projects / mirror / dsa-puppet.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9ee12b3) | patch
Always enable page table isolation on stretch/amd64
authorAurelien Jarno <aurelien@aurel32.net>
Sun, 7 Jan 2018 19:19:11 +0000 (20:19 +0100)
committerAurelien Jarno <aurelien@aurel32.net>
Sun, 7 Jan 2018 19:19:11 +0000 (20:19 +0100)
commit0c990ed9c41fc8f011f15200cba00216ccd2ac77
tree5d8e2a5ca8cca7b0d2b17c1561a19a1978369b19tree | snapshot
parent9ee12b3e06fa80e74dcf2be75619f981efc4b693commit | diff
Always enable page table isolation on stretch/amd64

It is disabled by default on AMD, however enabling it provide more
hardening.

Signed-off-by: Aurelien Jarno <aurelien@aurel32.net>
modules/grub/manifests/init.pp diff | blob | history
modules/grub/templates/puppet-kernel-pti-on.cfg.erb [new file with mode: 0644] blob
Unnamed repository; edit this file 'description' to name the repository.