Mirrors/linux-baseline
2
0
Fork 0
mirror of https://github.com/dev-sec/linux-baseline synced 2024-11-22 19:23:02 +00:00
Code Issues Projects Releases Packages Wiki Activity
379 commits 17 branches 31 tags 478 KiB
Commit graph

379 commits

This branch
This branch
All branches
Author SHA1 Message Date
Patrick Münch
6563cb32dc Merge pull request #62 from artem-sidorenko/kernel-modules 
Allow verification if kernel modules loading is disabled
 2017-05-26 20:58:43 +02:00
Artem Sidorenko
deb96a624e Allow verification if kernel modules loading is disabled 
Signed-off-by: Artem Sidorenko <artem@posteo.de>
 2017-05-22 19:53:35 +02:00
Patrick Münch
a493413969 Merge pull request #61 from artem-sidorenko/audit-fixes 
Fix: more generic auditd settings
 2017-05-15 10:33:19 +02:00
Artem Sidorenko
97c7be99d2 Fix: more generic auditd settings 
in order to match the defaults of all mainstream distros

Some of settings are removed, as the defaults of distros are different,
based on the intention of author [1] they are also not really important here

[1]: https://github.com/dev-sec/linux-baseline/pull/44#commitcomment-21381289

Signed-off-by: Artem Sidorenko <artem@posteo.de>
 2017-05-10 23:53:43 +02:00
Christoph Hartmann
6648a15447 2.1.0 
Signed-off-by: Christoph Hartmann <chris@lollyrock.com>
 2017-05-08 15:15:47 +02:00
Artem Sidorenko
6eeb5ec082 Merge pull request #58 from dev-sec/chris-rock/metadata 
update metadata
 2017-04-28 23:43:10 +02:00
Christoph Hartmann
390b256a2b update metadata 2017-04-28 22:21:14 +02:00
Christoph Hartmann
10af912275 Merge pull request #57 from atomic111/master 
update gemfile
 2017-04-04 10:28:47 +02:00
Patrick Münch
e2b85f26a9 update gemfile 
Signed-off-by: Patrick Münch <patrick.muench1111@gmail.com>
 2017-04-04 10:19:53 +02:00
Christoph Hartmann
07d60033b7 Merge pull request #56 from atomic111/master 
restrict ruby testing to version 2.3.3
 2017-04-04 10:07:02 +02:00
Patrick Münch
320d60ac1a restrict ruby testing to version 2.3.3 
Signed-off-by: Patrick Münch <patrick.muench1111@gmail.com>
 2017-04-04 10:02:06 +02:00
Patrick Münch
12b317ee26 Merge pull request #52 from artem-sidorenko/kernel-dump 
Properly verify the kernel dump setting
 2017-03-16 08:19:12 +01:00
Artem Sidorenko
e3df2dbb13 Verify the dump path only if dumpable is set to suidsafe 
See this discussion 790371c5fd (commitcomment-21277650)
 2017-03-13 19:56:44 +01:00
Artem Sidorenko
8f763e51b4 Properly verify the kernel dump setting 
0 and 2 are the allowed options
 2017-03-12 17:48:32 +01:00
Christoph Hartmann
58810fec3c Merge pull request #51 from iamthemuffinman/master 
auditd package is called audit in the rhel family
 2017-02-16 17:59:06 +01:00
iamthemuffinman
50f719d9f6 Use one block 2017-02-16 11:27:32 -05:00
iamthemuffinman
31ca8e8f98 auditd package is called audit in the rhel family 2017-02-15 17:16:40 -05:00
Patrick Münch
50e28b58ea Merge pull request #44 from juju4/master 
essay: differentiate redhat/debian, add extra conditions
 2017-02-08 21:07:28 +01:00
Patrick Münch
b4fd1b3440 Merge pull request #50 from techraf/ignore-inspec-lock 
Ignore inspec.lock file
 2017-01-14 09:44:34 +01:00
techraf
78f3747407 Ignore inspec.lock file 2017-01-14 13:41:54 +09:00
Patrick Münch
9032b67769 Merge pull request #49 from techraf/fix-duplicate-in-sysctl-16 
Remove duplicated expectation from sysctl-16
 2017-01-13 09:58:51 +01:00
techraf
7972eca00c Check 'net.ipv4.conf.default.send_redirects' instead of 'net.ipv4.conf.all.send_redirects' twice 2017-01-13 08:48:27 +09:00
Julien
f5f905d366 Merge branch 'master' into master 2017-01-03 18:22:30 +01:00
juju4
1ec817fe20 fix rubocop Conventions 2016-12-22 04:58:26 -05:00
juju4
ed00917131 fix rubocop Conventions 2016-12-22 04:55:31 -05:00
juju4
c27fc05aee fix rubocop Conventions 2016-12-22 04:50:09 -05:00
juju4
50abb79577 fix rubocop Conventions 2016-12-22 04:45:40 -05:00
juju4
1726723827 fix rubocop Conventions 2016-12-22 04:39:14 -05:00
juju4
f207161143 fix rubocop Conventions 2016-12-22 04:34:49 -05:00
juju4
e62cb3f0ef fix rubocop Conventions 2016-12-22 04:27:09 -05:00
juju4
4b029d7e99 fix rubocop Conventions 2016-12-22 04:23:07 -05:00
juju4
b2cd7ee312 fix rubocop Conventions 2016-12-22 04:17:32 -05:00
juju4
e297ff2b1e fix rubocop Warning and most Conventions 2016-12-22 04:09:07 -05:00
juju4
7878a04956 +travis.yml 2016-12-21 15:21:50 -05:00
juju4
3fc52ecadb rebase upstream 2016-12-21 15:19:16 -05:00
juju4
cdcc9f7721 use attributes, include PR feedback 2016-12-21 13:53:32 -05:00
Patrick Münch
462e066cdf Merge pull request #47 from dev-sec/chris-rock/readme 
update links in readme
 2016-12-21 19:19:36 +01:00
Christoph Hartmann
552bfb1abb update links in readme 
Signed-off-by: Christoph Hartmann <chris@lollyrock.com>
 2016-12-21 12:50:12 +01:00
Christoph Hartmann
43362f747f Merge pull request #46 from dev-sec/chris-rock/metadata 
update profile metadata & tooling
 2016-12-21 12:04:28 +01:00
Christoph Hartmann
b5429ffbd5 update profile metadata & tooling 2016-12-21 11:54:18 +01:00
juju4
e7b6c36edb try Gemfile cleanup 2016-12-19 08:37:46 -05:00
juju4
327593903f typo 2016-12-19 04:18:20 -05:00
juju4
7dd6045f40 add travis test for ruby 2.3.1 + remove 1.9.3, remove Gemfile conditional 2016-12-19 03:25:07 -05:00
juju4
f9e29c380d quotes 2016-12-19 02:39:37 -05:00
juju4
932f81025d pin rack in Gemfile 2016-12-19 02:34:27 -05:00
juju4
34940bb02a travis: force rubygems update without bundle 2016-12-19 02:04:14 -05:00
juju4
0f0070adbb travis: force rubygems update before_install 2016-12-19 01:38:48 -05:00
juju4
80eb43572d travis: force rubygems update 2016-12-18 15:01:40 -05:00
juju4
68bc615322 README add travis build status 2016-12-18 14:40:51 -05:00
juju4
790371c5fd differentiate redhat/debian test, add extra conditions like entropy or ENV dependent test 2016-09-18 16:38:55 -04:00