Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2024-12-26 01:29:26 -05:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #14 from madaidan/patch-10

Browse Source 
Add some hardening for other distributions
This commit is contained in:
Patrick Schleizer 2019-06-28 06:59:16 +00:00 committed by GitHub
commit ab312235ba
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 10 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
etc/sysctl.d/dmesg_restrict.conf Normal file
View File

@ -0,0 +1,2 @@
# Restricts the kernel log to root only.
kernel.dmesg_restrict=1

9
etc/sysctl.d/tcp_hardening.conf
View File

@ -15,5 +15,12 @@ net.ipv6.conf.default.accept_redirects=0
net.ipv4.conf.all.send_redirects=0 net.ipv4.conf.all.send_redirects=0
net.ipv4.conf.default.send_redirects=0 net.ipv4.conf.default.send_redirects=0
# Ignores ICMP requests # Ignores ICMP requests.
net.ipv4.icmp_echo_ignore_all=1 net.ipv4.icmp_echo_ignore_all=1
# Enables TCP syncookies.
net.ipv4.tcp_syncookies=1
# Disable source routing.
net.ipv4.conf.all.accept_source_route=0
net.ipv4.conf.default.accept_source_route=0