This is recommended by various Linux hardening guides in order to prevent accidential overwriting of existing core dumps. While it has probably little to no relevance to the average IPFire user, enabling it won't harm and fixes a Lynis warning. :-)

Signed-off-by: Peter Müller peter.mueller@ipfire.org --- config/etc/sysctl.conf | 3 +++ 1 file changed, 3 insertions(+)

diff --git a/config/etc/sysctl.conf b/config/etc/sysctl.conf index be7c07c85..c9b4c092a 100644 --- a/config/etc/sysctl.conf +++ b/config/etc/sysctl.conf @@ -103,3 +103,6 @@ net.ipv4.tcp_fastopen = 3 # This protects against various TCP attacks, such as DoS against or injection # of arbitrary segments into prematurely closed connections. net.ipv4.tcp_rfc1337 = 1 + +# Include PID in file names of generated core dumps +kernel.core_uses_pid = 1