Security News > 2020 > May > How to properly secure sysctl on Linux

The sysctl system allows you to make changes to a running Linux kernel.

The sysctl system also allows you to prevent things like SYN flood attacks and IP address spoofing.

You can modify kernel parameters at runtime with the sysctl command or you can make changes within the system's configuration file so those changes are more of a permanent nature.

I want to show you how you can secure sysctl with by quickly editing the configuration file.

Sudo sysctl -p. One caveat to the sysctl -p command is I found it didn't load the tcp max syn backlog properly.

News URL

https://www.techrepublic.com/article/how-to-properly-secure-sysctl-on-linux/#ftag=RSS56d97e7