ansible: Add more sysctl config options.

Change-Id: Iedbd8e81c4dff911e90dee12a6b897358337958a
author: Milo Casagrande <milo.casagrande@linaro.org> 2014-12-23 15:07:32 +0100
committer: Milo Casagrande <milo.casagrande@linaro.org> 2014-12-23 15:07:32 +0100
commit: 365266db9afaba7add6d847016f2d7929ab16de1 (patch)
tree: 01956a4414f384224e886f9fce1451761bc0c546 /ansible/roles
parent: ebff68fcdb2b235bf2e11be660053cef5624fd5f (diff)
1 files changed, 6 insertions, 0 deletions
diff --git a/ansible/roles/common/files/sysctl.conf b/ansible/roles/common/files/sysctl.conf
index cb3d35a..eb04524 100644
--- a/ansible/roles/common/files/sysctl.conf
+++ b/ansible/roles/common/files/sysctl.conf
@@ -75,3 +75,9 @@ kernel.randomize_va_space = 1
 
 # Allow more PIDs
 kernel.pid_max = 65536
+
+# Treat dmesg as sensitive information
+kernel.dmesg_restrict = 1
+
+# Treat kernel address as sensitive information
+kernel.kptr_restrict = 1
author	Milo Casagrande <milo.casagrande@linaro.org>	2014-12-23 15:07:32 +0100
committer	Milo Casagrande <milo.casagrande@linaro.org>	2014-12-23 15:07:32 +0100
commit	365266db9afaba7add6d847016f2d7929ab16de1 (patch)
tree	01956a4414f384224e886f9fce1451761bc0c546 /ansible/roles
parent	ebff68fcdb2b235bf2e11be660053cef5624fd5f (diff)