-
I've been toying with `systemd-analyze security`, and the results for `systemd-analyze security speakersafetyd.service` aren't super-duper-great. While speakersafetyd is written in Rust, it's still ru…
-
### Code of Conduct
- [X] I have read and agree to the GitHub Docs project's [Code of Conduct](https://github.com/github/docs/blob/main/.github/CODE_OF_CONDUCT.md)
### What article on docs.github.co…
-
**Is your enhancement proposal related to a problem? Please describe.**
https://docs.zephyrproject.org/latest/security/hardening-tool.html is designed with security in mind, however it can be used …
-
Describe Container Apps Security & Hardening :
- cluster isolation : single Tenant see also [57](https://github.com/microsoft/azure-container-apps/issues/57)
- equivalent of network policies …
-
I can't find a basic security hardening guide that mimics what I'd do for a Mac/Linux. https://heimdalsecurity.com/en/windows-10-security-guide seems OK, maybe do that?
At the very least I should:
…
-
- [ ] Port Knocking
- [ ] Fail2Ban
- [ ] IPTables tunning
- [ ] SSH with OTP\Yubikey
-
By default, `:brod` uses `:verify_none` for tls connections. To support `:verify_peer` and other levels of TLS cert verification, we need CA certs to pass to `:brod`. We can have a default cert but we…
-
### The problem you're addressing (if any)
Qubes OS is marketed as "a reasonably secure operating system", leading users to expect comprehensive security hardening across all aspects of the system.…
-
hey folks,
Wondering if there is a "best practices" security guide out there (or a post or something) for hardening raspi once everything is loaded up. Ive noticed this code can get a bit finicky s…
-
#### Description of problem:
`sshd_set_keepalive` is misaligned with DISA's `xccdf_mil.disa.stig_rule_SV-257995r970703_rule`.
Content uses distributed config and puts it to different file than DISA …