enforce default kernel.randomize_va_space

This commit is contained in:
Raja Grewal 2022-07-13 04:28:03 +10:00
parent 1b287a6430
commit dabcaf22e1
No known key found for this signature in database
GPG Key ID: E34A5801947020A5

View File

@ -60,6 +60,8 @@ kernel.yama.ptrace_scope=2
## Prevent setuid processes from creating coredumps. ## Prevent setuid processes from creating coredumps.
fs.suid_dumpable=0 fs.suid_dumpable=0
## Randomize the addresses for mmap base, heap, stack, and VDSO pages
kernel.randomize_va_space=2
#### meta start #### meta start
#### project Kicksecure #### project Kicksecure
@ -157,4 +159,3 @@ kernel.perf_event_paranoid=3
# Do not accept router advertisments # Do not accept router advertisments
net.ipv6.conf.all.accept_ra=0 net.ipv6.conf.all.accept_ra=0
net.ipv6.conf.default.accept_ra=0 net.ipv6.conf.default.accept_ra=0