msw/CISS.debian.live.builder
SHA256
2
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 6 Wiki Activity

V8.13.512.2025.11.27
Some checks failed
💙 Generating a PUBLIC Live ISO. / 💙 Generating a PUBLIC Live ISO. (push) Has been cancelled
Details
🔐 Generating a Private Live ISO TRIXIE. / 🔐 Generating a Private Live ISO TRIXIE. (push) Has been cancelled
Details
🛡️ Retrieve DNSSEC status of coresecret.dev. / 🛡️ Retrieve DNSSEC status of coresecret.dev. (push) Successful in 1m6s
Details
🛡️ Shell Script Linting / 🛡️ Shell Script Linting (push) Successful in 1m47s
Details

Browse Source 
Signed-off-by: Marc S. Weidner <msw@coresecret.dev>
This commit is contained in:
Marc S. Weidner
2025-11-27 08:26:12 +00:00
parent 15dcd0b107
commit 60374476ab
250 changed files with 1253 additions and 986 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
docs/AUDIT_DNSSEC.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. DNSSEC Status

2
docs/AUDIT_HAVEGED.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. Haveged Audit on Netcup RS 2000 G11

2
docs/AUDIT_LYNIS.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. Lynis Audit:

2
docs/AUDIT_SSH.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. SSH Audit by ssh-audit.com

2
docs/AUDIT_TLS.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. TLS Audit:
````text

2
docs/BOOTPARAMS.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. Hardened Kernel Boot Parameters

7
docs/CHANGELOG.md
View File

@@ -8,10 +8,15 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. Changelog
## V8.13.512.2025.11.27
* **Global**: Transition of license agreements to:
* [CCLA-1.1.txt](LICENSES/CCLA-1.1.txt)
* [CNCL-1.1.txt](LICENSES/CNCL-1.1.txt)
## V8.13.512.2025.11.26
* **Global**: Final adjustments for LUKS dm-integrity integration

2
docs/CNET.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. Centurion Net - Developer Branch Overview

2
docs/CODING_CONVENTION.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. Coding Style

2
docs/CONTRIBUTING.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. Contributing / participating

2
docs/CREDITS.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. Credits

2
docs/DL_PUB_ISO.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. Download the latest PUBLIC CISS.debian.live.ISO

6
docs/DOCUMENTATION.md
View File

@@ -8,14 +8,14 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2.1. Usage
````text
CDLB(1) CISS.debian.live.builder CDLB(1)
CISS.debian.live.builder from https://git.coresecret.dev/msw
Master V8.13.512.2025.11.26
Master V8.13.512.2025.11.27
A lightweight Shell Wrapper for building a hardened Debian Live ISO Image.
(c) Marc S. Weidner, 2018 - 2025
@@ -146,7 +146,7 @@ A lightweight Shell Wrapper for building a hardened Debian Live ISO Image.
💷 Please consider donating to my work at:
🌐 https://coresecret.eu/spenden/
V8.13.512.2025.11.26 2025-11-06 CDLB(1)
V8.13.512.2025.11.27 2025-11-06 CDLB(1)
````
# 3. Booting

84
docs/LICENSES/CCLA-1.0.md
View File

@@ -1,84 +0,0 @@
# SPDX-License-Identifier: LicenseRef-CCLA-1.0
# Centurion Commercial License Agreement 1.0
## **1. General Terms**
1.1. This Subscription License Agreement ("Agreement") governs the commercial use of the Software ("Software").
1.2. Private and open-source usage of the Software remains governed by the EUPL-1.2 license.
1.3. By purchasing and using the Software under this Agreement, you ("Licensee") agree to the terms outlined below.
1.4. Only the English version of this Agreement shall be legally binding. Translations are provided for convenience only.
## **2. Grant of License**
2.1. Subject-to-payment of applicable subscription fees, Licensor grants Licensee a
- non-exclusive,
- non-transferable,
- time-limited,
right to use the Software for commercial purposes.
2.2. This license is valid only for the duration of the subscription period and under the scope defined in this Agreement.
## **3. Subscription Fees and Payment**
3.1. Licensee agrees to pay the subscription fees as specified in the pricing agreement. These fees are non-refundable.
3.2. Licensor reserves the right to modify subscription fees upon 30 days' written notice.
## **4. Restrictions**
4.1. Licensee shall not:
- Distribute, sublicense, or resell the Software.
- Reverse engineer, decompile, or modify the Software, except as permitted by mandatory law.
4.2. The Software may not be used for illegal or unethical purposes.
## **5. Support and Updates**
5.1. Licensor will provide updates and support for the Software during the subscription period, as detailed in the accompanying
support agreement.
5.2. Support services may include bug fixes, patches, and minor updates. Major updates may incur additional fees.
## **6. Termination**
6.1. This Agreement is valid for the subscription term unless terminated earlier:
- By Licensee, with a 30-day written notice.
- By Licensor, in the event of Licensees breach of this Agreement.
6.2. Upon termination, Licensee must cease all uses of the Software and delete all copies.
## **7. Liability and Warranty**
7.1. The Software is provided "as is" without warranties of any kind, except as required by law.
7.2. Licensors' liability is limited to the number of subscription fees paid by Licensee in the preceding 12 months.
## **8. Governing Law**
8.1. This Agreement shall be governed by the laws of Portugal.
8.2. Disputes arising under this Agreement shall be subject to the exclusive jurisdiction of the courts of Portugal.
## **9. Miscellaneous**
9.1. Any changes to this Agreement must be in writing and signed by both parties.
9.2. If any provision of this Agreement is found invalid, the remaining provisions shall remain enforceable.
## 10. **Contact Information**
* Licensor : Centurion Intelligence Consulting Agency
* Email : legal@coresecret.eu
---
This Subscription License Agreement was last updated at 09.05.2025.
<!-- vim: set number et ts=2 sw=2 sts=2 ai tw=128 ft=markdown -->

5
docs/LICENSES/CCLA-1.0.spdx
View File

@@ -1,5 +0,0 @@
SPDX-License-Identifier: LicenseRef-CCLA-1.0
SPDX-FileCopyrightText: 2024-2025 Centurion Intelligence Consulting Agency
LicenseRef-CCLA-1.0 is a custom Commercial License Agreement used for projects maintained by Centurion Intelligence Consulting Agency.
The full license text can be found at: https://coresecret.eu/imprint/licenses/ or in the same directory: CCLA-1.0.md

5
docs/LICENSES/CCLA-1.1.spdx Normal file
View File

@@ -0,0 +1,5 @@
SPDX-License-Identifier: LicenseRef-CCLA-1.1
SPDX-FileCopyrightText: 2025 Centurion Intelligence Consulting Agency
LicenseRef-CCLA-1.1 is a custom Commercial License Agreement used for projects maintained by Centurion Intelligence Consulting Agency.
The full license text can be found at: https://coresecret.eu/imprint/licenses/#ccla11 or in the same directory: CCLA-1.1.txt

176
docs/LICENSES/CCLA-1.1.txt Normal file
View File

@@ -0,0 +1,176 @@
# SPDX-License-Identifier: LicenseRef-CCLA-1.1
Centurion Commercial License Agreement 1.1 (CCLA-1.1)
CCLA © Centurion Intelligence Consulting Agency, 2025
Version 1.1, 27.11.2025
1. General Terms
1.1. This Subscription License Agreement ("Agreement") governs the commercial use of the Centurion software, scripts, configuration files and related materials (the "Software").
1.2. Non-commercial usage of the Software may be governed by the Centurion Non-Commercial License 1.1 (CNCL-1.1) or, where expressly indicated, by the European Union Public License (EUPL-1.2) or other applicable open-source licenses. This Agreement applies only to the commercial use of the Software as defined herein.
1.3. By purchasing and using the Software under this Agreement, you ("Licensee") agree to the terms outlined below.
1.4. Only the English version of this Agreement shall be legally binding. Translations are provided for convenience only.
2. Grant of License
2.1. Subject to payment of applicable subscription fees, Licensor grants Licensee a
- non-exclusive,
- non-transferable,
- time-limited,
right to use the Software for commercial purposes within the scope defined in this Agreement.
2.2. This license is valid only for the duration of the subscription period and for the number of installations, instances, environments, or users specified in the applicable ordering or pricing document.
2.3. No ownership rights in the Software are transferred to Licensee under this Agreement. All rights not expressly granted herein are reserved by Licensor.
3. Subscription Fees and Payment
3.1. Licensee agrees to pay the subscription fees as specified in the applicable pricing or order agreement. These fees are non-refundable, except where mandatory law
requires otherwise.
3.2. Licensor reserves the right to modify subscription fees upon thirty (30) days written notice for renewal terms. Fee changes shall not affect the current, already paid subscription term.
4. Restrictions
4.1. Except as expressly permitted by this Agreement or by mandatory law, Licensee shall not:
- distribute, sublicense, rent, lease, or resell the Software;
- allow any third party to access the Software as a service (including, without limitation, as Software-as-a-Service, hosting or outsourcing solution);
- reverse engineer, decompile, disassemble, or otherwise attempt to derive the source code of the Software, except to the extent that such activity is expressly permitted by mandatory applicable law;
- remove or alter any copyright, trademark or other proprietary notices in or on the Software.
4.2. The Software may not be used for illegal or unethical purposes or in violation of applicable law.
5. Support and Updates
5.1. Licensor will provide updates and support for the Software during the subscription period, as detailed in the accompanying support or service level agreement, if any.
5.2. Support services may include bug fixes, patches, security updates, and minor enhancements. Major new versions or additional features may be subject to separate fees or subscription tiers.
5.3. Licensor does not warrant that any particular bug or issue will be fixed, nor that updates will be provided at specific times, unless expressly agreed in a separate written support agreement.
6. Term and Termination
6.1. This Agreement is valid for the subscription term specified in the applicable order and shall automatically terminate at the end of such a term unless renewed.
6.2. Licensee may terminate this Agreement for convenience with thirty (30) days written notice, provided that fees already paid remain non-refundable.
6.3. Licensor may terminate this Agreement with immediate effect upon written notice if:
- Licensee is in material breach of this Agreement (including but not limited to non-payment of fees or violation of the license restrictions), and fails to cure such breach within a reasonable cure period set by Licensor; or
- Licensee becomes subject to insolvency, bankruptcy, liquidation, or similar proceedings, to the extent permitted by applicable law.
6.4. Upon termination or expiry of this Agreement for any reason, Licensee must cease all uses of the Software and delete all copies of the Software in its possession or control. At Licensors' request, Licensee shall confirm such deletion in writing.
6.5. Sections, which by their nature are intended to survive termination (including but not limited to Sections 6.4, 7, 8, 9, 10, 11, and 12) shall remain in full force
and effect.
7. Warranty Disclaimer
7.1. THE SOFTWARE IS PROVIDED "AS IS" AND "AS AVAILABLE", WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, WHETHER EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE, INCLUDING BUT NOT LIMITED TO ANY IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, ACCURACY, OR THAT THE SOFTWARE WILL BE ERROR-FREE, SECURE, OR UNINTERRUPTED.
7.2. LICENSEE ACKNOWLEDGES THAT COMPLEX SOFTWARE CANNOT BE GUARANTEED TO BE FREE OF DEFECTS OR VULNERABILITIES. LICENSEE IS SOLELY RESPONSIBLE FOR IMPLEMENTING ADEQUATE BACKUP, REDUNDANCY, SECURITY, AND RISK-MITIGATION MEASURES.
7.3. SOME JURISDICTIONS DO NOT ALLOW THE EXCLUSION OF CERTAIN IMPLIED WARRANTIES. TO THE EXTENT THAT SUCH MANDATORY RULE APPLIES, THE FOREGOING EXCLUSIONS SHALL APPLY ONLY TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW.
8. High-Risk Environments and Safety-Critical Use
8.1. The Software has not been designed, tested, certified, or intended for use in safety-critical or high-risk environments or systems, including but not limited to:
(a) operation or control of nuclear facilities, nuclear reactors, nuclear fuel cycle facilities, or radioactive waste management facilities;
(b) aircraft navigation, flight control systems, air traffic control systems or similar aviation safety systems;
(c) railway signaling systems, mass transit control systems, or other public transportation control systems;
(d) medical devices, diagnostic systems, life-support systems, implantable medical devices, or other systems whose failure could directly endanger human life;
(e) industrial control systems for critical infrastructure, including but not limited to electric power generation, transmission or distribution systems, gas or oil pipelines, chemical plants, water treatment or water supply systems, and dams;
(f) military command-and-control systems, weapons systems, or weapons platforms;
(g) any other environment or system where a failure, malfunction, or incorrect operation of the Software could reasonably be expected to result in death, personal injury, severe physical or environmental damage, or significant disruption of essential public services.
8.2. This list is illustrative and not exhaustive. It is the sole responsibility of the Licensee to assess whether a given use case constitutes a safety-critical or high-risk environment within the meaning of this Section.
8.3. Licensee shall not use, and shall not permit any third party to use, the Software in any of the environments or systems described in Section 8.1 or in any similar safety-critical or high-risk environment, unless such a use has been expressly approved in a separate written agreement with Licensor.
8.4. If Licensee nevertheless uses the Software in such environments or systems, Licensee does so entirely at its own risk and responsibility. In such cases, Licensee shall ensure appropriate redundancy, fail-safe mechanisms, risk mitigation, and independent verification and validation, and shall fully indemnify and hold harmless the Licensor from any claims, damages, or losses arising out of or related to such a use, to the maximum extent permitted by applicable law.
9. Limitation of Liability
9.1. Except in cases of wilful misconduct or damage directly caused to natural persons, the Licensor shall in no event be liable, on any legal ground, for any direct or indirect, material or non-material damages arising out of or in connection with this Agreement or the use or inability to use the Software, including, without limitation, loss of goodwill, loss of profits, loss of revenue, loss of data, business interruption, computer failure or malfunction, or any type of economic loss. However, the Licensor remains liable under any applicable mandatory statutory product liability regime and other mandatory provisions of applicable law.
9.2. To the extent that applicable law does not permit the exclusion of certain types of damages or liabilities, such exclusions and limitations shall apply only to the maximum extent permitted by such a law. Nothing in this Agreement shall deprive the Licensee of rights, which cannot be excluded or limited under mandatory law.
9.3. Subject to Sections 9.1 and 9.2 and to the jurisdiction-specific provisions below, the Licensors aggregate liability arising out of or in connection with this Agreement, whether in contract, tort, or otherwise, shall in no event exceed the total amount of subscription fees paid by Licensee to Licensor under this Agreement during the twelve (12) months immediately preceding the event giving rise to the first claim. This limitation shall apply per aggregate of all claims arising from or related to the same event, series of events, or circumstances.
9.4. Additional provisions for Licensees in Germany
9.4.1 If the Licensee has its habitual residence or registered office in Germany, or if German law is mandatorily applicable, the limitations in Sections 9.1 to 9.3 shall be construed in accordance with German law as follows:
(a) The Licensor shall be liable without limitation for damages resulting from injury to life, body, or health caused by its negligent or intentional breach of duty, for damages caused by intentional misconduct (Vorsatz), and under the German Product Liability Act (Produkthaftungsgesetz).
(b) In case of damage caused by gross negligence (grobe Fahrlässigkeit), the Licensor shall be liable in accordance with the statutory provisions; the limitation in Section 9.3 shall not apply to such cases to the extent that statutory law does not permit such limitation.
(c) In case of damage caused by simple negligent breach of an essential contractual obligation (Kardinalpflicht), the Licensors liability shall be limited to the typical, foreseeable damage and, in any event, shall not exceed the amount specified in Section 9.3.
(d) In all other cases of simple negligence, the Licensor shall not be liable.
9.4.2 Any further mandatory statutory rights of the Licensee under German law remain unaffected.
9.5. Additional provisions for Licensees in Portugal
9.5.1 If the Licensee has its habitual residence or registered office in Portugal, or if Portuguese law is mandatorily applicable, the limitations in Sections 9.1 to 9.3 shall be construed in accordance with Portuguese law as follows:
(a) The Licensors' liability for death or personal injury and for losses caused by wilful misconduct (dolo) or gross negligence (negligência grave / negligência grosseira) shall not be excluded or limited.
(b) For losses caused by simple negligence, the Licensors liability may be limited or excluded in accordance with Sections 9.1 to 9.3, subject to mandatory provisions of Portuguese law.
(c) Any mandatory liability under the Portuguese product liability regime or other mandatory provisions remains unaffected.
9.6. Additional provisions for Licensees in the United States
9.6.1 If this Agreement is governed by the law of a state of the United States or if a court in such a state applies its mandatory law, the following shall apply:
(a) Nothing in this Agreement shall exclude or limit liability for death or personal injury where such exclusion or limitation would be unlawful, or for wilful misconduct or fraud.
(b) To the maximum extent permitted by applicable law, the Licensor shall not be liable for any indirect, incidental, special, consequential, or punitive damages, or for any loss of profits, revenue, business, goodwill, or data, even if the Licensor has been advised of the possibility of such damages.
(c) Subject to subparagraph (a), any remaining liability of the Licensor shall be limited in accordance with Sections 9.1 to 9.3 and to the maximum extent permitted under applicable state law.
9.7. Where different mandatory laws apply simultaneously, the limitations and exclusions of this Article shall be interpreted in a manner that gives effect to the maximum permissible limitation of the Licensors liability without depriving the Licensee of any rights that are mandatory under such laws.
10. Limitation Periods
10.1. Any claim by Licensee arising out of or in connection with this Agreement (other than claims for which liability cannot be limited or excluded under mandatory law) must be brought before the competent court within twelve (12) months after the date on which Licensee became aware, or should reasonably have become aware, of the relevant breach and the resulting damage. After the expiry of this period, such claims shall be time-barred, to the maximum extent permitted by applicable law.
10.2. The limitation period in Section 10.1 shall not apply to claims based on:
(a) injury to life, body, or health;
(b) wilful misconduct (and, where mandatory law so requires, gross negligence);
(c) fraudulent concealment of a defect or breach; or
(d) liability under mandatory product liability statutes or other mandatory provisions, which prohibit such contractual limitation.
11. Governing Law
11.1. This Agreement shall be governed by and construed in accordance with the laws of Portugal, excluding its conflict-of-law rules.
11.2. Any disputes arising out of or in connection with this Agreement shall be subject to the exclusive jurisdiction of the competent courts of Portugal, without
prejudice to any mandatory jurisdiction rules that may apply in favor of Licensee under applicable law.
12. Miscellaneous
12.1. This Agreement constitutes the entire agreement between Licensor and Licensee with respect to the commercial use of the Software and supersedes all prior or contemporaneous understandings, whether written or oral, relating to such subject.
12.2. Any changes or amendments to this Agreement must be in writing and signed by both parties.
12.3. If any provision of this Agreement is found invalid or unenforceable by a court of competent jurisdiction, such provision shall be enforced to the maximum extent permissible, and the remaining provisions shall remain in full force and effect.
12.4. The failure of Licensor to enforce any right or provision of this Agreement shall not constitute a waiver of such right or provision.
13. Contact Information
Licensor : Centurion Intelligence Consulting Agency
Email : legal@coresecret.eu

5
docs/LICENSES/CNCL-1.1.spdx Normal file
View File

@@ -0,0 +1,5 @@
SPDX-License-Identifier: LicenseRef-CNCL-1.1
SPDX-FileCopyrightText: 2025 Centurion Intelligence Consulting Agency
LicenseRef-CNCL-1.1 is a custom Non-Commercial License Agreement used for projects maintained by Centurion Intelligence Consulting Agency.
The full license text can be found at: https://coresecret.eu/imprint/licenses/#cncl11 or in the same directory: CNCL-1.1.txt

185
docs/LICENSES/CNCL-1.1.txt Normal file
View File

@@ -0,0 +1,185 @@
# SPDX-License-Identifier: LicenseRef-CNCL-1.1
Centurion Non-Commercial License 1.1 (CNCL-1.1)
CNCL © Centurion Intelligence Consulting Agency, 2025
Version 1.1, 27.11.2025
1. Definitions
1.1. "Software" means the software, scripts, configuration files, and related materials made available under this Centurion Non-Commercial License 1.1 ("Agreement"), including any associated documentation.
1.2. "Licensor" means Centurion Intelligence Consulting Agency or any subsequent rights holder explicitly identified as licensor of the Software.
1.3. "Licensee" means any natural or legal person who obtains, uses, copies, modifies, or distributes the Software under this Agreement.
1.4. "Non-Commercial Use" means any use that is not intended for or directed toward commercial advantage or monetary compensation. This includes personal, academic, research, educational, hobbyist, and internal evaluation use, provided that no products or services based on the Software are offered against payment or other commercial consideration.
1.5. "Commercial Use" means any use of the Software, in whole or in part, that is intended for or directed toward commercial advantage or monetary compensation, including but not limited to:
(a) use of the Software to provide paid services (including Software-as-a-Service), or
(b) inclusion of the Software in products or solutions that are sold, licensed, or otherwise monetized, or
(c) use of the Software in the course of business operations of a commercial entity where the Software contributes to revenue generation, cost reduction, or other commercial benefit,
Except for limited internal evaluation as described in Section 1.4.
2. Scope of this Agreement
2.1. This Agreement governs the use, modification, and distribution of the Software for Non-Commercial Use only.
2.2. Commercial Use of the Software is not permitted under this Agreement. Any Commercial Use requires a separate written license agreement, such as the Centurion Commercial License Agreement (CCLA-1.0), concluded directly with the Licensor.
2.3. Only the English version of this Agreement shall be legally binding. Translations are provided for convenience only.
3. Grant of License (Non-Commercial)
3.1. Subject to the terms and conditions of this Agreement, Licensor grants Licensee a worldwide, royalty-free, non-exclusive, non-transferable, and non-sublicensable right to:
(a) use the Software for Non-Commercial Use;
(b) copy the Software for backup, archival, and Non-Commercial Use;
(c) modify the Software for Non-Commercial Use; and
(d) distribute the Software and derivative works thereof solely for Non-Commercial Use, provided that the conditions in Section 4 are fulfilled.
3.2. No rights are granted for Commercial Use under this Agreement.
4. Conditions for Redistribution and Modifications
4.1. Any redistribution of the Software, whether modified or unmodified, must:
(a) be restricted to Non-Commercial Use only;
(b) include a copy of this Agreement in full;
(c) retain all copyright notices, author attributions, and license notices contained in the original Software; and
(d) clearly indicate any changes made to the Software, including at least a notice such as "This file has been modified by [name] on [date]."
4.2. Licensee may not misrepresent the origin of the Software. Modifications must not be presented as the original Software.
4.3. If Licensee distributes derivative works based on the Software, such derivative works must be licensed under terms that are at least as restrictive as this Agreement with respect to Non-Commercial Use, and the prohibition of Commercial Use, and must not grant any permissions that conflict with this Agreement.
4.4. Licensee shall not impose additional restrictions that would limit the rights granted by this Agreement for Non-Commercial Use.
5. Prohibition of Commercial Use
5.1. Licensee shall not engage in Commercial Use of the Software under this Agreement.
5.2. Without limiting the generality of the foregoing, Licensee shall not:
(a) sell, license, rent, lease, or otherwise monetize the Software;
(b) use the Software to provide paid consulting, hosting, integration, or support services where the Software is a significant component of the provided service;
(c) deploy the Software as part of any production system, product, or service offered to third parties for payment or other commercial consideration.
5.3. Any Commercial Use requires a separate, valid commercial license agreement with the Licensor, such as the Centurion Commercial License Agreement 1.0 (CCLA-1.0). In the event of conflict between this Agreement and such a commercial agreement, the terms of the commercial agreement shall prevail for the scope of Commercial Use.
6. No Sublicensing for Commercial Use
6.1. Licensee is not permitted to grant sublicenses for Commercial Use of the Software under this Agreement.
6.2. Any attempt by a Licensee to grant rights for Commercial Use under this Agreement shall be null and void.
7. No Endorsement
7.1. Nothing in this Agreement shall be construed as permitting Licensee to use the name, trademarks, service marks, or logos of the Licensor or any contributor, except as required for reasonable and customary use in describing the origin of the Software.
8. High-Risk Environments and Safety-Critical Use
8.1. The Software has not been designed, tested, certified, or intended for use in safety-critical or high-risk environments or systems, including but not limited to:
(a) operation or control of nuclear facilities, nuclear reactors, nuclear fuel cycle facilities, or radioactive waste management facilities;
(b) aircraft navigation, flight control systems, or air traffic control systems;
(c) railway signaling systems, mass transit control systems, or other public transportation control systems;
(d) medical devices, diagnostic systems, life-support systems, or implantable medical devices;
(e) industrial control systems for critical infrastructure, including but not limited to electric power generation, transmission or distribution systems, gas or oil pipelines, chemical plants, water treatment or water supply systems, and dams;
(f) military command-and-control systems, weapons systems, or weapons platforms;
(g) any other environment or system where a failure, malfunction, or incorrect operation of the Software could reasonably be expected to result in death, personal injury, severe physical or environmental damage, or significant disruption of essential public services.
8.2. This list is illustrative and not exhaustive. It is the sole responsibility of the Licensee to assess whether a given use case constitutes a safety-critical or high-risk environment within the meaning of this Section.
8.3. Licensee shall not use, and shall not permit any third party to use the Software in any of the environments or systems described in Section 8.1 or in any similar safety-critical or high-risk environment.
8.4. If Licensee nevertheless uses the Software in such environments or systems, Licensee does so entirely at its own risk and responsibility. In such cases,
Licensee shall ensure appropriate redundancy, fail-safe mechanisms, risk mitigation, and independent verification and validation, and shall fully indemnify and hold harmless the Licensor from any claims, damages, or losses arising out of or related to such a use.
9. Warranty Disclaimer
9.1. THE SOFTWARE IS PROVIDED "AS IS" AND "AS AVAILABLE", WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, WHETHER EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE,
INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, OR THAT THE SOFTWARE WILL BE ERROR-FREE
OR SECURE.
9.2. LICENSEE ASSUMES ALL RISKS ASSOCIATED WITH THE USE OF THE SOFTWARE. LICENSOR DOES NOT WARRANT THAT THE SOFTWARE WILL MEET LICENSEES' REQUIREMENTS OR EXPECTATIONS.
10. Limitation of Liability
10.1 Except in cases of wilful misconduct or damage directly caused to natural persons, the Licensor shall in no event be liable, on any legal ground, for any direct or indirect, material or non-material damages arising out of or in connection with this Agreement or the use or inability to use the Software, including, without limitation, loss of goodwill, business interruption, computer failure or malfunction, loss of data, or any type of economic loss. However, the Licensor remains liable under any applicable mandatory statutory product liability regime and other mandatory provisions of applicable law.
10.2 To the extent that applicable law does not permit the exclusion of certain types of damages or liabilities, such exclusions and limitations shall apply only to the maximum extent permitted by such a law. Nothing in this Agreement shall deprive the Licensee of rights, which cannot be excluded or limited under mandatory law.
10.3 Additional provisions for Licensees in Germany
10.3.1 If the Licensee has its habitual residence or registered office in Germany, or if German law is mandatorily applicable, the limitations in sections 10.1 and 10.2 shall be construed in accordance with German law as follows:
(a) The Licensor shall be liable without limitation for damages resulting from injury to life, body, or health caused by its negligent or intentional breach of duty, for damages caused by intentional misconduct or gross negligence, and under the German Product Liability Act (Produkthaftungsgesetz).
(b) In case of damage caused by simple negligent breach of an essential contractual obligation (Kardinalpflicht), the Licensors liability shall be limited to the typical, foreseeable damage.
(c) In all other cases of simple negligence, the Licensor shall not be liable.
10.3.2 Any further mandatory statutory rights of the Licensee under German law remain unaffected.
10.4 Additional provisions for Licensees in Portugal
10.4.1 If the Licensee has its habitual residence or registered office in Portugal, or if Portuguese law is mandatorily applicable, the limitations in sections 10.1 and 10.2 shall be construed in accordance with Portuguese law as follows:
(a) The Licensors' liability for death or personal injury and for losses caused by wilful misconduct (dolo) or gross negligence (negligência grave / negligência grosseira) shall not be excluded or limited.
(b) For losses caused by simple negligence, the Licensors' liability may be limited or excluded in accordance with sections 10.1 and 10.2, subject to mandatory provisions of Portuguese law.
(c) Any mandatory liability under the Portuguese product liability regime or other mandatory provisions remains unaffected.
10.5 Additional provisions for Licensees in the United States
10.5.1 If this Agreement is governed by the law of a state of the United States or if a court in such a state applies its mandatory law, the following shall apply:
(a) Nothing in this Agreement shall exclude or limit liability for death or personal injury where such exclusion or limitation would be unlawful, or for wilful misconduct or fraud.
(b) To the maximum extent permitted by applicable law, the Licensor shall not be liable for any indirect, incidental, special, consequential, or punitive damages, or for any loss of profits, revenue, business, goodwill, or data, even if the Licensor has been advised of the possibility of such damages.
(c) Subject to subparagraph (a), any remaining liability of the Licensor shall be limited to the maximum extent permitted under applicable state law.
10.6 Where different mandatory laws apply simultaneously, the limitations and exclusions of this Article shall be interpreted in a manner that gives effect to the maximum permissible limitation of the Licensors liability without depriving the Licensee of any rights that are mandatory under such laws.
11. Term and Termination
11.1. This Agreement becomes effective for Licensee upon first obtaining or using the Software under this Agreement.
11.2. This Agreement shall remain in force until terminated in accordance with this Section.
11.3. Licensor may terminate this Agreement with respect to Licensee immediately upon written notice if Licensee breaches any material provision of this Agreement, including but not limited to the prohibition of Commercial Use.
11.4. Upon termination of this Agreement, Licensee shall immediately cease all use of the Software and destroy all copies of the Software in Licensees
possession or control.
11.5. Termination of this Agreement shall not affect any rights or obligations that, by their nature, are intended to survive termination, including but
not limited to Sections 8, 9, 10, 11, and 12.
12. Governing Law and Jurisdiction
12.1. This Agreement shall be governed by and construed in accordance with the laws of Portugal, excluding its conflict-of-law rules.
12.2. Any disputes arising out of or in connection with this Agreement shall be subject to the exclusive jurisdiction of the competent courts of Portugal.
13. Miscellaneous
13.1. This Agreement constitutes the entire agreement between Licensor and Licensee with respect to the Non-Commercial Use of the Software and supersedes all
prior or contemporaneous understandings, whether written or oral, relating to such a subject.
13.2. Any modification or amendment of this Agreement must be in writing and signed by the Licensor.
13.3. If any provision of this Agreement is held to be invalid or unenforceable by a court of competent jurisdiction, such provision shall be enforced to
the maximum extent permissible, and the remaining provisions shall remain in full force and effect.
13.4. The failure of Licensor to enforce any right or provision of this Agreement shall not constitute a waiver of such right or provision.
14. Contact Information
Licensor : Centurion Intelligence Consulting Agency
Email : legal@coresecret.eu

2
docs/MAN_CISS_ISO_BOOT_CHAIN.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. CISS.debian.live.builder Boot & Trust Chain (Technical Documentation)

2
docs/MAN_SSH_Host_Key_Policy.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. SSH Host Key Policy CISS.debian.live.builder / CISS.debian.installer

2
docs/REFERENCES.md
View File

@@ -8,7 +8,7 @@ include_toc: true
**Centurion Intelligence Consulting Agency Information Security Standard**<br>
*Debian Live Build Generator for hardened live environment and CISS Debian Installer*<br>
**Master Version**: 8.13<br>
**Build**: V8.13.512.2025.11.26<br>
**Build**: V8.13.512.2025.11.27<br>
# 2. Resources