Page MenuHomePhorge

Debian version 11 codename BullseyeProject
ActivePublic

Members

  • This project does not have any members.
  • View All

Watchers

  • This project does not have any watchers.
  • View All

Details

Description

Bullseye is the development codename for Debian 11.

Recent Activity

Wed, Nov 22

Patrick closed T927: port to /etc/apparmor.d/abstractions/base.d in Debian 11 bullseye as Resolved.
Wed, Nov 22, 4:22 AM · Whonix, Debian version 11 codename Bullseye

Jan 19 2023

Patrick closed T931: Testing tpm2-pkcs11with KVM vTPM 2.0 as Invalid.

Due to https://www.whonix.org/wiki/Reporting_Bugs#Transition_to_Discourse_Forums all tickets need to be migrated to forums. Please re-open in forums if this still still relevant.

Jan 19 2023, 10:53 AM · Whonix, Debian version 11 codename Bullseye
Patrick renamed T927: port to /etc/apparmor.d/abstractions/base.d in Debian 11 bullseye from port to /etc/apparmor.d/abstractions.d in Debian 11 bullseye to port to /etc/apparmor.d/abstractions/base.d in Debian 11 bullseye.
Jan 19 2023, 10:51 AM · Whonix, Debian version 11 codename Bullseye
Patrick closed T606: merge /etc/apparmor.d/abstractions/base.anondist from Debian bullseye as Resolved.

This will be done when doing T927.

Jan 19 2023, 10:49 AM · Debian version 11 codename Bullseye, AppArmor, Whonix
Patrick changed Impact from Whonix:triage to Whonix:low on T927: port to /etc/apparmor.d/abstractions/base.d in Debian 11 bullseye.
Jan 19 2023, 10:49 AM · Whonix, Debian version 11 codename Bullseye
Patrick closed T984: convert /etc/sysctl.d to /etc/default/grub.d kernel Linux boot cmdline as Invalid.

And we also port to dracut which also does early sysctl loading.
Adding tons of sysctl to an already very long kernel command line (do we got the world record already :) seems excessive.
Since nobody is making the argument anymore, rejecting this ticket.

Jan 19 2023, 10:48 AM · Whonix, Debian version 11 codename Bullseye
Patrick closed T968: Bullseye: live-boot needs GRUB_DISABLE_LINUX_UUID="true" parameter in /etc/grub.d/11_linux_live as Resolved.
Jan 19 2023, 10:43 AM · Debian version 11 codename Bullseye, live-mode, Whonix
Patrick closed T803: coyIM as Invalid.

Now tracked here:
https://forums.whonix.org/t/coyim-in-whonix-development-discussion/5901

Jan 19 2023, 10:41 AM · Debian version 11 codename Bullseye, Whonix 16, anon-meta-packages, Whonix
Patrick closed T924: rename to bullseye-security as Resolved.
Jan 19 2023, 10:40 AM · anon-apt-sources-list, Debian version 11 codename Bullseye, Whonix

Dec 15 2021

Patrick added a comment to T984: convert /etc/sysctl.d to /etc/default/grub.d kernel Linux boot cmdline.

Is this still reuqired since we also have early sysctl loading during initramfs?

Dec 15 2021, 10:50 AM · Whonix, Debian version 11 codename Bullseye

Sep 28 2020

Patrick closed T950: set kernel.printk sysctl to prevent kernel info leaks as Resolved.

Looks all good and quite in Whonix 15.0.1.5.1.

Sep 28 2020, 2:32 PM · Debian version 11 codename Bullseye, Whonix 15, Whonix, security-misc

May 14 2020

Patrick added a comment to T950: set kernel.printk sysctl to prevent kernel info leaks.
May 14 2020, 6:58 PM · Debian version 11 codename Bullseye, Whonix 15, Whonix, security-misc

Apr 23 2020

Patrick added a comment to T950: set kernel.printk sysctl to prevent kernel info leaks.

Setting quiet loglevel=0 in that exact order as per https://github.com/Whonix/security-misc/commit/6485df8126b52a2072824fa442e8d1dd5cb18981 does now hide [sda] Incomplete mode parameter data. However, messages by LKRG are not yet hidden.

Apr 23 2020, 4:40 PM · Debian version 11 codename Bullseye, Whonix 15, Whonix, security-misc

Apr 16 2020

Patrick added a comment to T984: convert /etc/sysctl.d to /etc/default/grub.d kernel Linux boot cmdline.

Something like that. Maybe covering all of /etc/sysctl.conf and
/etc/sysctl.d folder to GRUB_CMDLINE_LINUX expansion.

Apr 16 2020, 8:47 PM · Whonix, Debian version 11 codename Bullseye
madaidan added a comment to T984: convert /etc/sysctl.d to /etc/default/grub.d kernel Linux boot cmdline.

We shouldn't stop using /etc/sysctl.d for compatibility. I think the best way would be to create /etc/default/grub.d/40_sysctl.cfg with:

Apr 16 2020, 5:31 PM · Whonix, Debian version 11 codename Bullseye
Patrick added a comment to T950: set kernel.printk sysctl to prevent kernel info leaks.

Even kernel parameter quiet loglevel=3 rd.systemd.show_status=auto rd.udev.log_priority=3
(from https://wiki.archlinux.org/index.php/Silent_boot)
does not hide [sda] Incomplete mode parameter data.

Apr 16 2020, 2:02 PM · Debian version 11 codename Bullseye, Whonix 15, Whonix, security-misc
Patrick updated the task description for T950: set kernel.printk sysctl to prevent kernel info leaks.
Apr 16 2020, 12:07 PM · Debian version 11 codename Bullseye, Whonix 15, Whonix, security-misc
Patrick updated the task description for T950: set kernel.printk sysctl to prevent kernel info leaks.
Apr 16 2020, 12:04 PM · Debian version 11 codename Bullseye, Whonix 15, Whonix, security-misc
Patrick triaged T984: convert /etc/sysctl.d to /etc/default/grub.d kernel Linux boot cmdline as Normal priority.
Apr 16 2020, 9:29 AM · Whonix, Debian version 11 codename Bullseye

Mar 11 2020

Patrick triaged T968: Bullseye: live-boot needs GRUB_DISABLE_LINUX_UUID="true" parameter in /etc/grub.d/11_linux_live as Normal priority.
Mar 11 2020, 1:14 PM · Debian version 11 codename Bullseye, live-mode, Whonix

Oct 10 2019

HulaHoop renamed T931: Testing tpm2-pkcs11with KVM vTPM 2.0 from Testing tpm2-pk11 with KVM vTPM 2.0 to Testing tpm2-pkcs11with KVM vTPM 2.0.
Oct 10 2019, 1:54 PM · Whonix, Debian version 11 codename Bullseye
HulaHoop removed a project from T931: Testing tpm2-pkcs11with KVM vTPM 2.0: packaging.
Oct 10 2019, 1:50 PM · Whonix, Debian version 11 codename Bullseye
HulaHoop claimed T931: Testing tpm2-pkcs11with KVM vTPM 2.0.
Oct 10 2019, 1:49 PM · Whonix, Debian version 11 codename Bullseye
HulaHoop renamed T931: Testing tpm2-pkcs11with KVM vTPM 2.0 from Packaging for tpm2-pk11 to Testing tpm2-pk11 with KVM vTPM 2.0.
Oct 10 2019, 1:49 PM · Whonix, Debian version 11 codename Bullseye
HulaHoop added a comment to T931: Testing tpm2-pkcs11with KVM vTPM 2.0.

Already packaged in Debian but is currently orphaned and needs a maintainer accoridng to its ex-maintainer:

Oct 10 2019, 1:47 PM · Whonix, Debian version 11 codename Bullseye

Oct 7 2019

HulaHoop updated the task description for T931: Testing tpm2-pkcs11with KVM vTPM 2.0.
Oct 7 2019, 9:29 PM · Whonix, Debian version 11 codename Bullseye
HulaHoop updated the task description for T931: Testing tpm2-pkcs11with KVM vTPM 2.0.
Oct 7 2019, 9:13 PM · Whonix, Debian version 11 codename Bullseye
HulaHoop updated the task description for T931: Testing tpm2-pkcs11with KVM vTPM 2.0.
Oct 7 2019, 7:40 PM · Whonix, Debian version 11 codename Bullseye
HulaHoop updated the task description for T931: Testing tpm2-pkcs11with KVM vTPM 2.0.
Oct 7 2019, 7:28 PM · Whonix, Debian version 11 codename Bullseye

Oct 5 2019

HulaHoop added a comment to T931: Testing tpm2-pkcs11with KVM vTPM 2.0.

TPM hw not working. Troubleshooting thread:

Oct 5 2019, 3:10 PM · Whonix, Debian version 11 codename Bullseye

Oct 4 2019

HulaHoop updated the task description for T931: Testing tpm2-pkcs11with KVM vTPM 2.0.
Oct 4 2019, 4:06 PM · Whonix, Debian version 11 codename Bullseye
HulaHoop updated the task description for T931: Testing tpm2-pkcs11with KVM vTPM 2.0.
Oct 4 2019, 2:33 PM · Whonix, Debian version 11 codename Bullseye
HulaHoop triaged T931: Testing tpm2-pkcs11with KVM vTPM 2.0 as Normal priority.
Oct 4 2019, 2:22 PM · Whonix, Debian version 11 codename Bullseye

Aug 17 2019

Patrick created T927: port to /etc/apparmor.d/abstractions/base.d in Debian 11 bullseye.
Aug 17 2019, 7:15 AM · Whonix, Debian version 11 codename Bullseye

Jul 27 2019

Patrick added a project to T803: coyIM: Debian version 11 codename Bullseye.
Jul 27 2019, 11:27 AM · Debian version 11 codename Bullseye, Whonix 16, anon-meta-packages, Whonix

Jul 11 2019

Patrick created T924: rename to bullseye-security.
Jul 11 2019, 7:12 AM · anon-apt-sources-list, Debian version 11 codename Bullseye, Whonix

Apr 6 2019

Patrick renamed T606: merge /etc/apparmor.d/abstractions/base.anondist from Debian bullseye from merge /etc/apparmor.d/abstractions/base.anondist from Debian buster to merge /etc/apparmor.d/abstractions/base.anondist from Debian bullseye.
Apr 6 2019, 2:34 PM · Debian version 11 codename Bullseye, AppArmor, Whonix

Feb 4 2017

Patrick created Debian version 11 codename Bullseye.
Feb 4 2017, 5:11 PM