* [git.ipfire.org] IPFire 2.x development tree branch, next, updated. f62b488f82b5eb6bbbc1b57d90a919d61346ef5f
@ 2022-06-20 20:12 Peter Müller
0 siblings, 0 replies; only message in thread
From: Peter Müller @ 2022-06-20 20:12 UTC (permalink / raw)
To: ipfire-scm
[-- Attachment #1: Type: text/plain, Size: 2993 bytes --]
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "IPFire 2.x development tree".
The branch, next has been updated
via f62b488f82b5eb6bbbc1b57d90a919d61346ef5f (commit)
via 2c38893da43383ffb57022575fa56a255b012a93 (commit)
via 2bbfa1b72c32712997183e4813f813d443a48d81 (commit)
from 1452738c2e22562d84a7c6af683a2f9bce88fd55 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit f62b488f82b5eb6bbbc1b57d90a919d61346ef5f
Author: Peter Müller <peter.mueller(a)ipfire.org>
Date: Mon Jun 20 20:10:47 2022 +0000
sysctl: Actually arm YAMA
Signed-off-by: Peter Müller <peter.mueller(a)ipfire.org>
commit 2c38893da43383ffb57022575fa56a255b012a93
Author: Peter Müller <peter.mueller(a)ipfire.org>
Date: Mon Jun 20 19:50:16 2022 +0000
Core Update 169: Ship keyutils
Signed-off-by: Peter Müller <peter.mueller(a)ipfire.org>
commit 2bbfa1b72c32712997183e4813f813d443a48d81
Author: Peter Müller <peter.mueller(a)ipfire.org>
Date: Mon Jun 20 19:48:55 2022 +0000
Core Update 169: Ship poppler
Signed-off-by: Peter Müller <peter.mueller(a)ipfire.org>
-----------------------------------------------------------------------
Summary of changes:
config/etc/sysctl.conf | 3 +++
config/rootfiles/{oldcore/125 => core/169}/filelists/keyutils | 0
config/rootfiles/{oldcore/110 => core/169}/filelists/poppler | 0
3 files changed, 3 insertions(+)
copy config/rootfiles/{oldcore/125 => core/169}/filelists/keyutils (100%)
copy config/rootfiles/{oldcore/110 => core/169}/filelists/poppler (100%)
Difference in files:
diff --git a/config/etc/sysctl.conf b/config/etc/sysctl.conf
index 6bf3bc887..4d4f765ea 100644
--- a/config/etc/sysctl.conf
+++ b/config/etc/sysctl.conf
@@ -108,3 +108,6 @@ kernel.core_uses_pid = 1
# Block non-uid-0 profiling
kernel.perf_event_paranoid = 3
+
+# Deny any ptrace use as there is no legitimate use-case for it on IPFire
+kernel.yama.ptrace_scope = 3
diff --git a/config/rootfiles/core/169/filelists/keyutils b/config/rootfiles/core/169/filelists/keyutils
new file mode 120000
index 000000000..4311917e5
--- /dev/null
+++ b/config/rootfiles/core/169/filelists/keyutils
@@ -0,0 +1 @@
+../../../common/keyutils
\ No newline at end of file
diff --git a/config/rootfiles/core/169/filelists/poppler b/config/rootfiles/core/169/filelists/poppler
new file mode 120000
index 000000000..39aa6c263
--- /dev/null
+++ b/config/rootfiles/core/169/filelists/poppler
@@ -0,0 +1 @@
+../../../common/poppler
\ No newline at end of file
hooks/post-receive
--
IPFire 2.x development tree
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2022-06-20 20:12 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2022-06-20 20:12 [git.ipfire.org] IPFire 2.x development tree branch, next, updated. f62b488f82b5eb6bbbc1b57d90a919d61346ef5f Peter Müller
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox