Releases 2.1.0
Commits
Rename empty file. (jgoutin )
Add Grub password option. (jgoutin )
Linux kernel hardening (jgoutin )
458147d Allow to change "opcache.interned_strings_buffer" value. (jgoutin )
Add "php-sodium" module and increase "opcache.interned_strings_buffer" as recommended in recent Nextcloud versions. (jgoutin )
Use GBM instead of X11, start Kodi using systemd directly instead of getty and add minimal systemd hardening. (jgoutin )
Clean up Anaconda files. (jgoutin )
Add upgrade information in readme. (jgoutin )
Fix invalid ExecStartPre systemd parameter. (jgoutin )
musicplayer_serial_display, fix device detection + add device re-connection + add start indicator + Python typing (jgoutin )
4cd9f36 40c4e19 Improve service unit to not use getty (jgoutin )
66d1615 2d6f9f4 Fail2ban logs in systemd journal (jgoutin )
e834132 02174c8 Allow configuring journal memory/disk max size. (jgoutin )
Add "richdocuments" with builtin server to default apps + Add featured security apps. (jgoutin )
Logs in Systemd journal. (jgoutin )
08aac0f 669d586 Change X-Robots-Tag header value. (jgoutin )
Update Nginx configuration based on latest doc + Improve dependencies selection based on installed apps and features. (jgoutin )
Enforce TLS1.3 and add security options. (jgoutin )
Allow to disable kernel user namespaces. (jgoutin )
Add ProcSubset and ProtectProc to systemd sandboxing. (jgoutin )
Add ProcSubset and ProtectProc to systemd sandboxing. (jgoutin )
Add ProcSubset and ProtectProc to systemd sandboxing. (jgoutin )
b9d3ea0 Add ProcSubset and ProtectProc to systemd sandboxing. (jgoutin )
Add ProcSubset and ProtectProc to systemd sandboxing. (jgoutin )
Add PrivateUsers=true to systemd sandboxing. (jgoutin )
Add ProcSubset and ProtectProc to systemd sandboxing. (jgoutin )
"RemoveIPC=" requires "User=/DynamicUser=". (jgoutin )
"RemoveIPC=" requires "User=/DynamicUser=". (jgoutin )
6157d7a Add "PrivateIPC=true" to systemd sandbox. (jgoutin )
Add "PrivateIPC=true" to systemd sandbox. (jgoutin )
Add "PrivateIPC=true" to systemd sandbox. (jgoutin )
"RemoveIPC=" requires "User=/DynamicUser=". (jgoutin )
Allow to remove power button confirmation + Modify "advancedsettings.xml" without overwriting it. (jgoutin )
c0decd9 Allow Postfix service to write "/etc/aliases.db" and "/var/lib/misc/postfix.aliasesdb-stamp". (jgoutin )
Update config using "rpmnew" files. (jgoutin )
Update config using "rpmnew" files. (jgoutin )
Use touche to create /etc/securetty (jgoutin )
Update config using "rpmnew" files. (jgoutin )
Update config using "rpmnew" files. (jgoutin )
Update config using "rpmnew" files. (jgoutin )
Update config using "rpmnew" files. (jgoutin )
a1beaa0 Ignore "rpmnew", config is fully generated from template. (jgoutin )
Ignore "rpmnew", config is fully generated from template. (jgoutin )
Disable coredump using limits. (jgoutin )
Restrict "su" to "wheel" group. (jgoutin )
Improve systemd sandboxing. (jgoutin )
Ensure services are restarted after modification. (jgoutin )
Sandbox fail2ban and postfix services. (jgoutin )
add SystemCallFilter=~@resources (jgoutin )
Improve extra services systemd sandboxing. (jgoutin )
add SystemCallFilter=~@resources (jgoutin )
98730a1 Improve systemd sandboxing. (jgoutin )
Use built-in DNF automatic reboot feature. (jgoutin )
b059aa8 Deprecate role because not used by any other role and not maintained. (jgoutin )
Rewording, typo, ... (jgoutin )
Handle root CA certificate generation if no CA specified. (jgoutin )
Fix redirection loop. (jgoutin )
Fix caching of ""*.xml.zck" 206 partial content (jgoutin )
7685a90 Denying only for store ID internal domain seems to not work. (jgoutin )
You can’t perform that action at this time.
