1
0
mirror of https://github.com/PrivSec-dev/privsec.dev synced 2024-11-13 18:11:33 -05:00
Commit Graph

173 Commits

Author SHA1 Message Date
ceec9636d2
Fix systemd-resolved restart ratelimiting
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-21 11:54:13 -07:00
36f9afbe98
Restart systemd-resolved before qubes-setup-dnat-to-ns
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-20 16:01:13 -07:00
e97a69d06a
Add StartLimitIntervalSec=0 to dnat-to-ns.service
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-20 13:34:03 -07:00
friendly-rabbit-35
9ef57f03e8
Fix more dead links on Desktop Linux Hardening page (#232)
* Fix dead links

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Remove outdated line about BT

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

---------

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-05-17 16:56:15 -07:00
spring-onion
41c314574f
Update banking app report 39, add 445 and 446 (#231) 2024-05-17 10:04:19 -07:00
121f5e3913
Fix IVPN for chaining ProxyVMs
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-17 02:32:12 -07:00
5bf6e2133e
Fix IVPN instructions
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 23:39:11 -07:00
8e140c3ac9
--now is not needed for Mullvad setup
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 23:36:46 -07:00
f70a162f66
Fix file name
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 19:27:44 -07:00
546c814e21
Using IVPN on Qubes OS (#230)
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 19:17:31 -07:00
6b8b46f455
More info on Qubes VPN Firewall handling
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 17:08:32 -07:00
friendly-rabbit-35
2a0f8344d7
Fix dead links on Desktop Linux Hardening page (#228)
* Make various grammar and wording changes for improved clarity
* Fix dead link
---------

Signed-off-by: friendly-rabbit-35 <chariot-barbed-0v@icloud.com>
Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 16:03:26 -07:00
5c422f217d
Stress that the Mullvad guide is for GNOME
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-12 04:58:16 -07:00
5cb4ad0ede
Use systemd path for dnat-to-ns (#227)
* Use systemd path for dnat-to-ns

Signed-off-by: Tommy <contact@tommytran.io>

* Make the flow better

Signed-off-by: Tommy <contact@tommytran.io>

---------

Signed-off-by: Tommy <contact@tommytran.io>
2024-05-12 04:43:07 -07:00
spring-onion
a96b20cea0
Update banking app 39, add 442 and 444 (#226) 2024-05-09 07:08:43 +00:00
365c717bc1
ChromeOS's Questionable Encryption (#222)
* ChromeOS's Questionable Encryption

Signed-off-by: Tommy <contact@tommytran.io>

* Add metadata

Signed-off-by: Tommy <contact@tommytran.io>

* Minor fixes

Signed-off-by: Tommy <contact@tommytran.io>

* Minor fix

Signed-off-by: Tommy <contact@tommytran.io>

* Update ChromeOS Questionable Encryption.md

Signed-off-by: Tommy <contact@tommytran.io>

* Update ChromeOS Questionable Encryption

* Fix link

* Edits

---------

Signed-off-by: Tommy <contact@tommytran.io>
Co-authored-by: wj25czxj47bu6q <git@wj25.xn--q9jyb4c>
Co-authored-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>
2024-04-25 22:32:31 -07:00
d2f1ab85ba
Add --nosocket=session-bus and --nosocket=system-bus
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-24 23:30:05 -07:00
spring-onion
bcba4cc4db
Add banking app report 440 (#225) 2024-04-24 22:33:55 -07:00
spring-onion
8178eadd48
Add banking app reports 432-436, 438 and 439, update names and sanitize links (#224) 2024-04-22 15:19:30 -07:00
xyhhx
4ef5e890de
fix(linux/Docker and OCI Hardening): correction on no_new_privs option (#223) 2024-04-19 02:49:30 +00:00
d824a1ccae
Instruction to disable XWayland
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-15 01:26:29 -07:00
0c2cc614d0
Rename MicroOS to Aeon
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-15 00:32:10 -07:00
Salim B
b93f2767b0
Fix typo (#220)
Signed-off-by: Salim B <git@salim.space>
2024-04-14 22:50:31 +00:00
fe158e7e04
Blacklist dconf dbus
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-13 22:16:41 -07:00
spring-onion
e003699f05
Add banking app reports 430 and 431, update 195 (#221) 2024-04-13 21:43:22 -07:00
81eb3f8dd0
Block org.gnome.Shell.Extensions
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-13 20:58:58 -07:00
spring-onion
8b85beeb27
Add banking app reports 425, 427-429 (#219) 2024-04-10 08:02:53 +00:00
spring-onion
e8c862b145
Update banking app report 382, add 424 (#218)
Update 382, add 424
2024-04-06 05:11:37 +00:00
2526628d64
Add --no-talk-name=org.freedesktop.systemd1
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-02 17:51:23 -07:00
07f018f614
Add --no-talk-name=org.freedesktop.Flatpak
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-02 17:04:05 -07:00
3468272e9d
Add noclientlog
Signed-off-by: Tommy <contact@tommytran.io>
2024-03-25 11:43:30 -07:00
4776c3e812
Update hardened malloc info (#216)
* Update hardened malloc info

Signed-off-by: Tommy <contact@tommytran.io>

* Add link

Signed-off-by: Tommy <contact@tommytran.io>

---------

Signed-off-by: Tommy <contact@tommytran.io>
2024-03-24 23:30:19 -07:00
2099c44cec
Fi VPN works on GrapheneOS now
Signed-off-by: Tommy <contact@tommytran.io>
2024-03-24 23:29:25 -07:00
spring-onion
a5106f6907
Add banking app reports 399, 404-409, 411 and 412 (#215) 2024-03-24 07:42:17 +00:00
spring-onion
d450ab906f
Add Peru and banking app reports 410, 413-417, 419-421, 423 (#217) 2024-03-24 05:57:36 +00:00
34bb760d13
Remove extra_latent_entropy
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-26 21:47:39 -07:00
akc3n
0f8ca4d10d
Add @spring-onion as co-maintainer credit and remove a nitter link (#213)
Add @spring-onion to author credit as maintainer
2024-02-18 08:36:11 +00:00
spring-onion
2e2616152d
Separate international and national banking apps, move 90 and 127 (#211) 2024-02-17 11:16:30 +00:00
spring-onion
40717510ca
Added China and banking app reports 393-395, 397, 398, 400-403 (#210) 2024-02-15 07:56:29 +00:00
846933379b
Update kernel args
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-09 19:47:36 -07:00
064f629d22
Update Butane URL
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-07 22:33:59 -07:00
samsepi0l
c6964ecb07
Update GrapheneOS link (#207) 2024-01-31 08:10:09 -07:00
spring-onion
23d3212693
Add Philippines, New Zealand, Colombia, banking app reports 381-392 (#206) 2024-01-28 08:02:41 +00:00
spring-onion
8058f71c22
Add banking app reports 374-378 and 380 (#205) 2024-01-18 20:40:13 +00:00
9cf68cc7a8
Add Fedora CoreOS butane file for mac NTS
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-16 02:34:21 -07:00
42c8545109
Stress that carrier tracking behavior differs per carrier/SoC
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-15 02:01:42 -07:00
d6a3a94287
Carrier tracking clarifications
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-15 01:48:25 -07:00
0ce2ac190d
Disable 32 bit emulation
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-15 01:24:49 -07:00
e5607c74c6
Update flatpak overrides
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-15 01:14:53 -07:00
c817cfc4da
Update flatpak override recommendation
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-11 01:53:58 -07:00