diff --git a/debian/control b/debian/control
index e4dd75d..63f94aa 100644
--- a/debian/control
+++ b/debian/control
@@ -117,8 +117,9 @@ Description: enhances misc security settings
   * The vivid kernel module is blacklisted as it's only required for testing
  and has been the cause of multiple vulnerabilities.
  .
-  * An initramfs hook sets the sysctl values in /etc/sysctl.d before init
- is executed so sysctl hardening is enabled as early as possible.
+  * An initramfs hook sets the sysctl values in /etc/sysctl.conf and
+ /etc/sysctl.d before init is executed so sysctl hardening is enabled
+ as early as possible.
  .
   * The kernel panics on oopses to prevent it from continuing to run a flawed
  process and to deter brute forcing.
diff --git a/etc/initramfs-tools/scripts/init-bottom/sysctl-initramfs b/etc/initramfs-tools/scripts/init-bottom/sysctl-initramfs
index 534d8a7..b3c6cb6 100755
--- a/etc/initramfs-tools/scripts/init-bottom/sysctl-initramfs
+++ b/etc/initramfs-tools/scripts/init-bottom/sysctl-initramfs
@@ -15,4 +15,5 @@ prereqs)
         ;;
 esac
 
+sysctl -p ${rootmnt}/etc/sysctl.conf
 sysctl -p ${rootmnt}/etc/sysctl.d/*.conf