kconfig-hardened-check issues

Results 53 kconfig-hardened-check issues

Sort by recently updated

2 Checks Recommended by Timesys Hardening Guide CONFIG_DEBUG_BUGVERBOSE & CONFIG_ZSMALLOC

Found here: https://timesys.com/pdf/Timesys-kernel-hardening-guide.pdf Dated 2022 https://web.archive.org/web/20241227042743/https://timesys.com/pdf/Timesys-kernel-hardening-guide.pdf This seems useful for the project: `DEBUG_BUGVERBOSE=is not set` > Make sure this is not enabled, as it could provide an attacker > sensitive...

wryMitts

question

new_check

More Kernel command-line checks

- `intel_iommu=on` - pass if value is `on` - pass if `CONFIG_INTEL_IOMMU_DEFAULT_ON` is `y` - skip if non-intel? - fail otherwise - `lockdown=confidentiality` - pass if value is `confidentiality` -...

rusty-snake

good_first_issue

new_check

proc mem force

Linux 6.12 added proc mem force, see https://lwn.net/Articles/983169/ - Kconfig: `CONFIG_PROC_MEM_NO_FORCE=y` - command-line: `proc_mem.force_override=never` or - Kconfig: `CONFIG_PROC_MEM_FORCE_PTRACE=y` - command-line: `proc_mem.force_override=ptrace`

rusty-snake

good_first_issue

new_check

kconfig-hardened-check
kconfig-hardened-check copied to clipboard

Metadata

2 Checks Recommended by Timesys Hardening Guide CONFIG_DEBUG_BUGVERBOSE & CONFIG_ZSMALLOC

More Kernel command-line checks

proc mem force

← Metadata

Owner

Metadata

kconfig-hardened-check kconfig-hardened-check copied to clipboard

Metadata

2 Checks Recommended by Timesys Hardening Guide CONFIG_DEBUG_BUGVERBOSE & CONFIG_ZSMALLOC

More Kernel command-line checks

proc mem force

← Metadata

Owner

Metadata

kconfig-hardened-check
kconfig-hardened-check copied to clipboard