sysctl

mirror of https://github.com/k4yt3x/sysctl.git synced 2025-12-26 14:19:00 +00:00

Author	SHA1	Message	Date
k4yt3x	9f621a7259	feat: optimized socket buffer size limits https://blog.cloudflare.com/optimizing-tcp-for-high-throughput-and-low-latency Updated some comments. Signed-off-by: k4yt3x <i@k4yt3x.com>	2024-07-15 00:00:00 +00:00
k4yt3x	11a7d7123b	docs: added more descriptions for kernel.yama.ptrace_scope Signed-off-by: k4yt3x <i@k4yt3x.com>	2024-05-02 00:00:00 +00:00
Samuel FORESTIER	0283efcc03	Mentions `kernel.yama.ptrace_scope = 3` breaks lxc v6+ procfs See <https://github.com/lxc/lxcfs/issues/636> and <https://github.com/lxc/lxcfs/issues/639>.	2024-05-02 19:01:57 +00:00
k4yt3x	feeb1516bc	added kernel.modules_disabled=1 Signed-off-by: k4yt3x <i@k4yt3x.com>	2023-07-06 23:24:49 +00:00
k4yt3x	b6f10417e7	commented out disable TCP window scaling by default Disabling TCP window scaling could result in a significant decrease in performance in high-latency communications. Signed-off-by: k4yt3x <i@k4yt3x.com>	2023-07-03 18:20:40 +00:00
Samuel FORESTIER	efaac1f8c8	Fixes a typo and removes duplicate contributor	2022-09-30 17:06:34 +00:00
K4YT3X	7f44c4c6db	Merge pull request #10 from HorlogeSkynet/style/spaces_around_assigns Improved consistency by adding spaces around '=' for `vm.mmap_rnd_*`	2022-08-04 12:23:17 -04:00
k4yt3x	fa1f91a45e	moved ldisc_autoload and unprivileged_userfaultfd; updated comments	2022-08-04 16:22:59 +00:00
Samuel FORESTIER	871c697809	Improved consistency by adding spaces around '=' for `vm.mmap_rnd_*`	2022-07-02 10:19:10 +02:00
shenzhui007	340f2a55de	Update sysctl.conf update according to https://madaidans-insecurities.github.io/guides/linux-hardening.html#sysctl	2022-06-06 12:58:49 +08:00
K4YT3X	713183509d	set PMTU starting value to 1024 according to RFC4821	2021-10-15 15:50:23 +00:00
K4YT3X	19916769ae	updated assumptions; enabled more optimizations by default	2021-10-12 18:14:09 +00:00
K4YT3X	c21ccc08b8	updated comments for MTU probing references: https://blog.cloudflare.com/ip-fragmentation-is-broken/	2021-10-12 17:17:31 +00:00
IceCodeNew	c5903aa694	Enable mtu probing	2021-10-13 00:57:18 +08:00
K4YT3X	445f1e4791	edited/reformatted SSR comments; updated dates	2021-10-12 16:36:27 +00:00
IceCodeNew	2ead2cea26	Disable TCP slow start after idle Signed-off-by: IceCodeNew <32576256+IceCodeNew@users.noreply.github.com>	2021-10-12 21:16:55 +08:00
K4YT3X	3ea204497d	tweaked perf restrictions, disallowed IPv6 SRR and redirects	2021-06-07 22:03:11 +00:00
Samuel FORESTIER	9a3fd6cf9c	Fixed variables processing order issue related to perf subsystem > https://bbs.archlinux.org/viewtopic.php?id=248926	2021-06-07 08:21:17 +00:00
Samuel FORESTIER	4eba426270	added recommendations from ANSSI (perf subsystem + vm low addr mapping) > https://www.ssi.gouv.fr/uploads/2016/01/linux_configuration-fr-v1.2.pdf#section.6.2	2021-06-06 14:12:51 +02:00
K4YT3X	5eecf56b0a	added more descriptions for TCP timestamps	2020-10-29 10:44:10 -04:00
K4YT3X	fbe72f187d	added comments for rp_filter (BCP38)	2020-10-21 23:37:04 -04:00
K4YT3X	7ec9bd7ef5	increased fs.inotify.max_user_watches to 524288	2020-10-19 17:31:10 -04:00
K4YT3X	f173c2cafc	added note for inode-max	2020-10-07 17:39:07 -04:00
K4YT3X	d45547b9c5	further increased ip port range	2020-10-07 17:31:14 -04:00
K4YT3X	2f4267a8d9	increased kernel.pix_max and fs.file-max values according to theoretical limits on 64-bit systems	2020-10-07 17:29:29 -04:00
IceCodeNew	fcdee62224	It is better if two numbers have different parity Refer: https://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt Signed-off-by: IceCodeNew <32576256+IceCodeNew@users.noreply.github.com>	2020-10-07 23:57:00 +08:00
K4YT3X	abb9f9fc22	version 1.1: added more security options and tweaks	2020-10-06 14:20:18 -04:00
K4YT3X	2f7ba697fc	added more descriptions into the README file	2020-10-05 18:03:38 -04:00
K4YT3X	13fb9e964a	added version number 1.0	2020-10-05 17:52:47 -04:00
K4YT3X	5062ebcc05	added the first version of sysctl.conf	2020-10-05 17:52:08 -04:00

30 Commits