* Update security.md
All edits are recorded by line:
7 replaced “:” with “.”
11 deleted “;” after “significant”; added “the” after “reduces”; put “()” around “only if it dramatically reduces the risk for the company, customers, or open source users”
18 deleted “,” before “as”; deleted “,” after “baseline”
19 corrected capitalization; added punctuation
20 corrected capitalization; added punctuation
21 corrected capitalization; added punctuation
27 deleted “which” before “applies”, replaced “Fleet owned” with “Fleet-owned”; deleted “, and” before “which”; replaced “company owned” with “company-owned”; replaced “of:” with “of the below.”
34 replaced “auto update” with “auto-update”
45 replaced “, which is” with “. This is an”; deleted “ which is” after “Tool)”
46 replaced “settings” with “settings,”
49 replaced “up to date” with “up-to-date”
54 replaced “impact” with “impacts”
57 Replaced “that” with “which”
58 Replaced “major” with “significant”; Replaced “installation” of ” with “installing”; deleted “,” after “release”; Replaced “have remained” with “remain”
68 Replaced “Accurate” with “An accurate”; deleted “:” from end
69 deleted “would” before ”everage”
86 Replaced “ones” with “those”
88 deleted “,” after “sense”
92 Replaced “important” with “critical”
94 Replaced “extremely” with “exceptionally”
125 Replaced “impact” with “impacts”
127 Replaced“Inability” with “The inability”
130 replaced “Gatekeeper” with “Gatekeeper,”
144 Replace: “Stealth” with “stealth”;Replaced “difficult” with “challenging”
147 replaced “impact” with “impacts”
150 Replaced “No” with “There is no”; deleted “-“ after “impact”; added “()” around “macOS encrypts the system drive by default”
158 Replaced “is” with “to be”
161 Replaced “logon” with “login”
167 deleted “,” after “work”
168 Replaced “logon” with “login”
170 replaced “impact” with “impacts”
173 deleted “,” after “MDM”
177 deleted “,” after “secure”
189 Replaced “allowed” with “permitted”; deleted “,” after “Google Drive”
202 deleted “,” after “benefits”
205 replaced “”,” with “,””
221 Replaced “malware related” with “malware-related”
224 replaced “impact” with “impacts”
226 replaced “”,” with “,””; deleted “really” before “have”; replaced “that can be performed” with “to preform”
227 deleted “,” after “site”; deleted “you” before “believe”
228 added punctuation
230 added “are” after “you”; deleted “that” after “remember”; Replaced “different” with “other”; Replace: “doing it” with “it would”
239 deleted “ can be used” after “and”
* Update security.md
line 27 removed "," after "policy
* Update security.md
All edits are recorded by line:
395 replaced “open-source” with “open source”
411 replaced “open-source” with “open source”
439 added “the” before “comment”; replaced “repositories,” with “repositories”
445 deleted “being” before “located”
458 added “and” after “PR”
489 replaced “on” with “in”
493 replaced “open-source” with “open source”; Replaced “privileges,” with “privileges”
* Update security.md
line 479
* Update security.md
added (static analysis tools used to identify problems in code) to line 479
All edits are recorded by line:
526 Replace: “secure,” with “secure”
536 Replace: “1 week” with “1-week”
542 Replace: “the use of” with “using”
546 Replace: “why” with “why,”
547 Replace: “up, .” with “up.”
553 Replace: “Enforcing” with “Implementing”
591 Replace: “workflows,” with “workflows”
593 Replace: “account” with “accounts”; Replace: “account” with “account,”
613 Replace: “on” with “by”; Delete: “as a way” before “to”
614 Replace: “on” with “by”; Replace: “allowed” with “allow”
615 Replace: “on” with “by”
616 Replace: “on” with “by”
617 Replace: “on” with “by”
618 Replace: “on” with “by”
619 Replace: “on” with “by”
620 Replace: “on” with “by”
621 Replace: “on” with “by”; Replace: “features,” with “features”; Replace: “so we can” with “to”
622 Replace: “on” with “by”; Replace: “features,” with “features”; Replace: “so we can” with “to”
623 Replace: “on” with “by”; Replace: “features,” with “features”; Replace: “so we can” with “to”
635 Replace: “separately,” with “separately”; Replace: “level,” with “level”
639 Replace: “that relate” with “related”
655 Add: “the”
656 Add: “the”
658 Add: “the”
672 Replace: “iOS,” with “iOS”
695 Replace: “impacted” with “affected”
All edits are recorded by line:
736 Replace: “".” with “."”
747 Replace: “For” with “We ask for”; Delete: “: we ask” after “researchers”
761 Replace: “this way” with “like this”
779 Replace: “Github” with “GitHub”
780 Replace: “Github” with “GitHub”
781 Replace: “Github” with “GitHub”
797 Replace: “The following Slack channels are maintained by this group” with “This group maintains the following Slack channels”
All edits are recorded by line:
278 replaced “YubiKeys” with “We use YubiKeys because they”
296 corrected capitalization
297 corrected capitalization
298 corrected capitalization; Replaced “needed” with “needed,”
299 corrected capitalization
322 replaced “.You” with “. You”
324 added punctuation
325 added “the” after “open”
336 Replaced“key,” with “key”
344 Replaced “sites” with “sites,”; Replaced “much” with “many”
353 Replaced “the” with “your”; deleted “itself” after “phone”
354 deleted “using” after “than”
360 deleted “both” after “be”
361 Replaced “at the same time” with “simultaneously”
368 Replaced “keys” with “keys,”
371 Replaced “key,” with “key”
377 Replaced “as well as” with “and”
378 Replaced “does support” with “supports”
* Adding hardware security key guide
* Update security.md
Finish sentence...
* Update security.md
Fixed Slack channel names
* Update README.md
Added section to README
* Update security.md
Edited 2FA table + removed info about Titan key since we've picked our model
* Update security.md
All edits are recorded by line:
272 replaced “,” with “.”; deleted “or” before “ask”; added “If you do not have a company card” before “ask”
273 deleted “you” after “get”; deleted “ if you do not have a company card” after “one”
317 added “.” to the end
322 added space before “You”
324 added “.” to the end
336 deleted “,” after “key”
344 added “,” after “sites”; replaced “much” with “many”; replaced “, “ with “ (“
345 added “)” after “keys”
352 replaced “When doing this, you” with “You”
353 replaced “itself” with “when doing this”
354 replaced “the” with “The”
355 deleted “using” after “than”
360 replaced “that being said,” with “Stay mindful that”
365 replaced “IF” with “If”
368 added “,” after “keys”
370 replaced “are” with “find yourself”
371 replaced “You” with “Fleet”; deleted “be” after “will”; replaced “provided” with “provide”; deleted “,” after “key”
378 replaced “does support” with “supports”
379 replaced “to” with “that”
526 added “.” after “YubiKeys”
545 replaced “Privileged” with “Fleet configures privileged”; deleted “ are configured” before “with”
546 replaced “,” with “.”; replaced “which” with “This”; replaced “prevent” with “prevents”
547 replaced “setting” with “set”
548 deleted “, as well as the model we use and why”
* Update security.md
Fixed as per @zwass comments!
Co-authored-by: Desmi-Dizney <99777687+Desmi-Dizney@users.noreply.github.com>
* Adding GitHub security guide
* Update security.md
All edits are recorded by line:
273-275 reworded for clarity.
299 reworded to “Selecting Write provides the perfect balance!”
312 deleted “,” after “discussions”
313 deleted “want to“
317 replaced “into to” with “in too”; deleted “,” after “places”; added hyphen to “security-related”
322 deleted “,” after “configure”
340 replaced “had a need for” with “needed”
345 added “,” after “workflows”
* ccccccujudggihredvcugfctdteubbiteignjjjrfndh
* removedyubisneeze
* Update security.md
I removed the hyphen’s from “open source” in this section. Though the hyphen is correct Mike T. told me it’s a Mike McNeil preference.
All edits are recorded by line:
258 deleted “,” after ”running”
265 replace “as” with “so”; replaced “device” with device's OS “device's OS”
269 replaced “We need to host and collaborate on code as a company making open-source software!” with “Since Fleet makes open source software, we need to host and collaborate on code.”
273 deleted “-“ from “open source’
287 replaced “was” with “were”
290 deleted “:” after “enable”; added italics to “Require two-factor authentication”
293 removed”-“ from “open source”; added “If you can imagine,”
309 added italics to “Write”
326 deleted”,” after “discussions”
* Update security.md
Added a link in the macOS section to point to a blog post on the topic, and finished GitHub security section draft.
* Update security.md
Fixed broken italic
* Update security.md
All edits are recorded by line:
261 deleted “,” after “default”; added “the” before “performance”
262 added “from having”
* Update security.md
All edits are recorded by line:
270 replaced “,” with “;”
274 added “,” after “source”
311 deleted “.” after “creation”; added “,” after “eventually”
313 replaced “be sure” with “ensure”; added “,” after “handbook”
321 added “,” after “example”
327 replaced “it” with “them”
346 added “a pull request”
348 added “a” before “linear”
351 replaced “We have need this” with “We do not have a need this”
377 deleted”,” after “actions”
378 added “,” after “privileges”
384 added “,” after “repositories”
* Update security.md
Made Dependabot explanation clearer
* Update security.md
Removed an extra `that`
* Update security.md
It's dependa*b*ot not dependaot!
Co-authored-by: Desmi-Dizney <99777687+Desmi-Dizney@users.noreply.github.com>
Adding a carriage return before the 2FA table, as the Fleet website requires that for tables to render. Removed the bold heading before and made it simpler as well.
* Adding draft Google Workspace guide
Draft Google Workspace guide with our current setup + modification to the vulnerability management section.
* Accidental CR
Removed accidental CR
* Adding link to new section in readme
* Update security.md
Added something about vulnerability exceptions
* Update security.md
Adjusted to explain we set all Google services to restricted
* Update handbook/security.md
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Update handbook/security.md
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Update handbook/security.md
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Update handbook/security.md
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Update handbook/security.md
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Update handbook/security.md
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Update handbook/security.md
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Update handbook/security.md
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Update security.md
Added two of Mike T's suggestions!
* Update handbook/security.md
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Update handbook/security.md
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Apply suggestions from code review
Committing Mike's suggestions.
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Update security.md
As per Mike's comments
* Minor grammar and punctuation edits.
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
Co-authored-by: Desmi-Dizney <99777687+Desmi-Dizney@users.noreply.github.com>
* [4196] Adding vulnerability management information
This was planned to be published soon, but we have demand for it so decided to get it done this week!
* added line break to README.md
Added a line break between headings in security section of index.
Co-authored-by: Mike Thomas <mthomas@fleetdm.com>
* Creating Security Section
Adding draft of laptop security configuration as well.
* Adding detailed versions
Adding more information about each setting we are adding. Will continue and merge only when the full draft is complete.
* Added all settings from draft policy
Should be all content for macOS. Will add Chrome hardening, clean-up and be ready to merge.
* Added missing benefit to DoH + warning for on-prem
* Fixed typos, added osquery, added chrome
* Apply suggestions from code review
Commit most of Mike's suggestions!
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Apply suggestions from code review
Adding one of Mike's suggestions I had missed.
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
* Updates from PR
Applying some more of Mike's suggestions and fixing a few more on my own.
* Security section
Creating security section in README
* Update handbook/security.md
Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
