|
|
8c362a9999
|
Fix amd_iommu and remove extra_latent_entropy
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-26 21:37:40 -07:00 |
|
|
|
7672345a89
|
Consistency fixes
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-13 17:16:33 -07:00 |
|
|
|
6cdbe919f9
|
Split SSH hardening config
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-07 09:52:52 -07:00 |
|
|
|
d0819bbcb1
|
Cleanup kernel args
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-02-07 06:39:00 -07:00 |
|
|
|
77c3b23e3d
|
Sane apt upgrades
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-01-24 16:48:16 -07:00 |
|
|
|
1e0d6d3a3c
|
Update grub hardening
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-01-21 01:23:50 -07:00 |
|
|
|
b19562c65d
|
Update copyright year
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-01-20 01:09:48 -07:00 |
|
|
|
fb62de7ddc
|
Disable bluetooth on servers
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-01-15 05:49:11 -07:00 |
|
|
|
c4032b2cae
|
Improve consistency
Signed-off-by: Tommy <contact@tommytran.io>
|
2024-01-03 17:39:59 -07:00 |
|
|
|
3a48c54ead
|
Remove theatre
|
2024-01-02 01:38:34 -07:00 |
|
|
|
34ca17f672
|
Fix chmod 700 /home/*
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-12-31 14:40:36 -07:00 |
|
|
|
da03396370
|
Bug fixes
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-12-13 11:24:46 -07:00 |
|
|
|
9c942cf89e
|
CtrlAltDelBurstAction=none
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-12-12 01:20:52 -07:00 |
|
|
|
7fd8e73563
|
Make sure home dirs are private
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-12-07 17:26:53 -07:00 |
|
|
|
5aca397a76
|
Compliance update
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-12-07 17:15:05 -07:00 |
|
|
|
6a6b775631
|
Disable ctrl-alt-del
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-12-07 16:44:55 -07:00 |
|
|
|
e8aec0c4e8
|
Update styling
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-12-06 13:47:53 -07:00 |
|
|
|
63b63e8129
|
Shellcheck fixes
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-12-04 16:17:55 -07:00 |
|
|
|
5b73cf5caa
|
Consistency fixes
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-12-02 05:05:02 -07:00 |
|
|
|
8538648088
|
(Mostly) unprivileged curl
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-12-02 04:56:58 -07:00 |
|
|
|
0a43002047
|
curl | sudo tee
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-12-01 23:04:02 -07:00 |
|
|
|
0f7021b528
|
Fancy blue output highlighting
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-12-01 19:54:20 -07:00 |
|
Guru
|
fd7ea92744
|
rename 990_security-misc.conf -> 990-security-misc.conf (#9)
|
2023-11-15 14:12:25 -07:00 |
|
|
|
6c92727673
|
Update sysctl security-misc.conf path
|
2023-10-31 09:16:46 -07:00 |
|
|
|
ace0829999
|
Update Kicksecure sysctl config location
|
2023-10-31 09:02:33 -07:00 |
|
|
|
53340db0ea
|
Update SSH hardening
|
2023-10-10 12:23:50 -07:00 |
|
|
|
08f4d5ed11
|
Add Apache license header
|
2023-09-27 00:56:28 -07:00 |
|
|
|
d8a7235a8a
|
Rebuild initramfs
|
2023-09-26 23:03:35 -07:00 |
|
|
|
e0d02f1c72
|
Update SSH Hardening
|
2023-09-22 15:09:36 -07:00 |
|
|
|
ff6e6a57e9
|
Fix ssh hardening
|
2023-09-07 15:27:02 -07:00 |
|
|
|
92b639fe9e
|
Change sshd override
|
2023-09-07 14:44:00 -07:00 |
|
|
|
0880786054
|
Allow openssh instead of 22/tcp on Debian systems
|
2023-08-22 17:51:33 -07:00 |
|
|
|
85ada77f4c
|
Consistency fix
|
2023-08-22 17:46:56 -07:00 |
|
|
|
8ae830a175
|
Improved consistency across distros
|
2023-08-16 03:22:28 -07:00 |
|
|
|
4255f21366
|
Better unbound configuration for Debian
|
2023-08-07 00:25:06 -07:00 |
|
|
|
6df908ae81
|
Unbound for Ubuntu
|
2023-07-31 01:34:49 -07:00 |
|
|
|
e239821b65
|
Fix trust anchor permission
|
2023-07-31 01:24:06 -07:00 |
|
|
|
895cbfda49
|
Reload systemd
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-07-29 07:38:51 -07:00 |
|
|
|
0f09f6b5c3
|
Fix unbound config
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-07-29 07:37:17 -07:00 |
|
|
|
88bcc610a9
|
Use 1.1.1.2 for badness enumeration
|
2023-07-27 18:33:18 -07:00 |
|
|
|
d43598710f
|
Enable fstrim.timer
|
2023-07-07 02:41:36 -07:00 |
|
|
|
1d15c26865
|
Change to Cloudflare DNS
Signed-off-by: Thien Tran <contact@tommytran.io>
|
2023-06-25 17:14:10 -07:00 |
|
|
|
40fcdc01c5
|
Fix /etc/ssh/ssh_config.d/10-custom.conf permission
|
2023-06-25 03:11:43 -07:00 |
|
|
|
aa22bd45a7
|
Allow ICMP on servers
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-03-20 14:39:50 -04:00 |
|
|
|
84f93db507
|
Update GCP-Debian-11.sh
Setup ufw
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-03-17 13:10:02 -04:00 |
|
|
|
f9950ef89f
|
Remove unnecessary outgoing-port-avoid
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-03-14 11:55:34 -04:00 |
|
|
|
98cd78a8b9
|
Remove do-not-query-localhost
|
2023-03-11 00:52:20 -05:00 |
|
|
|
7b4a86a531
|
Update GCP-Debian-11.sh
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-03-10 23:50:27 -05:00 |
|
|
|
037022c6d2
|
Update kicksecure sysctl
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-02-04 05:21:33 -05:00 |
|
|
|
7448b986f8
|
Add unbound systemd hardening
Signed-off-by: Tommy <contact@tommytran.io>
|
2023-01-25 08:17:29 -05:00 |
|
