Change log

• 2025-10-12
• Added news about VivoBook vulnerability.

• 2025-05-25
• Added html page of hardening procedure, private-etc option commented out: doesn't work with Ubuntu 25.

• 2025-0 3-21
• Added WiFi attacks

• 2025-0 3-12
• Added flatpak and flatseal

• 2025-02-01
• Added item to remove a list of unused network protocols. Reduce attack surface
• Added 3 items to ensure whole system usage of TLS1.3, including apt. May not work for your chosen repository mirror.

• 2025-01-23
• Removed udp 53 firewall rule
• Add restriction to remote access

• 2025-01-04
• Added tighter timeouts for stateful firewall openings.
• Added more verifications for each implemented security control. One has to know if controls are implemented correctly
• Added dpkg-divert’s so that updates will not override our .conf settings. Updates will overwrite settings if this is not set

• 024-12-30
• Ensure your security is Risk based so that you assess what is valuable to you, and implement security in a prioritized way

• 2024-12-24
• Removal of insecure X11 in favor of Wayland
• Added method to disable dangerous peer-to-peer WiFi which allows unauthenticated near by attacks if you live in a apartment

• 2024-12-15
• Risk based defenses

• 2024-12-08
• Added more protection to firefox-common.profile. Added dpkg-divert commands so that our configurations do not get overwritten by updates. Removed 'firefox' from 'apparmor firefox' in firefox-common.profile

• 2024-10-20
• Modem/Router Attacks

• 2024-10-18
• New Firefox about:config settings: min.TLSv1.3 setting and non-negotiable.

• 2024-10-11
• Use a VPN, even at home
• More firefox firejail settings

• 024-09-29
• Added firefox safe settings

Support me a little $2: buymeacoffee.com/fortifiedubuntu.org