titanz/QubesOS-Scripts
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
598 Commits 1 Branch 0 Tags
df7e69164851f532c2fd3f1094571d299eb912a2
Commit Graph

57 Commits

Author SHA1 Message Date
titanz
78485bc6c2 switch to my repos
Some checks failed
ShellCheck / Shell syntax checker (push) Failing after 1s
Details
2025-02-07 10:31:51 +01:00
titanz
c50a23c863 update license year 2025-02-07 10:04:00 +01:00
titanz
491e9db11f add networkmanager hardening to sys-net
All checks were successful
ShellCheck / Shell syntax checker (push) Successful in 12s
Details
2025-01-27 21:54:51 +01:00
titanz
0aa7907f0b update fedora-minimal readme 2025-01-27 21:51:58 +01:00
titanz
4e824af361 sysctl not known in fedora-minimal
All checks were successful
ShellCheck / Shell syntax checker (push) Successful in 11s
Details
2025-01-27 19:06:55 +01:00
titanz
eee17f033f switched from deprecated hardened-chromium to trivalent
Some checks failed
ShellCheck / Shell syntax checker (push) Failing after 15s
Details
2025-01-26 18:31:19 +01:00
Tommy
e7ef3a8194 Simplify SELinux instructions 2024-11-12 06:15:10 -07:00
Tommy
7b8f77e399 Enable SELinux on Fedora minimal 2024-11-12 05:52:05 -07:00
Tommy
857fbd5f14 Consistency fix 2024-11-12 05:45:53 -07:00
Tommy
babf17970a Consistency fix 2024-11-12 05:45:29 -07:00
Tommy
a734aa26a0 Add qubes-core-agent-dom0-updates to sys-net 2024-11-12 04:27:31 -07:00
Tommy
ab1dbd9b3a Add fwupd-qubes-vm 2024-11-12 04:15:49 -07:00
Tommy
481700d2cc Use download command everywhere 2024-11-11 16:54:18 -07:00
xyhhx
e352ff1302 jackwagon: fix fedora scripts (#3) 
* fix: fix fedora scripts

* refactor: remove utils.sh
 2024-09-11 18:29:51 -07:00
Tommy
a1c2d0a73a Update modprobe URL 2024-07-26 05:07:07 -07:00
Tommy
14fa0d89e1 Add set -u 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-07-20 18:20:34 -07:00
Tommy
5500bc5164 Not overwrite USERGROUP_ENAB on anything but Ubuntu 
The nonsense with umask is introduced by Canonical's infinite wisdom:
https://git.launchpad.net/ubuntu/+source/pam/tree/debian/patches/pam_umask_usergroups_from_login.defs.patch?h=ubuntu/noble
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=583958
We don't need to break sensible distributions because of Ubuntu nonsenses
 2024-07-09 15:23:55 -07:00
Tommy
c6475d524c Use SecureBlue HMalloc and suppress curl output 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-07-03 02:19:13 -07:00
Tommy
e810a7d978 Add set -e 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-07-02 16:52:42 -07:00
Tommy
889e82ad60 POSIX compliance 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-06-25 23:42:21 -07:00
Tommy
4200946a8d Better umask handling 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-29 12:49:37 -07:00
Tommy
6dd8134451 unpriv curl for minimal VMs 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-16 22:47:39 -07:00
Tommy
04fd34d738 Add ZRAM config 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-16 22:36:29 -07:00
Tommy
2bcee5859c Switch notification-daemon to xfce4-notifyd 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-16 13:34:59 -07:00
Tommy
d223c91c89 Fix Networking 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-05-16 12:53:02 -07:00
Tommy
a5c22bbff2 Add hardened_malloc to Fedora 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-04-28 14:16:43 -07:00
Tommy
49c7b038d3 Keep everything consistent with Linux-Setup-Scripts 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-04-28 13:57:34 -07:00
Tommy
3fae19069b No longer using cryptomator 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-04-28 12:08:28 -07:00
Tommy
4ba0f414f1 Styling fix 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-04-26 16:12:38 -07:00
Tommy
c8b324c93b Consistent comments 
Signed-off-by: Tommy <contact@tommytran.io>
 2024-01-24 17:46:28 -07:00
Tommy
384a3a6ef3 curl | sudo tee 
Signed-off-by: Tommy <contact@tommytran.io>
 2023-12-01 23:21:43 -07:00
Tommy
ea308830c1 Fix 990-security-misc path 
Signed-off-by: Tommy <contact@tommytran.io>
 2023-11-15 14:21:33 -07:00
Tommy
a5dd3256bb Update KickSecure configuration paths & remove MirageOS builds 2023-10-31 09:32:17 -07:00
Tommy
0048651850 Add Apache license header 2023-09-27 00:58:33 -07:00
Tommy
cb02feb882 Add media 
Signed-off-by: Tommy <contact@tommytran.io>
 2023-02-06 00:15:37 -05:00
Tommy
bce5e59d4e Update Kicksecure sysctl 
Signed-off-by: Tommy <contact@tommytran.io>
 2023-02-05 23:57:22 -05:00
Tommy
248cd35e3e Update sys-net.sh 
Signed-off-by: Tommy <contact@tommytran.io>
 2023-01-24 11:32:58 -05:00
Tommy
391783ddad Add SSH client config and DNSSEC for Fedora 
Signed-off-by: Tommy <contact@tommytran.io>
 2023-01-18 08:52:35 -05:00
Tommy
2f8d9491cd Remove NetworkManager systemd-sandbox-exec 
Signed-off-by: Tommy <contact@tommytran.io>
 2022-12-06 04:49:38 -05:00
Tommy
a60193c8e2 Additional Hardening 
Signed-off-by: Tommy <contact@tommytran.io>
 2022-12-02 03:08:54 -05:00
Tommy
047b376f9f Update sys-net.sh 
Signed-off-by: Tommy <contact@tommytran.io>
 2022-08-25 07:38:55 -04:00
tommytran732
c542a1fec6 MirageOS, Split SSH, Docker fixes, and minor updates 
Signed-off-by: tommytran732 <contact@tommytran.io>
 2022-08-12 04:17:07 -04:00
Tommy
6d40311b8d Create fedora-minimal.sh 
Signed-off-by: Tommy <contact@tommytran.io>
 2022-07-26 18:09:49 -04:00
Tommy
655c01ccf5 Update sys-net.sh 2022-07-13 09:03:49 -04:00
Tommy
4731b9bd18 Update sys-net.sh 2022-07-13 09:01:58 -04:00
Tommy
89a26149e7 Update sys-net.sh 2022-07-13 09:01:38 -04:00
Tommy
0da26915f0 Update sys-net.sh 2022-07-13 08:39:11 -04:00
Tommy
98b8dc14ac Update sys-net.sh 2022-07-13 06:29:00 -04:00
Tommy
f57e77d8f7 Create sys-net.sh 2022-07-13 06:19:03 -04:00
Tommy
4ec086f6f7 Delete sys-usb.sh 2022-07-01 10:43:17 -04:00