Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-05-04 06:34:52 -04:00
Code Issues Projects Releases Packages Wiki Activity

Add documentation on sysctl kernel.panic_on_oops=1

Browse source
This commit is contained in:
Raja Grewal 2024-07-25 10:26:23 +10:00
parent 1b6161c2dc
commit 3926b91dcf
No known key found for this signature in database
GPG key ID: 92CA473C156B64C4
2 changed files with 14 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

11
usr/lib/sysctl.d/990-security-misc.conf
View file

@ -109,6 +109,17 @@ kernel.sysrq=0
##
kernel.perf_event_paranoid=3
## Force the kernel to panic on "oopses".
## Can sometimes potentially indicate and thwart certain kernel exploitation attempts.
## Also cause panics on machine check exceptions.
## Panics may be due to false-positives such as bad drivers.
##
## https://forums.whonix.org/t/set-oops-panic-kernel-parameter-or-kernel-panic-on-oops-1-sysctl-for-better-security/7713
##
## See /usr/libexec/security-misc/panic-on-oops for implementation.
##
#kernel.panic_on_oops=1
## Enable ASLR for mmap base, stack, VDSO pages, and heap.
## Heap randomization can lead to breakages with legacy applications.
##