security-misc icon indicating copy to clipboard operation
security-misc copied to clipboard
verified publisher icon Kicksecure

review Brace to see if there are security settings which aren't part of security-misc (or Kicksecure yet)

Open adrelanos opened this issue 1 year ago • 1 comments

https://github.com/divestedcg/Brace

adrelanos avatar Oct 20 '24 08:10 adrelanos

Having looked through the setting that I am familiar with such as the boot parameters andsysctl, besides the PR above, there does not seem to be much actionable that we have not either already implemented, or implemented to a stricter level.

While there are some novel network-related sysctl that could be included, at this time I have not done enough due diligence to suggest them.

Boot parameters: https://github.com/divestedcg/Brace/blob/master/brace/etc/default/grub.d/brace.cfg

sysctl: https://github.com/divestedcg/Brace/blob/master/brace/usr/lib/sysctl.d/60-restrict.conf

raja-grewal avatar Nov 08 '24 04:11 raja-grewal