-
**Is your feature request related to a problem? Please describe.**
All users may have a problem on ranking when MFA. I.e., for example, if a system already had a strong password policy (via pam_pwq…
-
For security purposes.
Good guide here: https://docs.github.com/en/actions/learn-github-actions/security-hardening-for-github-actions#overview
-
## Feature request
### Feature
Add additional nftables hardening rules on the host server to increase DDoS protection.
### Purpose of the feature
Mitigate against common DDoS attacks.
#…
-
Rather than using tagged versions for GitHub Actions, our builds could be more reproducible if we leveraged the Git shas instead.
https://docs.github.com/en/actions/security-guides/security-harde…
-
https://github.com/aquasecurity/trivy-action/blob/cb606dfdb0d2b3698ace62192088ef4f5360b24f/README.md?plain=1#L70
See https://docs.github.com/en/actions/security-guides/security-hardening-for-github…
-
Hi, thank you for developing SCAPinoculars, this is very useful !
I would like to suggest an additional type of report for vulnerabilities (oval), in addition to compliance (xccdf) reports.
http…
-
Because of history and unwillingness to implement needed breaking change Docker and Kubernetes still defaults to `root` user and not to mention other security hardening which with most of the modern a…
-
It might be a good idea to implement clevis/tang UEFI hook ~~with secure booting~~ via WireGuard?
* https://github.com/latchset/tang
* https://github.com/latchset/clevis
* https://fedoramagazine.or…
-
Use-case:
- as the docker image may be aimed at users looking for a working out-of-the-box solution, we should add instructions how to secure/lock-down the host system, as the security of this servi…
-
**Description**
Security documentation is fragmented, difficult to use and out of date.
We've agreed within the Security Working Group to undertake a review to:
* Find and document the location o…