Set kernel.randomize_va_space = 2
Set the kernel tunable "randomize_va_space" to 2 to prevent buffer overflow exploits. Change-Id: I19ccabf7dd7c63bf2030c5d6d4275ce6b29166c1
This commit is contained in:
parent
15ef036535
commit
7ab2793aa9
|
@ -49,6 +49,8 @@ data:
|
||||||
# Reboot the node 60 seconds after a kernel panic, instead of default
|
# Reboot the node 60 seconds after a kernel panic, instead of default
|
||||||
# value of 0 (i.e. never reboot)
|
# value of 0 (i.e. never reboot)
|
||||||
kernel.panic: '60'
|
kernel.panic: '60'
|
||||||
|
# Randomize stack space to prevent buffer overflow exploits
|
||||||
|
kernel.randomize_va_space: '2'
|
||||||
# Accept gratuitous ARP to support failover scenarios
|
# Accept gratuitous ARP to support failover scenarios
|
||||||
# https://bugs.launchpad.net/fuel/+bug/1456272
|
# https://bugs.launchpad.net/fuel/+bug/1456272
|
||||||
net.ipv4.conf.default.arp_accept: '1'
|
net.ipv4.conf.default.arp_accept: '1'
|
||||||
|
|
Loading…
Reference in New Issue