sysctl-user.conf (558B)
1# These are some recommended defaults that users can alter if needed. 2# For example, developer systems may want to enable kexec for kernel 3# testing, or disable the ptrace restrictions to be able to gdb attach 4# to processes without root. 5# 6# To replace, create a file of the same name in /etc/sysctl.d. 7 8# Avoid kernel memory address exposures via dmesg. 9kernel.dmesg_restrict=1 10 11# Turn off kexec, even if it's built in. 12kernel.kexec_load_disabled=1 13 14# Avoid non-ancestor ptrace access to running processes and their credentials. 15kernel.yama.ptrace_scope=1