Kernel Hardening articles

Last change: 2025-01-06

Sysctl key ipe.success_audit key is used to define if audit events should be created when using the Linux security module IPE (Integrity Policy Enforcement).

Last change: 2025-01-06

The sysctl key ipe.enforce defines the mode of the Linux security module IPE (Integrity Policy Enforcement). Learn about the possible values and their meaning.

Last change: 2025-01-06

The sysctl settings starting with ipe define the configuration of IPE (Integrity Policy Enforcement) module. Learn about the settings and possible values.

Last change: 2025-01-06

The kernel has a wide range of network settings. Learn about the sysctl command and the values related to the network class.

Last change: 2025-01-06

The sysctl key net.ipv4.ip_forward key is used to define IP forwarding of IPv4 network packets. Learn about the possible values of this key and their meaning.

Last change: 2025-01-06

Secure the Linux kernel with the help of the sysctl kernel.perf_event_paranoid key, including the possible values and their meaning.

Last change: 2025-01-06

Learn about the sysctl command and how it can help with kernel tunables to alter the system configuration and perform additional security hardening.

Last change: 2025-01-06

The Linux kernel has a range of settings that influence the behavior of the kernel itself. Learn about sysctl settings and values related to the kernel class.

Last change: 2025-01-06

ASLR protects the Linux kernel and programs against different attacks. It can be tuned with the randomize_va_space setting to provide different protections.

Last change: 2025-01-06

The Linux kernel can be secured with the help of kernel tunables called sysctl keys. Learn how system hardening principles can be applied using sysctl.

Last change: 2025-01-06

Every system is as strong as its weakest link, especially the system kernel. This article explains Linux kernel security, what we can do and how to do so.