-
We've had instructions on hardening salt for a while, see https://docs.saltstack.com/en/2016.3/topics/hardening.html#general-hardening-tips
We should make it more obvious which "tips" should be don…
-
We should probably add `-D_LIBCPP_ENABLE_HARDENED_MODE=1`. It helps for C++ when using libc++ and the LLVM compiler. See: https://libcxx.llvm.org/Hardening.html#using-hardening-modes
-
I was messing around with adding a package to AUR and noticed [namcap](https://wiki.archlinux.org/title/namcap) was producing a warning: `ELF file ('usr/bin/oq') lacks FULL RELRO, check LDFLAGS`, whic…
-
Hello!
This is a simple question of whether this is a subset of ansible-role-hardening or is this repo meant to be executed before?
Thank you again for sharing all this great work!
jdaln updated
4 months ago
-
### Question
Hey I wanted to ask if you Guys could share the best Settings in SimpleX Chat in terms of security and privacy? Because there are many things which I don't understand or have not much kn…
ghost updated
1 month ago
-
The password is saved and transmitted in clear text.
This is a potential security issue and needs to be changed.
Additional brute-force countermeassures are needed too.
-
A few things we've been thinking about to do some more hardening on the platform:
* The shell of the pi user should be nologin and make sure it still works: https://github.com/CIRCL/Circlean/blob/m…
-
I can't find a basic security hardening guide that mimics what I'd do for a Mac/Linux. https://heimdalsecurity.com/en/windows-10-security-guide seems OK, maybe do that?
At the very least I should:
…
-
## Issue description
It would be good for the security of NixOS to compile user-space with `-fstack-clash-protection`. It should probably be added either as a new hardening flag or perhaps included…
-
## Overview
Spacemesh clients must have synchronized clocks in order to participate in the network. Block contextual validity depends on the time. Participating in the Hare consensus requires nodes…