From 933b01ea1f9bf4876809689f360851a36957c357 Mon Sep 17 00:00:00 2001
From: Dave Vehrs <dvehrs@users.noreply.github.com>
Date: Wed, 14 Jun 2017 06:06:04 -0600
Subject: Added kernel.dmesg_restrict to sysctl checks. (#404)

---
 default.prf | 1 +
 1 file changed, 1 insertion(+)

(limited to 'default.prf')

diff --git a/default.prf b/default.prf
index cfbd95b8..5ed0fbdb 100644
--- a/default.prf
+++ b/default.prf
@@ -186,6 +186,7 @@ config-data=sysctl;kern.sugid_coredump;0;1;No description;sysctl -a;url:https;//
 config-data=sysctl;kernel.core_setuid_ok;0;1;No description;sysctl -a;url:https;//kernel.org/doc/Documentation/sysctl/kernel.txt;category:security;
 config-data=sysctl;kernel.core_uses_pid;1;1;No description;sysctl -a;url:https;//kernel.org/doc/Documentation/sysctl/kernel.txt;category:security;
 config-data=sysctl;kernel.ctrl-alt-del;0;1;No description;sysctl -a;url:https;//kernel.org/doc/Documentation/sysctl/kernel.txt;category:security;
+config-data=sysctl;kernel.dmesg_restrict;1;1;Restrict use of dmesg;sysctl -a;url:https;//kernel.org/doc/Documentation/sysctl/kernel.txt;category:security;
 config-data=sysctl;kernel.exec-shield-randomize;1;1;No description;sysctl -a;url:https;//kernel.org/doc/Documentation/sysctl/kernel.txt;category:security;
 config-data=sysctl;kernel.exec-shield;1;1;No description;sysctl -a;url:https;//kernel.org/doc/Documentation/sysctl/kernel.txt;category:security;
 config-data=sysctl;kernel.kptr_restrict;2;1;Restrict access to kernel symbols;sysctl -a;url:https;//kernel.org/doc/Documentation/sysctl/kernel.txt;category:security;
-- 
cgit v1.2.3