|
1ae4b28e20
|
Add module.sig_enforce=1 on RHEL
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-23 15:03:40 -07:00 |
|
|
521b58fdf8
|
Add special handling for Fedora on Parallels
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-23 14:59:58 -07:00 |
|
|
efd8e9c7cc
|
Block Flatpak system-bus and session-bus
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-23 14:29:57 -07:00 |
|
|
d0f99a0aba
|
Use lockdown=confidentiality for RHEL
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-19 14:58:11 -07:00 |
|
|
9b3bfbd5aa
|
Use lockdown=confidentiality for all desktop distros
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-19 14:57:27 -07:00 |
|
|
1e7bb87b8d
|
Change path to check for systemd
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-18 15:41:09 -07:00 |
|
|
dd1cf61a49
|
Change to using --ozone-platform=wayland
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-18 15:31:31 -07:00 |
|
|
02de9a0d7e
|
Add systemd-boot handling for Fedora
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-18 10:11:05 -07:00 |
|
|
ef60f9e7d8
|
Update script to Fedora 40 beta
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-18 08:31:52 -07:00 |
|
|
a71310508e
|
Override for org.gnome.Extensions
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-18 04:42:57 -07:00 |
|
|
476042087f
|
Enforce privacy settings
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-18 04:31:29 -07:00 |
|
|
fd54d28c4f
|
Add privacy configuration
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-18 04:07:16 -07:00 |
|
|
b37802c5f4
|
Disable autorun
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-18 03:52:13 -07:00 |
|
|
1ccbdd1a63
|
Typo Fix
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-18 03:17:00 -07:00 |
|
|
a1caf18e90
|
Add missing dnf upgrade
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-18 02:56:12 -07:00 |
|
|
ca3b57ba71
|
Make sure /usr/local/share/applications exists sand allow X11 if using Rosetta
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-17 20:26:13 -07:00 |
|
|
b741e44281
|
Force Edge to run in Wayland
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-15 01:41:23 -07:00 |
|
|
64516002af
|
URL fix
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-15 01:35:36 -07:00 |
|
|
0dcbd4d408
|
Disable XWayland on desktop distros except Kali
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-15 01:33:13 -07:00 |
|
|
ef33e52af4
|
Increase Fedora compression level to zstd 3
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-13 23:11:52 -07:00 |
|
|
9b3575d9a0
|
Blacklist dconf dbus
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-13 22:17:54 -07:00 |
|
|
416e6c3d80
|
Block org.gnome.Shell.Extensions dbus
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-13 18:50:49 -07:00 |
|
|
a490da1034
|
openSUSE Aeon
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-13 18:13:21 -07:00 |
|
|
e3eca62a40
|
Typo fix
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-13 17:58:02 -07:00 |
|
|
c21861c0d4
|
Remove msr
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-05 13:35:35 -07:00 |
|
|
3e0304a4b9
|
Add --no-talk-name=org.freedesktop.systemd1
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-02 17:53:04 -07:00 |
|
|
ab8395a91c
|
Deny org.freedesktop.Flatpak
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-04-02 16:39:13 -07:00 |
|
|
4fe3f49849
|
Typo fix
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-03-30 16:35:52 -07:00 |
|
|
9b9a465516
|
Disable unnecessary shellcheck
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-03-25 12:41:40 -07:00 |
|
|
c8c95d9501
|
Disable ptrace on Fedora
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-03-25 11:46:54 -07:00 |
|
|
18787512f0
|
Remove unnecessary line
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-03-22 14:41:32 -07:00 |
|
|
80bb7c00d8
|
Add ARM support for hardened_malloc on Red Hat systems
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-03-05 14:20:13 -07:00 |
|
|
8889adca80
|
Use default hardened_malloc variant on Red Hat systems
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-27 00:08:28 -07:00 |
|
|
8c362a9999
|
Fix amd_iommu and remove extra_latent_entropy
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-26 21:37:40 -07:00 |
|
|
7672345a89
|
Consistency fixes
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-13 17:16:33 -07:00 |
|
|
81f79f2616
|
Remove nullok on Red Hat systems
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-13 16:55:36 -07:00 |
|
|
53fb0c8d3f
|
Add /etc/issue.net banner
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-13 16:05:52 -07:00 |
|
|
6cdbe919f9
|
Split SSH hardening config
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-07 09:52:52 -07:00 |
|
|
0d7dc2817f
|
Split /etc/sysconfig/chronyd
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-07 08:46:06 -07:00 |
|
|
d0819bbcb1
|
Cleanup kernel args
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-07 06:39:00 -07:00 |
|
|
a041458351
|
Be more consistent with Proxmox
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-03 06:46:19 -07:00 |
|
|
a187c7fc46
|
Typo fix
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-03 06:18:58 -07:00 |
|
|
2c6cd3cd17
|
Remove sudo
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-01 02:09:40 -07:00 |
|
|
c479d1a5cb
|
Update after fixing repos
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-01 02:07:23 -07:00 |
|
|
77c3b23e3d
|
Sane apt upgrades
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-01-24 16:48:16 -07:00 |
|
|
0ce4a7b30e
|
RHEL script update
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-01-22 09:26:55 -07:00 |
|
|
79a0297a7b
|
Account for RHEL GUI installation
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-01-22 09:11:47 -07:00 |
|
|
5c7cedd512
|
Implement qemu-guest-agent
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-01-22 08:55:42 -07:00 |
|
|
effebda27a
|
Support UTM Rosetta
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-01-22 05:12:05 -07:00 |
|
|
8cb97dfeb9
|
Fix rosetta logic issues
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-01-22 04:22:35 -07:00 |
|