diff options
Diffstat (limited to 'sysctl.d')
-rw-r--r-- | sysctl.d/.gitignore | 2 | ||||
-rw-r--r-- | sysctl.d/50-default.conf | 21 |
2 files changed, 22 insertions, 1 deletions
diff --git a/sysctl.d/.gitignore b/sysctl.d/.gitignore index 7563539ab0..e326c180c3 100644 --- a/sysctl.d/.gitignore +++ b/sysctl.d/.gitignore @@ -1 +1 @@ -/coredump.conf +/50-coredump.conf diff --git a/sysctl.d/50-default.conf b/sysctl.d/50-default.conf new file mode 100644 index 0000000000..8d202a63e7 --- /dev/null +++ b/sysctl.d/50-default.conf @@ -0,0 +1,21 @@ +# This file is part of systemd. +# +# systemd is free software; you can redistribute it and/or modify it +# under the terms of the GNU Lesser General Public License as published by +# the Free Software Foundation; either version 2.1 of the License, or +# (at your option) any later version. + +# See sysctl.d(5) and core(5) for for details. + +# Append the PID to the core filename +kernel.core_uses_pid = 1 + +# Source route verification +net.ipv4.conf.default.rp_filter = 1 + +# Do not accept source routing +net.ipv4.conf.default.accept_source_route = 0 + +# Enable hard and soft link protection +fs.protected_hardlinks = 1 +fs.protected_symlinks = 1 |