CISS.debian.live.builder/docs/CHANGELOG.md

Table of Contents

• 1. CISS.debian.live.builder
• 2. Changelog
• V8.03.768.2025.06.09
• V8.03.644.2025.06.07
• V8.03.512.2025.06.06
• V8.03.400.2025.06.05

1. CISS.debian.live.builder

Centurion Intelligence Consulting Agency Information Security Standard
Debian Live Build Generator for hardened live environment and CISS Debian Installer
Master Version: 8.03
Build: V8.03.768.2025.06.09

2. Changelog

V8.03.768.2025.06.09

• Added: f2bchk.sh
• Updated: alias
  • scurl()
  • swget()

V8.03.644.2025.06.07

• Updated workflows ISO Generators Runners.
• Installing bookworm-backports Versions of:
  • btrfs-progs
  • curl
  • debootstrap
  • iproute2
  • ncat
  • nmap
  • ssh
  • systemd
  • systemd-sysv
  • whois
• Changed default: /etc/login.defs LOGIN_TIMEOUT 60 to: LOGIN_TIMEOUT 180
• LIVE ISO generated by workflow tested against:
  • Netcup Root Server
  • Proxmox
• LIVE ISO generated by script tested against:
  • Netcup Root Server

V8.03.512.2025.06.06

• Updated workflows:

  1. git stash push
  2. git fetch origin master
  3. git merge --no-edit origin/master
  4. git stash pop

• Changed workflows ISO Generators routines 🛠️ Build GnuPG from the sources, as the Bookworm GPG does not understand key format 5.

  • added wget --https-only flag
  • added verification step

V8.03.400.2025.06.05

• The workflow ISO Generators image was changed to debian:bookworm.
• Added a LIVE ISO workflow routine to build GnuPG from sources, since Bookworm GPG does not recognize key format 5.
• Changed verbosity of:
  • 9993_aide.chroot
  • 9997_debsums.chroot
• Added basic linter checks for:
  • *.sh,
  • *.zsh,
  • *.chroot,
  • all files with Shebang #! for:
    • Windows CRLF line endings
    • unauthorized control characters (C0 control characters except \t, \n)
    • non-ASCII (ambiguous UTF) characters
  • linter_char_scripts.yaml

---

no tracking | no logging | no advertising | no profiling | no bullshit