Linux-Setup-Scripts

mirror of https://github.com/tommytran732/Linux-Setup-Scripts synced 2024-09-19 13:44:43 -04:00

Author	SHA1	Message	Date
Tommy	e04febb0fe	Add set -u Signed-off-by: Tommy <contact@tommytran.io>	2024-07-20 18:23:38 -07:00
Tommy	d434af04b4	Not overwrite USERGROUP_ENAB on anything but Ubuntu The nonsense with umask is introduced by Canonical's infinite wisdom: https://git.launchpad.net/ubuntu/+source/pam/tree/debian/patches/pam_umask_usergroups_from_login.defs.patch?h=ubuntu/noble https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=583958 We don't need to break sensible distributions because of Ubuntu nonsenses Signed-off-by: Tommy <contact@tommytran.io>	2024-07-09 15:07:40 -07:00
Tommy	fe4205fe45	Suppress curl output Signed-off-by: Tommy <contact@tommytran.io>	2024-07-03 02:23:28 -07:00
Tommy	0b25901b86	Add set -e Signed-off-by: Tommy <contact@tommytran.io>	2024-07-02 16:48:15 -07:00
Tommy	e3104f037f	POSIX Compliance Signed-off-by: Tommy <contact@tommytran.io>	2024-06-25 22:24:45 -07:00
Tommy	9fafe1704b	Comment out docker only unbound config Signed-off-by: Tommy <contact@tommytran.io>	2024-06-24 18:22:42 -07:00
Tommy	8d775f476f	Unbound for containers Signed-off-by: Tommy <contact@tommytran.io>	2024-06-21 15:20:41 -07:00
Tommy	46ea5f81bf	Remove real-ucode Signed-off-by: Tommy <contact@tommytran.io>	2024-06-09 05:34:13 -07:00
Tommy	533c8c3e73	Add new secureblue Hardened Malloc for RHEL Signed-off-by: Tommy <contact@tommytran.io>	2024-06-09 05:31:16 -07:00
Tommy	5c7a2850e6	RHEL needs tls cert bundle config Signed-off-by: Tommy <contact@tommytran.io>	2024-06-07 22:11:31 -07:00
Tommy	a0a21ba29d	Add missing sudo Signed-off-by: Tommy <contact@tommytran.io>	2024-06-07 21:29:56 -07:00
Tommy	517c1ed2dc	Fix real-ucode condition Signed-off-by: Tommy <contact@tommytran.io>	2024-06-07 21:20:30 -07:00
Tommy	da8b818d76	Typo fix Signed-off-by: Tommy <contact@tommytran.io>	2024-06-07 21:09:39 -07:00
Tommy	740b9d9af6	Comment out yara Signed-off-by: Tommy <contact@tommytran.io>	2024-06-07 20:41:02 -07:00
Tommy	80422768f1	SecureBlue hmalloc does not currently support RHEL Signed-off-by: Tommy <contact@tommytran.io>	2024-06-07 20:37:29 -07:00
Tommy	c61c69752f	Make sure chrony is installed on RHEL Signed-off-by: Tommy <contact@tommytran.io>	2024-06-07 20:30:02 -07:00
Tommy	e258f693dc	Use SecureBlue for HardenedMalloc Signed-off-by: Tommy <contact@tommytran.io>	2024-06-07 14:11:45 -07:00
Tommy	55085948db	Ensure file permissions on Proxmox and RHEL	2024-06-05 21:46:24 -07:00
Tommy	2ff48df2d1	Typo fixes Signed-off-by: Tommy <contact@tommytran.io>	2024-06-04 14:29:50 -07:00
Tommy	88918cf7dc	Use SecureBlue and custom configs whenever possible Signed-off-by: Tommy <contact@tommytran.io>	2024-06-04 05:33:52 -07:00
Tommy	db4a82be7e	Better regex for kernel module blacklist Signed-off-by: Tommy <contact@tommytran.io>	2024-05-31 13:46:59 -07:00
Tommy	8087457cb0	Add escape for regex Signed-off-by: Tommy <contact@tommytran.io>	2024-05-31 13:34:48 -07:00
Tommy	90bebe1665	Better regex Signed-off-by: Tommy <contact@tommytran.io>	2024-05-31 13:19:20 -07:00
Tommy	4b9ae05218	Even better regex Signed-off-by: Tommy <contact@tommytran.io>	2024-05-31 02:33:02 -07:00
Tommy	5bc20644e6	Better regex Signed-off-by: Tommy <contact@tommytran.io>	2024-05-31 02:27:28 -07:00
Tommy	0c892f019b	Consistency fix Signed-off-by: Tommy <contact@tommytran.io>	2024-05-29 17:48:45 -07:00
Tommy	b32330c79d	Re-add irqbalance hardening on RHEL 9 Signed-off-by: Tommy <contact@tommytran.io>	2024-05-29 17:23:29 -07:00
Tommy	3cd2cf7215	Add notes for unbound on RHEL Signed-off-by: Tommy <contact@tommytran.io>	2024-05-29 17:11:34 -07:00
Tommy	5956eb9095	Install dnf-automatic Signed-off-by: Tommy <contact@tommytran.io>	2024-05-29 16:05:07 -07:00
Tommy	b0cb3d2788	Keep RHEL 9 and F40 scripts in sync Signed-off-by: Tommy <contact@tommytran.io>	2024-05-29 16:00:50 -07:00
Tommy	c2c57e5393	Update kernel hardening params Signed-off-by: Tommy <contact@tommytran.io>	2024-05-27 10:22:47 -07:00
Tommy	2f5a5ab10a	Add RHEL 9 Signed-off-by: Tommy <contact@tommytran.io>	2024-05-03 16:48:16 -07:00

32 Commits