Change back to scudo

The glitch in GNOME was probably an unrelated fluke.

Containerfile

@@ -7,11 +7,11 @@ ADD chrony.conf /usr/etc/chrony.conf
 ADD tunables.conf /usr/lib/sysctl.d/tunables.conf
 RUN \
 set -x && \
-# hardened_malloc
-curl --create-dirs -Lo /usr/lib64/libhardened_malloc.so https://github.com/charles8191/hardened_malloc/raw/refs/heads/main/libhardened_malloc-debian.so && \
-chmod +x /usr/lib64/libhardened_malloc.so && \
-echo "/usr/lib64/libhardened_malloc.so" > /etc/ld.so.preload && \
-echo "/usr/lib64/libhardened_malloc.so" > /usr/etc/ld.so.preload && \
+# Scudo
+curl --create-dirs -Lo /usr/lib64/libscudo.so https://github.com/charles8191/scudo/raw/refs/heads/main/libscudo.so && \
+chmod +x /usr/lib64/libscudo.so && \
+echo "/usr/lib64/libscudo.so" > /etc/ld.so.preload && \
+echo "/usr/lib64/libscudo.so" > /usr/etc/ld.so.preload && \
 # Branding
 sed -i 's,centos.org,github.com/charles8191/netherite,g' /usr/lib/os-release && \
 sed -i 's,CentOS Stream,Netherite,g' /usr/lib/os-release && \

README.md

@@ -10,10 +10,10 @@ Netherite is a secure & private operating system based on [Calcite](https://gith
 
 ## Features
 
-- [hardened_malloc](https://github.com/GrapheneOS/hardened_malloc) using [weekly binaries](https://github.com/charles8191/hardened_malloc)
+- [scudo](https://source.android.com/docs/security/test/scudo) using [weekly binaries](https://github.com/charles8191/scudo)
 - Some remediations from ANSSI-BP-028 Minimal
 - [Cromite](https://www.cromite.org/) swapped instead of Firefox
-- Custom chrony config (time.grapheneos.org)
+- Custom chrony config (time.cifelli.xyz)
 - Custom kernel tunables
 - Modified `os-release` file
 - Enhanced NetworkManager privacy

chrony.conf

@@ -1,4 +1,4 @@
-server time.grapheneos.org iburst
+server time.cifelli.xyz nts iburst
 driftfile /var/lib/chrony/drift
 makestep 0.1 3
 rtcsync