projects
/
kconfig-hardened-check.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
Fix style (II)
[kconfig-hardened-check.git]
/
README.md
diff --git
a/README.md
b/README.md
index 48aa1b0d1581380db073a223b209010c4dbe65f1..36ecedca4b562607a0cc74159ea757accc6cb1ce 100644
(file)
--- a/
README.md
+++ b/
README.md
@@
-68,9
+68,9
@@
Some Linux distributions also provide `kernel-hardening-checker` as a package.
## Usage
```
usage: kernel-hardening-checker [-h] [--version] [-m {verbose,json,show_ok,show_fail}]
## Usage
```
usage: kernel-hardening-checker [-h] [--version] [-m {verbose,json,show_ok,show_fail}]
-
[-c CONFIG] [-l CMDLINE] [-s SYSCTL
]
- [-p {X86_64,X86_32,ARM64,ARM}]
- [-g {X86_64,X86_32,ARM64,ARM}]
+
[-c CONFIG] [-l CMDLINE] [-s SYSCTL] [-v KERNEL_VERSION
]
+
[-p {X86_64,X86_32,ARM64,ARM}]
+
[-g {X86_64,X86_32,ARM64,ARM}]
A tool for checking the security hardening options of the Linux kernel
A tool for checking the security hardening options of the Linux kernel
@@
-88,6
+88,9
@@
options:
-s SYSCTL, --sysctl SYSCTL
check the security hardening options in the sysctl output file
(`sudo sysctl -a > file`)
-s SYSCTL, --sysctl SYSCTL
check the security hardening options in the sysctl output file
(`sudo sysctl -a > file`)
+ -v KERNEL_VERSION, --kernel-version KERNEL_VERSION
+ extract the version from the kernel version file (contents of
+ /proc/version)
-p {X86_64,X86_32,ARM64,ARM}, --print {X86_64,X86_32,ARM64,ARM}
print the security hardening recommendations for the selected
microarchitecture
-p {X86_64,X86_32,ARM64,ARM}, --print {X86_64,X86_32,ARM64,ARM}
print the security hardening recommendations for the selected
microarchitecture