diff options
| author | Silvino <silvino@bk.ru> | 2019-06-16 05:03:49 +0100 |
|---|---|---|
| committer | Silvino <silvino@bk.ru> | 2019-06-16 05:03:49 +0100 |
| commit | 951a8a84411da6b71cee11d8c9feb993b984acf5 (patch) | |
| tree | 321c716724f139b604fe1b4ecbdd198b8f58fff6 /core/sysctl.html | |
| parent | caf14bbeab74235c8d6574beb8b3ad2b55aef667 (diff) | |
| download | doc-951a8a84411da6b71cee11d8c9feb993b984acf5.tar.gz | |
apparmor and hardening revision
Diffstat (limited to 'core/sysctl.html')
| -rw-r--r-- | core/sysctl.html | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/core/sysctl.html b/core/sysctl.html index a5af197..afee463 100644 --- a/core/sysctl.html +++ b/core/sysctl.html @@ -33,6 +33,9 @@ # Allow for more PIDs (to reduce rollover problems); may break some programs 32768 kernel.pid_max = 65536 + #Yama LSM by default + kernel.yama.ptrace_scope = 1 + # # Filesystem Protections # @@ -48,6 +51,8 @@ # Network Protections # + net.core.bpf_jit_enable = 0 + # Increase Linux auto tuning TCP buffer limits # min, default, and max number of bytes to use # set max to at least 4MB, or higher if you use very high BDP paths |