mirror of
https://github.com/tommytran732/Linux-Setup-Scripts
synced 2024-11-25 10:41:34 -05:00
Make sure home dirs are private
Signed-off-by: Tommy <contact@tommytran.io>
This commit is contained in:
parent
5aca397a76
commit
7fd8e73563
@ -26,6 +26,9 @@ unpriv(){
|
|||||||
sudo systemctl mask ctrl-alt-del.target
|
sudo systemctl mask ctrl-alt-del.target
|
||||||
sudo systemctl mask debug-shell.service
|
sudo systemctl mask debug-shell.service
|
||||||
|
|
||||||
|
# Make home directory private
|
||||||
|
chmod 700 /home/*
|
||||||
|
|
||||||
# Setup NTS
|
# Setup NTS
|
||||||
sudo rm -rf /etc/chrony/chrony.conf
|
sudo rm -rf /etc/chrony/chrony.conf
|
||||||
unpriv curl https://raw.githubusercontent.com/GrapheneOS/infrastructure/main/chrony.conf | sudo tee /etc/chrony/chrony.conf
|
unpriv curl https://raw.githubusercontent.com/GrapheneOS/infrastructure/main/chrony.conf | sudo tee /etc/chrony/chrony.conf
|
||||||
|
@ -28,6 +28,9 @@ unpriv(){
|
|||||||
sudo systemctl mask ctrl-alt-del.target
|
sudo systemctl mask ctrl-alt-del.target
|
||||||
sudo systemctl mask debug-shell.service
|
sudo systemctl mask debug-shell.service
|
||||||
|
|
||||||
|
# Make home directory private
|
||||||
|
chmod 700 /home/*
|
||||||
|
|
||||||
# Setup NTS
|
# Setup NTS
|
||||||
sudo curl https://raw.githubusercontent.com/GrapheneOS/infrastructure/main/chrony.conf -o /etc/chrony.conf
|
sudo curl https://raw.githubusercontent.com/GrapheneOS/infrastructure/main/chrony.conf -o /etc/chrony.conf
|
||||||
|
|
||||||
|
@ -36,6 +36,9 @@ sudo usg fix cis_level2_workstation
|
|||||||
sudo systemctl mask ctrl-alt-del.target
|
sudo systemctl mask ctrl-alt-del.target
|
||||||
sudo systemctl mask debug-shell.service
|
sudo systemctl mask debug-shell.service
|
||||||
|
|
||||||
|
# Make home directory private
|
||||||
|
chmod 700 /home/*
|
||||||
|
|
||||||
# Remove AIDE
|
# Remove AIDE
|
||||||
sudo apt purge -y aide*
|
sudo apt purge -y aide*
|
||||||
|
|
||||||
|
@ -36,6 +36,9 @@ sudo usg fix cis_level2_server
|
|||||||
sudo systemctl mask ctrl-alt-del.target
|
sudo systemctl mask ctrl-alt-del.target
|
||||||
sudo systemctl mask debug-shell.service
|
sudo systemctl mask debug-shell.service
|
||||||
|
|
||||||
|
# Make home directory private
|
||||||
|
chmod 700 /home/*
|
||||||
|
|
||||||
# Remove AIDE
|
# Remove AIDE
|
||||||
sudo apt purge -y aide*
|
sudo apt purge -y aide*
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user