Hardened Kernel Config File for Virtual Machines (VMs) ("cloud kernel") about kernel-hardening-checker HOT 6 CLOSED

Hello @adrelanos,
I guess Whonix has a default and hardened config, am I right?
Is the difference between them documented anywhere?
We can take Whonix official configs to the config_files/distros/.
That's useful for a brief comparison of kernel hardening adoption by various Linux distributions.
There is also the config_files/links.txt file that describes how to get official configs from various distros.
Thanks!

from kernel-hardening-checker.

The current Whonix default is the Debian default. It will be changed to the config mentioned in the post once it's finished.

from kernel-hardening-checker.

Ok.
So when it is finished, you are welcome to send me the pull request that

• adds the official Whonix hardened config to config_files/distros/;
• adds the corresponding info to config_files/links.txt.

from kernel-hardening-checker.

@madaidan After reading your post on the linux-hardened repository, it seems you might be interested in contributing some of your changes to the CLIP OS kernel (see our current configuration here). If so, don't hesitate to open an issue, it would be much appreciated!

Thanks @msalaun-anssi for the heads-up ;)

from kernel-hardening-checker.

Created clipos/bugs#38 for it.

from kernel-hardening-checker.

@madaidan After reading your post on the linux-hardened repository, it seems you might be interested in contributing some of your changes to the CLIP OS kernel (see our current configuration here). If so, don't hesitate to open an issue, it would be much appreciated!

Sounds great. I'll see what I can do.

from kernel-hardening-checker.