Tomster/Linux-Setup-Scripts
1
0
Fork 0
mirror of https://github.com/tommytran732/Linux-Setup-Scripts synced 2024-11-04 17:21:33 -05:00
Code
711 Commits 1 Branch 0 Tags 2.9 MiB
723278da21
Commit Graph

33 Commits

Author SHA1 Message Date
Tommy
d96f5a70da
Update modprobe url and bug fixes 2024-07-26 04:59:01 -07:00
Tommy
e04febb0fe
Add set -u 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-07-20 18:23:38 -07:00
Tommy
d434af04b4
Not overwrite USERGROUP_ENAB on anything but Ubuntu 
The nonsense with umask is introduced by Canonical's infinite wisdom: https://git.launchpad.net/ubuntu/+source/pam/tree/debian/patches/pam_umask_usergroups_from_login.defs.patch?h=ubuntu/noble
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=583958
We don't need to break sensible distributions because of Ubuntu nonsenses

Signed-off-by: Tommy <contact@tommytran.io>
 2024-07-09 15:07:40 -07:00
Tommy
fe4205fe45
Suppress curl output 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-07-03 02:23:28 -07:00
Tommy
0b25901b86
Add set -e 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-07-02 16:48:15 -07:00
Tommy
e3104f037f
POSIX Compliance 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-25 22:24:45 -07:00
Tommy
9fafe1704b
Comment out docker only unbound config 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-24 18:22:42 -07:00
Tommy
8d775f476f
Unbound for containers 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-21 15:20:41 -07:00
Tommy
46ea5f81bf
Remove real-ucode 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-09 05:34:13 -07:00
Tommy
533c8c3e73
Add new secureblue Hardened Malloc for RHEL 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-09 05:31:16 -07:00
Tommy
5c7a2850e6
RHEL needs tls cert bundle config 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-07 22:11:31 -07:00
Tommy
a0a21ba29d
Add missing sudo 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-07 21:29:56 -07:00
Tommy
517c1ed2dc
Fix real-ucode condition 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-07 21:20:30 -07:00
Tommy
da8b818d76
Typo fix 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-07 21:09:39 -07:00
Tommy
740b9d9af6
Comment out yara 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-07 20:41:02 -07:00
Tommy
80422768f1
SecureBlue hmalloc does not currently support RHEL 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-07 20:37:29 -07:00
Tommy
c61c69752f
Make sure chrony is installed on RHEL 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-07 20:30:02 -07:00
Tommy
e258f693dc
Use SecureBlue for HardenedMalloc 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-07 14:11:45 -07:00
Tommy
55085948db
Ensure file permissions on Proxmox and RHEL 2024-06-05 21:46:24 -07:00
Tommy
2ff48df2d1
Typo fixes 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-04 14:29:50 -07:00
Tommy
88918cf7dc
Use SecureBlue and custom configs whenever possible 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-04 05:33:52 -07:00
Tommy
db4a82be7e
Better regex for kernel module blacklist 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-31 13:46:59 -07:00
Tommy
8087457cb0
Add escape for regex 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-31 13:34:48 -07:00
Tommy
90bebe1665
Better regex 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-31 13:19:20 -07:00
Tommy
4b9ae05218
Even better regex 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-31 02:33:02 -07:00
Tommy
5bc20644e6
Better regex 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-31 02:27:28 -07:00
Tommy
0c892f019b
Consistency fix 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-29 17:48:45 -07:00
Tommy
b32330c79d
Re-add irqbalance hardening on RHEL 9 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-29 17:23:29 -07:00
Tommy
3cd2cf7215
Add notes for unbound on RHEL 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-29 17:11:34 -07:00
Tommy
5956eb9095
Install dnf-automatic 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-29 16:05:07 -07:00
Tommy
b0cb3d2788
Keep RHEL 9 and F40 scripts in sync 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-29 16:00:50 -07:00
Tommy
c2c57e5393
Update kernel hardening params 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-27 10:22:47 -07:00
Tommy
2f5a5ab10a
Add RHEL 9 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-03 16:48:16 -07:00