CodeMirror/itpol
1
0
Fork 0
mirror of synced 2024-04-24 15:42:43 +12:00
Code Issues Projects Releases Wiki Activity
51 commits 1 branch 0 tags 314 KiB
Commit graph

51 commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Konstantin Ryabitsev 3148a35dda
Add U2F section and tweak wks-security doc 
Signed-off-by: Konstantin Ryabitsev <konstantin@linuxfoundation.org>
 2017-12-13 16:16:44 -05:00
Konstantin Ryabitsev 34233e9d81
Move to protecting-coide-integrity 
Largely finishes the document -- will work on updated content in
"trusted team communication" and by reviewing the workstation security
guide.

We need at least a basic workstation security guide for the Mac systems.

Signed-off-by: Konstantin Ryabitsev <konstantin@linuxfoundation.org>
 2017-12-12 16:54:03 -05:00
Konstantin Ryabitsev 9d61a13f1c
Edits and a privacy note for keyservers 
Signed-off-by: Konstantin Ryabitsev <konstantin@linuxfoundation.org>
 2017-12-11 14:07:21 -05:00
Konstantin Ryabitsev f35667dddc
Add large chunk of git+pgp content 
Signed-off-by: Konstantin Ryabitsev <konstantin@linuxfoundation.org>
 2017-12-08 17:18:53 -05:00
Konstantin Ryabitsev 62815ea38e
Largely finish the PGP/smartcard section 
Signed-off-by: Konstantin Ryabitsev <konstantin@linuxfoundation.org>
 2017-12-07 15:53:50 -05:00
Konstantin Ryabitsev a93d12f80a Add more GnuPG bits 
Signed-off-by: Konstantin Ryabitsev <konstantin@linuxfoundation.org>
 2017-12-06 17:07:14 -05:00
Konstantin Ryabitsev c51f664e8e
More base PGP work 
Signed-off-by: Konstantin Ryabitsev <konstantin@linuxfoundation.org>
 2017-12-05 16:37:05 -05:00
Konstantin Ryabitsev 526b138907
Start on Developer Security Hygiene 
Signed-off-by: Konstantin Ryabitsev <konstantin@linuxfoundation.org>
 2017-12-04 16:46:02 -05:00
Konstantin Ryabitsev b5b0034191
Remove GrSecurity/PAX and trim down SELinux 
Now that GrSecurity/PaX are no longer available for free download, it is
almost impossible to get it without paying significant amounts of money.
Remove them from the recommendation, but mention that it remains a
viable option for anyone who has a subscription.

Additionally, trim down the SELinux section to remove the detailed
instructions on audit2allow and staff_u. Such details are probably
best suited for a dedicated document.

Signed-off-by: Konstantin Ryabitsev <konstantin@linuxfoundation.org>
 2017-11-15 15:47:42 -05:00
Konstantin Ryabitsev 9cbd84f07d
Add Intel ME recommendation (closing issue #12) 
Preparing for end-of-2017 update to the recommendations.

Signed-off-by: Konstantin Ryabitsev <konstantin@linuxfoundation.org>
 2017-11-13 19:24:16 -05:00
Konstantin Ryabitsev 8f1b807f37 Merge pull request #18 from ronignc/master 
Corrected the URL for Fedora Security Guide
 2017-09-12 16:02:33 -04:00
ronignc b4e1828b46 Corrected the URL for Fedora Security Guide 2017-09-12 13:31:14 -03:00
Konstantin Ryabitsev cdfc1d246e
Update a handful of recommendations for early 2017 
Largely the same stuff, but modify a few recommendations and add a
couple of other ones. See CHANGELOG.md for complete details.

Signed-off-by: Konstantin Ryabitsev <konstantin@linuxfoundation.org>
 2017-01-22 17:33:28 -05:00
Konstantin Ryabitsev 424aa0316d Merge pull request #15 from wyangsun/patch-1 
Create linux-workstation-security.zh_CN.md
 2015-12-24 10:06:07 -08:00
KS b94a5d4f0a Merge pull request #1 from mricon/patch-2 
Rename to linux-workstation-security.zh_CN.md
 2015-12-18 10:53:04 +08:00
Konstantin Ryabitsev 1293fac4fc Rename linux-workstation-security in Chinese.md to linux-workstation-security.zh_CN.md 
Let's use locale names.
 2015-12-17 10:21:17 -05:00
KS 5b8592858f Create linux-workstation-security in Chinese.md 
This document is very nice , I have translated it into Chinese. ^.^
 2015-12-17 21:37:41 +08:00
Konstantin Ryabitsev 855099a721 Merge pull request #13 from mopsfelder/master 
Fix typo in semanage command
 2015-09-25 09:58:06 -04:00
Murilo Opsfelder Araujo 56a7d0f9a6 Fix typo in semanage command 2015-09-24 23:02:50 -03:00
Konstantin Ryabitsev 0720d94443 Use less ambiguous language 2015-09-10 09:01:33 -04:00
Konstantin Ryabitsev 9b5d82de70 Merge pull request #11 from pdxmph/linuxcom_links 
Add links to Linux.com Q&A
 2015-09-03 13:03:07 -04:00
Mike Hall dc66ec032a Add links to Linux.com Q&A 
This commit adds links to the Linux.com Q&A on the motivation behind
releasing these documents.
 2015-09-03 09:18:50 -07:00
Konstantin Ryabitsev 5a68aa9800 Reword target audience 2015-09-02 15:14:50 -04:00
Konstantin Ryabitsev 9bd419e531 Better state the intended audience 2015-09-02 15:11:30 -04:00
Konstantin Ryabitsev d2a9893951 Clarify purpose 
Make it clear that these are NOT official Linux Foundation policies,
just general-purpose policies adapted from those used internally by the
Linux Foundation IT.
 2015-09-02 12:34:33 -04:00
Konstantin Ryabitsev bbc17d8c69 Missed a _ 2015-09-01 10:14:46 -04:00
Konstantin Ryabitsev e0b54ea1ee Content updates to address some criticism 
- Use ESSENTIAL/NICE/PARANOID instead of CRITICAL/MODERATE/LOW/PARANOID
- Use GrSecurity/PaX uniformly
- Add a note on weak passphrases
- The browser you run in a VM does not have to be Chrome/Chromium
- Add a section on hibernating vs. suspending
 2015-09-01 10:07:05 -04:00
Konstantin Ryabitsev f87800736e Mention encrypting the /boot partition 
Closes #10
 2015-08-31 10:05:01 -04:00
Konstantin Ryabitsev 5703c1796e Make section on firewire be less opinionated 2015-08-28 16:23:49 -04:00
Konstantin Ryabitsev 5aa733cddc Merge pull request #8 from SnakeDoc/patch-1 
spelling fix
 2015-08-28 13:06:31 -04:00
Jason Sipula deb573e7b2 spelling fix 2015-08-28 10:04:30 -07:00
Konstantin Ryabitsev 760b743856 Merge pull request #5 from terrorbyte/master 
Grsecurity provides RBAC, not PaX
 2015-08-28 12:30:43 -04:00
Cale Black 926fa29f2b Grsecurity provides RBAC, not PaX 2015-08-28 15:21:43 +00:00
Konstantin Ryabitsev d515cee749 Merge pull request #3 from m-d-johnson/patch-1 
Very minor typo at line 760
 2015-08-27 21:29:05 -04:00
Mike Johnson e4b640fbf3 Very minor typo at line 760 
s/rabitt/rabbit/
 2015-08-27 23:49:40 +01:00
Konstantin Ryabitsev 4beefb7f41 Replace Ghostery with Privacy Badger 
Closes #2
 2015-08-25 15:43:11 -04:00
Konstantin Ryabitsev 7d60463fd0 Content tweaks 2015-08-13 10:28:13 -04:00
Konstantin Ryabitsev 540f26ccd6 Add the bit about gpgkey2ssh 2015-08-12 17:51:59 -04:00
Konstantin Ryabitsev 7fd8caaca7 Forgot the license link 2015-08-12 17:03:42 -04:00
Konstantin Ryabitsev 96f695d159 Content updates 2015-08-12 17:02:44 -04:00
Konstantin Ryabitsev 7ece6f1f8d Add links to other security guides, closing issue #1 2015-08-12 11:33:43 -04:00
Konstantin Ryabitsev a0fd83a9a8 Initial content for trusted team communication doc 2015-08-11 15:55:07 -04:00
Konstantin Ryabitsev f9adb8bf80 Content tweaks 2015-08-11 10:28:53 -04:00
Konstantin Ryabitsev 155b098d93 Add license and more content 2015-08-10 21:46:19 -04:00
Konstantin Ryabitsev e01da74b3e Add section on password managers 2015-08-10 17:54:04 -04:00
Konstantin Ryabitsev 0f9e6ffa0b Minor content updates 2015-08-09 23:25:10 -04:00
Konstantin Ryabitsev eb70fe0f9e Add content 2015-08-05 17:13:40 -04:00
Konstantin Ryabitsev 92df694950 Reformat and add content 2015-08-04 21:44:50 -04:00
Konstantin Ryabitsev 6a195a0627 Move to linux-workstation-security and add content 2015-08-04 16:59:02 -04:00
Konstantin Ryabitsev 8a884bc0e8 Day's work 2015-07-29 17:12:08 -04:00