mirror of
https://github.com/Kicksecure/security-misc.git
synced 2024-10-01 08:25:45 -04:00
enforce default kernel.randomize_va_space
This commit is contained in:
parent
1b287a6430
commit
dabcaf22e1
@ -60,6 +60,8 @@ kernel.yama.ptrace_scope=2
|
|||||||
## Prevent setuid processes from creating coredumps.
|
## Prevent setuid processes from creating coredumps.
|
||||||
fs.suid_dumpable=0
|
fs.suid_dumpable=0
|
||||||
|
|
||||||
|
## Randomize the addresses for mmap base, heap, stack, and VDSO pages
|
||||||
|
kernel.randomize_va_space=2
|
||||||
|
|
||||||
#### meta start
|
#### meta start
|
||||||
#### project Kicksecure
|
#### project Kicksecure
|
||||||
@ -157,4 +159,3 @@ kernel.perf_event_paranoid=3
|
|||||||
# Do not accept router advertisments
|
# Do not accept router advertisments
|
||||||
net.ipv6.conf.all.accept_ra=0
|
net.ipv6.conf.all.accept_ra=0
|
||||||
net.ipv6.conf.default.accept_ra=0
|
net.ipv6.conf.default.accept_ra=0
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user