jxself.org public git repositories - kconfig-hardened-check.git/search

projects / kconfig-hardened-check.git / search

2020-01-10	Alexander Popov	Take some ideas from NixOS/nixpkgs hardened kernel...	commit \| commitdiff \| tree
2019-12-02	Alexander Popov	Pretty printing	commit \| commitdiff \| tree
2019-11-29	Alexander Popov	Version 0.5.3 (supports Linux kernel v5.3)	commit \| commitdiff \| tree
2019-11-29	Alexander Popov	Add the link to Linux Kernel Defence Map	commit \| commitdiff \| tree
2019-11-29	Alexander Popov	Update the README	commit \| commitdiff \| tree
2019-11-29	Alexander Popov	Update defconfigs	commit \| commitdiff \| tree
2019-11-29	Alexander Popov	RANDOMIZE_BASE is now enabled by default on arm64	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	x86_32: INTEL_IOMMU is not enabled by default - fix...	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	X86_INTEL_UMIP is now X86_UMIP	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	x86_64: more hardening options are enabled by default...	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Improve the list of the kernel parameters in TODO	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Add CLIP OS links	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Update the column width	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Some of my recommendations are used by CLIP OS, change...	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Don't recommend disabling IKCONFIG anymore	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Save more hardening sysctls for TODO	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Update CLIP OS doc	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Group security policies together	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Add INIT_ON_ALLOC_DEFAULT_ON and INIT_ON_FREE_DEFAULT_ON...	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Add RODATA_FULL_DEFAULT_ENABLED for ARM64	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Add info about Debian and AOSP kernel configs to links.txt	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Add Debian Buster kernel config	commit \| commitdiff \| tree
2019-11-28	Alexander Popov	Add AOSP kernel config for Pixel 3a	commit \| commitdiff \| tree
2019-08-23	Alexander Popov	Introduce the versioning	commit \| commitdiff \| tree
2019-08-23	Alexander Popov	Update the script output in the README	commit \| commitdiff \| tree
2019-08-23	Alexander Popov	Add HARDEN_BRANCH_PREDICTOR and HARDEN_EL2_VECTORS	commit \| commitdiff \| tree
2019-08-23	Alexander Popov	Bring more order to the offsets (style fix)	commit \| commitdiff \| tree
2019-08-22	Alexander Popov	Add INIT_STACK_ALL as an alternative to GCC_PLUGIN_STRUCTLEA...	commit \| commitdiff \| tree
2019-08-22	Alexander Popov	Add SHUFFLE_PAGE_ALLOCATOR from v5.2	commit \| commitdiff \| tree
2019-08-22	Alexander Popov	Add some new sysctls (to remember them)	commit \| commitdiff \| tree
2019-06-24	Alexander Popov	Do code refactoring without changing the functionality	commit \| commitdiff \| tree
2019-06-24	Alexander Popov	Merge branch 'json-support'	commit \| commitdiff \| tree
2019-06-24	Alexander Popov	json: Fix minor things and update the README	commit \| commitdiff \| tree
2019-06-04	Alexander Popov	Drop CONFIG_X86_MSR from the recommendations	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Add the LDISC_AUTOLOAD check	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Attribute some of my recommendations to CLIP OS - part II	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Add the link to the CLIP OS kernel configuration	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Update the README	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Update the README (printing format)	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Add a snapshot of the CLIP OS config documentation	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Attribute some of my recommendations to CLIP OS	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Add my recommendations for AMD (similar to CLIP OS...	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Add X86-specific CLIP OS recommendations for kernel...	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Add arch-independent CLIP OS recommendations for kernel...	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Add more details about STACKLEAK	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Don't recommend any particular LSM to avoid the holy war	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Add CLIP OS recommendations for cutting attack surface	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Improve printing of the results	commit \| commitdiff \| tree
2019-06-03	Alexander Popov	Update the link to Alpine config	commit \| commitdiff \| tree
2019-05-27	Alexander Popov	Add more kernel command line parameters to comments	commit \| commitdiff \| tree
2019-05-17	Alexander Popov	Merge remote-tracking branch 'hackurx/master'	commit \| commitdiff \| tree
2019-03-20	Alexander Popov	Add Q&A to the README	commit \| commitdiff \| tree
2019-03-13	Alexander Popov	Add the comment about kptr_restrict	commit \| commitdiff \| tree
2019-03-13	Alexander Popov	Add ARM64_PTR_AUTH check	commit \| commitdiff \| tree
2019-03-13	Alexander Popov	Add STACKPROTECTOR_PER_TASK check for ARM	commit \| commitdiff \| tree
2019-03-13	Alexander Popov	Add defconfigs for 5.0	commit \| commitdiff \| tree
2019-03-12	Alexander Popov	Don't hide AND check results if the requirements are...	commit \| commitdiff \| tree
2019-03-12	Alexander Popov	Update the README	commit \| commitdiff \| tree
2019-03-12	Alexander Popov	Improve the final result output	commit \| commitdiff \| tree
2019-03-12	Alexander Popov	Use the AND check for HARDENED_USERCOPY_FALLBACK	commit \| commitdiff \| tree
2019-03-12	Alexander Popov	Use the AND check for PAGE_POISONING_NO_SANITY and...	commit \| commitdiff \| tree
2019-03-12	Alexander Popov	Implement AND ComplexOptCheck	commit \| commitdiff \| tree
2019-03-12	Alexander Popov	Add a sanity check and do minor refactoring	commit \| commitdiff \| tree
2019-03-12	Alexander Popov	Introduce the ComplexOptCheck superclass	commit \| commitdiff \| tree
2019-03-11	Alexander Popov	Update the README	commit \| commitdiff \| tree
2019-03-11	Alexander Popov	Add explicit checks for CONFIG_MODULES and CONFIG_DEVMEM	commit \| commitdiff \| tree
2019-03-11	Alexander Popov	Add missing OR use case	commit \| commitdiff \| tree
2019-03-11	Alexander Popov	Improve the output of OR checks	commit \| commitdiff \| tree
2019-03-04	Alexander Popov	Add the RESET_ATTACK_MITIGATION check according to...	commit \| commitdiff \| tree
2019-03-04	Alexander Popov	Fix false positive about CONFIG_MODULE_SIG_FORCE.	commit \| commitdiff \| tree
2019-01-24	Alexander Popov	Update the README and comments after adding ARM support	commit \| commitdiff \| tree
2019-01-24	Alexander Popov	Fix typo in KSPP recommendations for ARM	commit \| commitdiff \| tree
2019-01-24	Alexander Popov	Add ARM support	commit \| commitdiff \| tree
2019-01-23	Alexander Popov	Update the README after adding ARM64 support	commit \| commitdiff \| tree
2019-01-23	Alexander Popov	Go through all the checks in debug mode	commit \| commitdiff \| tree
2019-01-23	Alexander Popov	Add ARM64 support	commit \| commitdiff \| tree
2019-01-22	Alexander Popov	Update the README after adding X86_32 support	commit \| commitdiff \| tree
2019-01-22	Alexander Popov	Add X86_32 support	commit \| commitdiff \| tree
2019-01-22	Alexander Popov	Merge branch 'arch-configs'	commit \| commitdiff \| tree
2019-01-22	Alexander Popov	Create a separate directory for distro configs	commit \| commitdiff \| tree
2019-01-22	Alexander Popov	Create a separate directory for defconfigs	commit \| commitdiff \| tree
2019-01-22	Alexander Popov	Add arm64 defconfig for v4.20	commit \| commitdiff \| tree
2019-01-22	Alexander Popov	Add arm defconfig for v4.20	commit \| commitdiff \| tree
2019-01-22	Alexander Popov	Add x86_32 defconfig for v4.20	commit \| commitdiff \| tree
2019-01-22	Alexander Popov	Create a separate directory for KSPP recommendations	commit \| commitdiff \| tree
2019-01-22	Alexander Popov	Specify the architecture in KSPP recommendations	commit \| commitdiff \| tree
2019-01-21	Alexander Popov	Update the README (arch support)	commit \| commitdiff \| tree
2019-01-21	Alexander Popov	Make the script aware of target architecture	commit \| commitdiff \| tree
2019-01-21	Alexander Popov	Merge branch 'from-tyhicks-1'	commit \| commitdiff \| tree
2019-01-21	Tyler Hicks	Add a KSPP recommendations config for arm64	commit \| commitdiff \| tree
2019-01-21	Tyler Hicks	Add a KSPP recommendations config for arm	commit \| commitdiff \| tree
2019-01-21	Tyler Hicks	Add a KSPP recommendations config for x86_32	commit \| commitdiff \| tree
2019-01-21	Tyler Hicks	Make KSPP recommendations config x86_64 specific	commit \| commitdiff \| tree
2019-01-21	Tyler Hicks	Update kspp-recommendations.config to look like an...	commit \| commitdiff \| tree
2019-01-14	Alexander Popov	Add x86_64_defconfig for v4.20	commit \| commitdiff \| tree
2019-01-14	Alexander Popov	Merge branch 'decision-cleanup'	commit \| commitdiff \| tree
2019-01-14	Alexander Popov	Update README	commit \| commitdiff \| tree
2019-01-14	Alexander Popov	Change the last 'ubuntu18' checks (about lockdown)	commit \| commitdiff \| tree
2019-01-14	Alexander Popov	Change 'decision' to 'grsecurity' for their additional...	commit \| commitdiff \| tree
2019-01-14	Alexander Popov	Change 'decision' to 'kspp' for non-default options...	commit \| commitdiff \| tree
next

kconfig-hardened-check

RSS Atom