Information
ID: 531
PHID: PHID-TASK-5frcx37dlvd2bvdgroie
Author: HulaHoop
Status at Migration Time: resolved
Priority at Migration Time: Normal
Description
Enabled some systemd security options for CPFP hardening:
*Syscall whitelist added.
*/usr /boot and /etc are set read-only.
*Access to /home /run/user is denied.
*Turned off all physical device access.