1
0
mirror of https://github.com/PrivSec-dev/privsec.dev synced 2024-12-23 13:21:34 -05:00
Commit Graph

222 Commits

Author SHA1 Message Date
36f9afbe98
Restart systemd-resolved before qubes-setup-dnat-to-ns
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-20 16:01:13 -07:00
e97a69d06a
Add StartLimitIntervalSec=0 to dnat-to-ns.service
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-20 13:34:03 -07:00
friendly-rabbit-35
9ef57f03e8
Fix more dead links on Desktop Linux Hardening page (#232)
* Fix dead links

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

* Remove outdated line about BT

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>

---------

Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
2024-05-17 16:56:15 -07:00
spring-onion
41c314574f
Update banking app report 39, add 445 and 446 (#231) 2024-05-17 10:04:19 -07:00
121f5e3913
Fix IVPN for chaining ProxyVMs
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-17 02:32:12 -07:00
5bf6e2133e
Fix IVPN instructions
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 23:39:11 -07:00
8e140c3ac9
--now is not needed for Mullvad setup
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 23:36:46 -07:00
f70a162f66
Fix file name
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 19:27:44 -07:00
546c814e21
Using IVPN on Qubes OS (#230)
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 19:17:31 -07:00
6b8b46f455
More info on Qubes VPN Firewall handling
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 17:08:32 -07:00
friendly-rabbit-35
2a0f8344d7
Fix dead links on Desktop Linux Hardening page (#228)
* Make various grammar and wording changes for improved clarity
* Fix dead link
---------

Signed-off-by: friendly-rabbit-35 <chariot-barbed-0v@icloud.com>
Signed-off-by: friendly-rabbit-35 <169707731+friendly-rabbit-35@users.noreply.github.com>
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-16 16:03:26 -07:00
5c422f217d
Stress that the Mullvad guide is for GNOME
Signed-off-by: Tommy <contact@tommytran.io>
2024-05-12 04:58:16 -07:00
5cb4ad0ede
Use systemd path for dnat-to-ns (#227)
* Use systemd path for dnat-to-ns

Signed-off-by: Tommy <contact@tommytran.io>

* Make the flow better

Signed-off-by: Tommy <contact@tommytran.io>

---------

Signed-off-by: Tommy <contact@tommytran.io>
2024-05-12 04:43:07 -07:00
spring-onion
a96b20cea0
Update banking app 39, add 442 and 444 (#226) 2024-05-09 07:08:43 +00:00
365c717bc1
ChromeOS's Questionable Encryption (#222)
* ChromeOS's Questionable Encryption

Signed-off-by: Tommy <contact@tommytran.io>

* Add metadata

Signed-off-by: Tommy <contact@tommytran.io>

* Minor fixes

Signed-off-by: Tommy <contact@tommytran.io>

* Minor fix

Signed-off-by: Tommy <contact@tommytran.io>

* Update ChromeOS Questionable Encryption.md

Signed-off-by: Tommy <contact@tommytran.io>

* Update ChromeOS Questionable Encryption

* Fix link

* Edits

---------

Signed-off-by: Tommy <contact@tommytran.io>
Co-authored-by: wj25czxj47bu6q <git@wj25.xn--q9jyb4c>
Co-authored-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>
2024-04-25 22:32:31 -07:00
d2f1ab85ba
Add --nosocket=session-bus and --nosocket=system-bus
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-24 23:30:05 -07:00
spring-onion
bcba4cc4db
Add banking app report 440 (#225) 2024-04-24 22:33:55 -07:00
spring-onion
8178eadd48
Add banking app reports 432-436, 438 and 439, update names and sanitize links (#224) 2024-04-22 15:19:30 -07:00
xyhhx
4ef5e890de
fix(linux/Docker and OCI Hardening): correction on no_new_privs option (#223) 2024-04-19 02:49:30 +00:00
d824a1ccae
Instruction to disable XWayland
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-15 01:26:29 -07:00
0c2cc614d0
Rename MicroOS to Aeon
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-15 00:32:10 -07:00
Salim B
b93f2767b0
Fix typo (#220)
Signed-off-by: Salim B <git@salim.space>
2024-04-14 22:50:31 +00:00
fe158e7e04
Blacklist dconf dbus
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-13 22:16:41 -07:00
spring-onion
e003699f05
Add banking app reports 430 and 431, update 195 (#221) 2024-04-13 21:43:22 -07:00
81eb3f8dd0
Block org.gnome.Shell.Extensions
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-13 20:58:58 -07:00
spring-onion
8b85beeb27
Add banking app reports 425, 427-429 (#219) 2024-04-10 08:02:53 +00:00
spring-onion
e8c862b145
Update banking app report 382, add 424 (#218)
Update 382, add 424
2024-04-06 05:11:37 +00:00
2526628d64
Add --no-talk-name=org.freedesktop.systemd1
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-02 17:51:23 -07:00
07f018f614
Add --no-talk-name=org.freedesktop.Flatpak
Signed-off-by: Tommy <contact@tommytran.io>
2024-04-02 17:04:05 -07:00
3468272e9d
Add noclientlog
Signed-off-by: Tommy <contact@tommytran.io>
2024-03-25 11:43:30 -07:00
4776c3e812
Update hardened malloc info (#216)
* Update hardened malloc info

Signed-off-by: Tommy <contact@tommytran.io>

* Add link

Signed-off-by: Tommy <contact@tommytran.io>

---------

Signed-off-by: Tommy <contact@tommytran.io>
2024-03-24 23:30:19 -07:00
2099c44cec
Fi VPN works on GrapheneOS now
Signed-off-by: Tommy <contact@tommytran.io>
2024-03-24 23:29:25 -07:00
spring-onion
a5106f6907
Add banking app reports 399, 404-409, 411 and 412 (#215) 2024-03-24 07:42:17 +00:00
spring-onion
d450ab906f
Add Peru and banking app reports 410, 413-417, 419-421, 423 (#217) 2024-03-24 05:57:36 +00:00
34bb760d13
Remove extra_latent_entropy
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-26 21:47:39 -07:00
akc3n
0f8ca4d10d
Add @spring-onion as co-maintainer credit and remove a nitter link (#213)
Add @spring-onion to author credit as maintainer
2024-02-18 08:36:11 +00:00
spring-onion
2e2616152d
Separate international and national banking apps, move 90 and 127 (#211) 2024-02-17 11:16:30 +00:00
spring-onion
40717510ca
Added China and banking app reports 393-395, 397, 398, 400-403 (#210) 2024-02-15 07:56:29 +00:00
846933379b
Update kernel args
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-09 19:47:36 -07:00
064f629d22
Update Butane URL
Signed-off-by: Tommy <contact@tommytran.io>
2024-02-07 22:33:59 -07:00
samsepi0l
c6964ecb07
Update GrapheneOS link (#207) 2024-01-31 08:10:09 -07:00
spring-onion
23d3212693
Add Philippines, New Zealand, Colombia, banking app reports 381-392 (#206) 2024-01-28 08:02:41 +00:00
spring-onion
8058f71c22
Add banking app reports 374-378 and 380 (#205) 2024-01-18 20:40:13 +00:00
9cf68cc7a8
Add Fedora CoreOS butane file for mac NTS
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-16 02:34:21 -07:00
42c8545109
Stress that carrier tracking behavior differs per carrier/SoC
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-15 02:01:42 -07:00
d6a3a94287
Carrier tracking clarifications
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-15 01:48:25 -07:00
0ce2ac190d
Disable 32 bit emulation
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-15 01:24:49 -07:00
e5607c74c6
Update flatpak overrides
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-15 01:14:53 -07:00
c817cfc4da
Update flatpak override recommendation
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-11 01:53:58 -07:00
891bb0eaf6
Stop recommending Sway
Signed-off-by: Tommy <contact@tommytran.io>
2024-01-11 01:37:59 -07:00
akc3n
0a90d5045a
Fix typo (#201)
Fix typos
2024-01-08 15:46:21 +00:00
spring-onion
f57a485008
Overhaul old banking app reports, page 1 and 2 (#200)
Overhaul old reports, page 1 and 2
2024-01-08 15:45:38 +00:00
spring-onion
6dd5b146b6
Add Croatia and banking app reports 359, 369, 370, 371 and 373 (#197) 2023-12-30 23:06:32 -07:00
eennoo
bde088eb81
Add banking report #368 (#195)
* Add banking report #368

Signed-off-by: eennoo <53978854+eennoo@users.noreply.github.com>

* Minor edit

Signed-off-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>

---------

Signed-off-by: eennoo <53978854+eennoo@users.noreply.github.com>
Signed-off-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>
Co-authored-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>
2023-12-25 02:22:17 +00:00
spring-onion
4e12601d6a
Add banking app reports 366 and 367 (#194) 2023-12-21 01:43:14 +00:00
akc3n
cb3e04cf4a
Add banking app reports 360-365 and update some sections (#193) 2023-12-18 04:39:49 +00:00
spring-onion
95877b5c64
Update banking app report 265 (#192) 2023-12-18 04:39:12 +00:00
spring-onion
ea2c86eb6c
Add Bulgaria and banking app reports 348, 349, 352-358, update 326 (#191) 2023-12-17 02:13:33 +00:00
samsepi0l
f1ddd0b892
Fix typos (#188) 2023-12-10 01:18:15 +00:00
spring-onion
416227864c
Update banking app reports 265 and 309, add 343, 344, 345 and 347 (#187) 2023-12-07 14:49:58 -07:00
7c5c2081e1
Fix IOMMU kernel param
Signed-off-by: Tommy <contact@tommytran.io>
2023-12-05 16:36:50 -07:00
spring-onion
5eba54b16a
Add banking app reports 334 and 336-341 (#186) 2023-12-01 22:02:42 +00:00
spring-onion
01665249c8
Add banking app reports 332,333 and 335 (#183) 2023-12-01 22:01:50 +00:00
jermanuts
c3658917f1
Typo in Badness Enumeration (#185)
Signed-off-by: jermanuts <109705802+jermanuts@users.noreply.github.com>
2023-11-28 13:52:32 -07:00
akc3n
d066234e55
Update gist and possible solutions links. (#182)
Update gist links in the submit report section. Update links for possible work around solutions.
2023-11-23 08:58:49 +00:00
spring-onion
69467b6c5f
Update banking app report 53 (#181) 2023-11-21 16:00:32 +00:00
spring-onion
ec2b180e86
Update banking app report 243 (#180) 2023-11-18 01:14:14 +00:00
4d2d5f4085
Update carrier shenanigans information and remove inaccurate information (#171)
Co-authored-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>
Signed-off-by: Tommy <contact@tommytran.io>
2023-11-15 15:55:36 -07:00
spring-onion
c07e01158c
Add Slovakia and banking app reports 325-329 (#179) 2023-11-14 15:35:01 +00:00
a42cf97e5e
Replace Pixel 6 series with Pixel 8 series
Signed-off-by: Tommy <contact@tommytran.io>
2023-11-10 16:25:22 -07:00
82a9a6094e
Remove bluetooth kernel module
Signed-off-by: Tommy <contact@tommytran.io>
2023-11-10 16:23:19 -07:00
spring-onion
7c684b2f21
Add banking app report 324 (#178) 2023-11-10 13:38:05 -07:00
spring-onion
1a87700641
Add banking app reports 321-323 (#175)
Add banking reports 321-323
2023-11-09 05:15:29 +00:00
ece5edb4d3
Update Mailcow permission policy
Signed-off-by: Tommy <contact@tommytran.io>
2023-11-07 01:07:30 -07:00
spring-onion
647c8905ea
Add banking app report 320 (#173) 2023-11-06 05:57:54 +00:00
akc3n
acef75209f
Add banking app reports 310, 312-316 (#172) 2023-11-05 05:23:22 +00:00
samsepi0l
81e23bfbb7
Fix typos (#168)
* Update Android Tips.md

Signed-off-by: samsepi0l <contact@simpleprivacy.fr>

---------

Signed-off-by: samsepi0l <contact@simpleprivacy.fr>
Co-authored-by: Tommy <contact@tommytran.io>
Co-authored-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>
2023-10-21 22:22:18 -07:00
akc3n
82e00d239e
Add banking reports 303-307, 309-311, update 127 (#169)
Add banking reports 303-307, 309-311
2023-10-21 18:18:09 -07:00
akc3n
72b90196f6
Banking Apps: Fix minor details (#167)
A lot of fixes
2023-10-06 21:00:23 +00:00
akc3n
04728f362b
Fix incorrect country listing of bank report for Revolut (#166)
Fix incorrect country listing of bank report for Revolut mentioned in https://github.com/PrivSec-dev/banking-apps-compat-report/issues/291#issuecomment-1743485874
2023-10-05 04:06:20 +00:00
akc3n
7118b541c3
Add banking report 300 301 302 (#165)
Add banking app reports 300-301-302
2023-10-02 00:16:05 +00:00
akc3n
441eeb9248 Add correction issue from 299 2023-10-01 17:12:40 -07:00
599b8317f2
Wording fix (#162)
* Wording fix

Signed-off-by: Tommy <contact@tommytran.io>
Co-authored-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>
2023-09-28 05:39:50 -07:00
akc3n
76c80e1cc2
Fix link and typo in the Ecuador section (#161) 2023-09-26 23:44:51 -07:00
473bba3df3
Fix Firewalld bypass (#156)
* Update Desktop Linux Hardening.md

Co-authored-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>
Signed-off-by: Tommy <contact@tommytran.io>

---------

Signed-off-by: Tommy <contact@tommytran.io>
Co-authored-by: wj25czxj47bu6q <96372288+wj25czxj47bu6q@users.noreply.github.com>
2023-09-26 23:18:52 -07:00
akc3n
cc3b44f17c
Add banking report 293 296 298 (#160)
* Update gist urls for non-github user banking app reports

* Fixed url for metro banking app.

* Add banking report 293, 296 and 298
2023-09-26 23:15:58 -07:00
akc3n
85e7d4426b
Add report Issue's 212 to 291 (#155) 2023-09-25 12:39:26 -07:00
c162d22c35
Disable gzip compression for mailcow
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-08-25 15:28:59 -07:00
950bf8ee1d
Pronoun fix
Signed-off-by: Tommy <contact@tommytran.io>
2023-08-16 06:10:34 -07:00
55e7b2fe58
Syntax fixes
Signed-off-by: Tommy <contact@tommytran.io>
2023-08-16 06:05:34 -07:00
8131129099
Mention Ubuntu Pro (#149)
Update Desktop Linux Hardening.md

Signed-off-by: Tommy <contact@tommytran.io>
2023-08-16 06:04:49 -07:00
b58a5decf8
Create a timesync cron job on macOS
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-08-16 04:43:35 -07:00
e14fb3e05a
Consistency fix
Signed-off-by: Tommy <contact@tommytran.io>
2023-08-16 04:12:33 -07:00
0f9f94d2ce
Add upgrade-insecure-requests; 2023-08-15 17:09:44 -07:00
f8fea8190a
Clarify the location of Chrony's EnvironmentFile
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-08-08 21:26:01 -07:00
90dce6a30b
Update Chrony configurations 2023-08-08 21:08:20 -07:00
0cad31f58d
MTA-STS (#147)
Signed-off-by: Thien Tran <contact@tommytran.io>
2023-08-05 20:17:48 -07:00
7226a9c72f
Update file path for Proxmox 8 2023-07-26 15:00:38 -07:00
901bb89f66
Mention that /etc/apt/sources.list.d/* should be 644 (#138)
* Update Desktop Linux Hardening.md

Signed-off-by: Tommy <contact@tommytran.io>
2023-06-30 03:32:49 -07:00
f9ee3ccced
Remove unnecessary setting
Signed-off-by: Tommy <contact@tommytran.io>
2023-06-26 06:36:25 -07:00