This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "IPFire 2.x development tree".
The branch, next has been updated via f62b488f82b5eb6bbbc1b57d90a919d61346ef5f (commit) via 2c38893da43383ffb57022575fa56a255b012a93 (commit) via 2bbfa1b72c32712997183e4813f813d443a48d81 (commit) from 1452738c2e22562d84a7c6af683a2f9bce88fd55 (commit)
Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below.
- Log ----------------------------------------------------------------- commit f62b488f82b5eb6bbbc1b57d90a919d61346ef5f Author: Peter Müller peter.mueller@ipfire.org Date: Mon Jun 20 20:10:47 2022 +0000
sysctl: Actually arm YAMA
Signed-off-by: Peter Müller peter.mueller@ipfire.org
commit 2c38893da43383ffb57022575fa56a255b012a93 Author: Peter Müller peter.mueller@ipfire.org Date: Mon Jun 20 19:50:16 2022 +0000
Core Update 169: Ship keyutils
Signed-off-by: Peter Müller peter.mueller@ipfire.org
commit 2bbfa1b72c32712997183e4813f813d443a48d81 Author: Peter Müller peter.mueller@ipfire.org Date: Mon Jun 20 19:48:55 2022 +0000
Core Update 169: Ship poppler
Signed-off-by: Peter Müller peter.mueller@ipfire.org
-----------------------------------------------------------------------
Summary of changes: config/etc/sysctl.conf | 3 +++ config/rootfiles/{oldcore/125 => core/169}/filelists/keyutils | 0 config/rootfiles/{oldcore/110 => core/169}/filelists/poppler | 0 3 files changed, 3 insertions(+) copy config/rootfiles/{oldcore/125 => core/169}/filelists/keyutils (100%) copy config/rootfiles/{oldcore/110 => core/169}/filelists/poppler (100%)
Difference in files: diff --git a/config/etc/sysctl.conf b/config/etc/sysctl.conf index 6bf3bc887..4d4f765ea 100644 --- a/config/etc/sysctl.conf +++ b/config/etc/sysctl.conf @@ -108,3 +108,6 @@ kernel.core_uses_pid = 1
# Block non-uid-0 profiling kernel.perf_event_paranoid = 3 + +# Deny any ptrace use as there is no legitimate use-case for it on IPFire +kernel.yama.ptrace_scope = 3 diff --git a/config/rootfiles/core/169/filelists/keyutils b/config/rootfiles/core/169/filelists/keyutils new file mode 120000 index 000000000..4311917e5 --- /dev/null +++ b/config/rootfiles/core/169/filelists/keyutils @@ -0,0 +1 @@ +../../../common/keyutils \ No newline at end of file diff --git a/config/rootfiles/core/169/filelists/poppler b/config/rootfiles/core/169/filelists/poppler new file mode 120000 index 000000000..39aa6c263 --- /dev/null +++ b/config/rootfiles/core/169/filelists/poppler @@ -0,0 +1 @@ +../../../common/poppler \ No newline at end of file
hooks/post-receive -- IPFire 2.x development tree