diff options
| author | Silvio Rhatto <rhatto@riseup.net> | 2018-01-07 22:49:26 -0200 |
|---|---|---|
| committer | Silvio Rhatto <rhatto@riseup.net> | 2018-01-07 22:49:26 -0200 |
| commit | 12bd1da344adb6ef6d41aaab20bcbac6b942b82b (patch) | |
| tree | 38a6ec76f70e17f8710660e2672f51676ec3be01 /manifests | |
| parent | d3400106d91ea075e515f7ed6912d8190f14cd87 (diff) | |
| download | puppet-nodo-12bd1da344adb6ef6d41aaab20bcbac6b942b82b.tar.gz puppet-nodo-12bd1da344adb6ef6d41aaab20bcbac6b942b82b.tar.bz2 | |
Adds nodo::subsystem::sysctl::unprivileged_bpf_disabled
Diffstat (limited to 'manifests')
| -rw-r--r-- | manifests/subsystem/sysctl/unprivileged_bpf_disabled.pp | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/manifests/subsystem/sysctl/unprivileged_bpf_disabled.pp b/manifests/subsystem/sysctl/unprivileged_bpf_disabled.pp new file mode 100644 index 0000000..f82bfc9 --- /dev/null +++ b/manifests/subsystem/sysctl/unprivileged_bpf_disabled.pp @@ -0,0 +1,6 @@ +# See https://www.debian.org/security/2017/dsa-4073 +class nodo::subsystem::sysctl::unprivileged_bpf_disabled() { + nodo::subsystem::sysctl::entry { 'kernel.unprivileged_bpf_disabled': + value => '1', + } +} |