hsist
/
freifunkist-firmware
6
1
Fork 0
Code Issues Pull Requests Releases Wiki Activity

sysctl: Protect hard/symlinks by default.

Browse Source 
There is no usecase for not protecting symlinks that I know of in OpenWrt.
Not even on desktop systems where you have multiple users with a shell.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
master
Rosen Penev 7 years ago committed by John Crispin
parent 52ba5760b7
commit 20e5fefb0c
1 changed files with 3 additions and 0 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 3
      package/base-files/files/etc/sysctl.d/10-default.conf

3
package/base-files/files/etc/sysctl.d/10-default.conf
Unescape View File

@ -5,6 +5,9 @@ kernel.panic=3
kernel.core_pattern=/tmp/%e.%t.%p.%s.core kernel.core_pattern=/tmp/%e.%t.%p.%s.core
fs.suid_dumpable=2 fs.suid_dumpable=2
fs.protected_hardlinks=1
fs.protected_symlinks=1
net.ipv4.conf.default.arp_ignore=1 net.ipv4.conf.default.arp_ignore=1
net.ipv4.conf.all.arp_ignore=1 net.ipv4.conf.all.arp_ignore=1
net.ipv4.ip_forward=1 net.ipv4.ip_forward=1

Write Preview
Loading…
Cancel
Save