From 35e8c0ab3aed8970f684efdd8953dba5b44186aa Mon Sep 17 00:00:00 2001
From: Michael Boelen <michael.boelen@cisofy.com>
Date: Tue, 23 Jan 2018 15:09:59 +0100
Subject: Added kernel.yama.ptrace_scope

---
 default.prf | 1 +
 1 file changed, 1 insertion(+)

(limited to 'default.prf')

diff --git a/default.prf b/default.prf
index e1636145..7db2a16a 100644
--- a/default.prf
+++ b/default.prf
@@ -197,6 +197,7 @@ config-data=sysctl;kernel.randomize_va_space;2;1;Randomize of memory address loc
 config-data=sysctl;kernel.suid_dumpable;0;1;Restrict core dumps;sysctl -a;url:https;//kernel.org/doc/Documentation/sysctl/kernel.txt;category:security;
 config-data=sysctl;kernel.sysrq;0;1;Disable magic SysRQ;sysctl -a;url:https;//kernel.org/doc/Documentation/sysctl/kernel.txt;category:security;
 config-data=sysctl;kernel.use-nx;0;1;No description;sysctl -a;url:https;//kernel.org/doc/Documentation/sysctl/kernel.txt;category:security;
+config-data=sysctl;kernel.yama.ptrace_scope;1|2|3;1;Disable process tracing for everyone;-;category:security;
 
 # Network
 config-data=sysctl;net.inet.ip.linklocal.in.allowbadttl;0;
-- 
cgit v1.2.3