|
70f007a264
|
More hardening options
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-07-01 12:57:20 -07:00 |
|
|
55db69f9e2
|
Update SSH Hardening
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-07-01 12:36:36 -07:00 |
|
|
563101601e
|
Use upstream certbot-ocsp-fetcher
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-30 12:47:13 -07:00 |
|
|
aaa26ae2b9
|
FIx Drupal security headers
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 21:01:57 -07:00 |
|
|
71eff3c907
|
Fix permissions
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 17:27:19 -07:00 |
|
|
3c8d0df520
|
Add more instructions
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 17:18:35 -07:00 |
|
|
dcdad473bf
|
Cleanup instructions
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 16:11:09 -07:00 |
|
|
6c5b398620
|
Bug fixes & instructions for Drupal
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 15:27:01 -07:00 |
|
|
87c18d4de2
|
Add cross-origin-security
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 12:25:13 -07:00 |
|
|
9835d65dde
|
Remove old comment
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 12:13:26 -07:00 |
|
|
c2ef5743a2
|
Improve unbound systemd hardening
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 12:12:54 -07:00 |
|
|
af99058f4e
|
Fix incorrect file permissions
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 11:26:30 -07:00 |
|
|
359d9a5fc1
|
Manual installation of mariadb-client not required
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 11:01:11 -07:00 |
|
|
1467625dbf
|
Typo fix
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 10:57:40 -07:00 |
|
|
4651135596
|
Add missing sudo
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 10:50:32 -07:00 |
|
|
afe921fd0c
|
Typo Fix
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 10:28:27 -07:00 |
|
|
67e2496435
|
Make sure snap is installed
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 10:07:45 -07:00 |
|
|
3ff024e21b
|
Make sample script also POSIX compliant
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-26 00:12:29 -07:00 |
|
|
e3104f037f
|
POSIX Compliance
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-25 22:24:45 -07:00 |
|
|
a49ecc7dd5
|
Make sure NGINX works
|
2024-06-24 23:57:20 -07:00 |
|
|
d0b40688a9
|
Trim down configs
|
2024-06-24 23:37:41 -07:00 |
|
|
e0d297afa7
|
Add more .sources samples
|
2024-06-24 23:35:41 -07:00 |
|
|
baeaf3a01d
|
Port NGINX configs
|
2024-06-24 23:23:41 -07:00 |
|
|
deb4cf4ce7
|
Use snap certbot
|
2024-06-24 23:12:53 -07:00 |
|
|
ba4f51674a
|
Add MariaDB
|
2024-06-24 23:06:38 -07:00 |
|
|
00c53f3ee8
|
Initial code for Ubuntu LEMP stack
|
2024-06-24 22:38:51 -07:00 |
|
|
80641009b9
|
Fix Unbound for Ubuntu
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-24 22:07:02 -07:00 |
|
|
6486ea474a
|
Add mainline NGINX source file for Ubuntu
|
2024-06-24 20:55:35 -07:00 |
|
|
3cbb95a403
|
Comment out unbound section
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-24 18:33:17 -07:00 |
|
|
3a26940fb6
|
Fix permission issue
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-24 18:29:04 -07:00 |
|
|
9fafe1704b
|
Comment out docker only unbound config
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-24 18:22:42 -07:00 |
|
|
8d775f476f
|
Unbound for containers
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-21 15:20:41 -07:00 |
|
|
6fa3abe492
|
Work around Debian's very broken paclaging
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-18 00:07:40 -07:00 |
|
|
37a66b8b12
|
Add -y to ufw enable
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-17 23:39:25 -07:00 |
|
|
6c1de621c5
|
Daily update for GitHub actions
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-15 15:03:08 -07:00 |
|
|
3aadb5455f
|
Consistency fix
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-09 20:37:50 -07:00 |
|
|
babba9de39
|
Fix Edge policies permissions
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-09 20:33:40 -07:00 |
|
|
46ea5f81bf
|
Remove real-ucode
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-09 05:34:13 -07:00 |
|
|
533c8c3e73
|
Add new secureblue Hardened Malloc for RHEL
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-09 05:31:16 -07:00 |
|
|
5c7a2850e6
|
RHEL needs tls cert bundle config
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-07 22:11:31 -07:00 |
|
|
a0a21ba29d
|
Add missing sudo
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-07 21:29:56 -07:00 |
|
|
517c1ed2dc
|
Fix real-ucode condition
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-07 21:20:30 -07:00 |
|
|
da8b818d76
|
Typo fix
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-07 21:09:39 -07:00 |
|
|
740b9d9af6
|
Comment out yara
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-07 20:41:02 -07:00 |
|
|
80422768f1
|
SecureBlue hmalloc does not currently support RHEL
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-07 20:37:29 -07:00 |
|
|
c61c69752f
|
Make sure chrony is installed on RHEL
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-07 20:30:02 -07:00 |
|
|
e258f693dc
|
Use SecureBlue for HardenedMalloc
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-07 14:11:45 -07:00 |
|
|
68b50f15be
|
Consistency fix for comments
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-06-06 22:44:25 -07:00 |
|
|
afb3f0e98a
|
Typo fix
|
2024-06-06 21:59:38 -07:00 |
|
|
4514fe279a
|
Add preload file for hmalloc
|
2024-06-06 21:58:28 -07:00 |
|