Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-12-15 23:03:50 -05:00
Code Issues Projects Releases Packages Wiki Activity

comments

Browse source
This commit is contained in:
Patrick Schleizer 2025-04-21 04:55:19 -04:00
parent abb0c83619
commit 502f5953c7
No known key found for this signature in database
GPG key ID: CB8D50BB77BB3C48
1 changed files with 2 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
etc/modprobe.d/30_security-misc_conntrack.conf
View file

@ -3,7 +3,8 @@
## Conntrack:
## Disable Netfilter's automatic connection tracking helper assignment.
## Increases the kernel attack surface by enabling superfluous functionality such as IRC parsing in the kernel.
## This functionality adds unnecessary features, such as IRC protocol parsing, into the kernel.
## Disabling it reduces the kernel attack surface and improves security.
##
## https://conntrack-tools.netfilter.org/manual.html
## https://forums.whonix.org/t/disable-conntrack-helper/18917