v2.2.0: Fix Privacy settings count + DoH connectivity test

Privacy Module: - Fixed 'Applied X settings' to show only registry settings (60/78/86) - Bloatware count no longer added to settings total - Consistent with module prompt (MSRecommended: 60, Strict: 78, Paranoid: 86) DNS Module: - Fixed DoH connectivity test for systems with REQUIRE mode active - Tests HTTPS endpoint (port 443) when classic DNS is blocked - Proper detection of existing DoH configuration Verified: Full Apply/Verify/Restore cycle - 633/633 settings (100%)
2026-02-07 04:01:52 +01:00 · 2025-12-09 10:48:12 +01:00 · 2025-12-09 10:48:12 +01:00 · d78d941113
commit d78d941113
parent eafa89cf97
17 changed files with 319 additions and 116 deletions
--- a/Core/Framework.ps1
+++ b/Core/Framework.ps1
@ -534,8 +534,8 @@ function Invoke-Hardening {
                        Write-Host ""
                        Write-Host "  > Applies privacy settings based on selected mode:" -ForegroundColor Gray
                        Write-Host "    - Telemetry control (3 modes: MSRecommended/Strict/Paranoid)" -ForegroundColor Gray
-                        Write-Host "    - MSRecommended: 59 settings (default, max compatibility)" -ForegroundColor DarkGray
-                        Write-Host "    - Strict: 77 settings, Paranoid: 85 settings" -ForegroundColor DarkGray
+                        Write-Host "    - MSRecommended: 60 settings (default, max compatibility)" -ForegroundColor DarkGray
+                        Write-Host "    - Strict: 78 settings, Paranoid: 86 settings" -ForegroundColor DarkGray
                        Write-Host "    - Disable ads, tips, personalization" -ForegroundColor Gray
                        Write-Host "    - Remove bloatware (up to 24 apps, if present)" -ForegroundColor Gray
                        Write-Host "    - OneDrive hardening (keeps sync functional)" -ForegroundColor Gray
--- a/Core/Rollback.ps1
+++ b/Core/Rollback.ps1
@ -119,7 +119,7 @@ function Update-SessionDisplayName {
        "SecurityBaseline"  = 425  # 335 Registry + 67 Security Template + 23 Audit
        "ASR"               = 19   # 19 ASR Rules
        "DNS"               = 5    # 5 DNS Settings
-        "Privacy"           = 77   # 53 Registry (MSRecommended) + 24 Bloatware
+        "Privacy"           = 78   # 54 Registry (MSRecommended) + 24 Bloatware
        "AntiAI"            = 32   # 32 Registry Policies (15 features)
        "EdgeHardening"     = 24   # 24 Edge Policies (22-23 applied depending on extensions)
        "AdvancedSecurity"  = 50   # 50 Advanced Settings (15 features incl. Discovery Protocols + IPv6)
--- a/Core/Validator.ps1
+++ b/Core/Validator.ps1
@ -121,7 +121,7 @@ function Get-WindowsVersion {
    # Windows 11 build numbers
    # 22000 = 21H2, 22621 = 22H2, 22631 = 23H2, 26100 = 24H2, 26200 = 25H2
    $isWindows11 = $buildNumber -ge 22000
-    $isSupported = $buildNumber -ge 26100  # 24H2 or newer
+    $isSupported = $buildNumber -ge 26100  # 24H2 or newer required
    
    $versionName = switch ($buildNumber) {
        { $_ -ge 26200 } { "Windows 11 25H2"; break }