tommytran.io>

* Make the flow better

Signed-off-by: Tommy <contact@tommytran.io>

---------

Signed-off-by: Tommy <contact@tommytran.io>
2024-05-12 04:43:07 -07:00
spring-onion
a96b20cea0
Update banking app 39, add 442 and 444 (#226) 2024-05-09 07:08:43 +00:00
365c717bc1
ChromeOS's Questionable Encryption (#222)
* ChromeOS's Questionable Encryption

Signed-off-by: Tommy <contact@tommytran.io>

* Add metadata

Signed-off-by: Tommy <contact@tommytran.io>

* Minor fixes

Signed-off-by: Tommy <contact@tommytran.io>

* Minor fix

Signed-off-by: Tommy <contact@tommytran.io>

* Update ChromeOS Questionable Encryption.md

Signed-off-by: Tommy <contact@tommytran.io>

* Update ChromeOS Questionable Encryption

* Fix link

* Edits

---------

Signed-off-by: Tommy <contact@tommytran.io>
Co-authored-by: wj25czxj47bu6q <git@wj25.xn--q9jyb4c>
Co-authored-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>
2024-04-25 22:32:31 -07:00
d2f1ab85ba
Add --nosocket=session-bus and --nosocket=system-bus
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-24 23:30:05 -07:00
spring-onion
bcba4cc4db
Add banking app report 440 (#225) 2024-04-24 22:33:55 -07:00
spring-onion
8178eadd48
Add banking app reports 432-436, 438 and 439, update names and sanitize links (#224) 2024-04-22 15:19:30 -07:00
xyhhx
4ef5e890de
fix(linux/Docker and OCI Hardening): correction on no_new_privs option (#223) 2024-04-19 02:49:30 +00:00
d824a1ccae
Instruction to disable XWayland
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-15 01:26:29 -07:00
0c2cc614d0
Rename MicroOS to Aeon
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-15 00:32:10 -07:00
Salim B
b93f2767b0
Fix typo (#220)
Signed-off-by: Salim B <git@salim.space>
2024-04-14 22:50:31 +00:00