A few useful sysctl variables in FreBSD

Posted by ionut

April 23, 2008

FreeBSD is my primary choice when I need to install a new server and if I don’t need virtualization (OpenVZ, Linux-VServer, XEN, Vmware, …). If I need to implement a virtualization solution then CentOS is my friend.

Only I would like to point some interesting sysctl variables which you can set on a FreeBSD box:

TCP and UDP black hole:

net.inet.tcp.blackhole=2
net.inet.udp.blackhole=1

To prevent a user from seeing what other processes a user is running (via ps aux or otherwise), and to prevent a user from reading dmesg.

security.bsd.see_other_uids=0
security.bsd.unprivileged_read_msgbuf=0

Spread the word:

Add 'A few useful sysctl variables in FreBSD' a Del.icio.us

Add 'A few useful sysctl variables in FreBSD' a digg

Add 'A few useful sysctl variables in FreBSD' a reddit

Add 'A few useful sysctl variables in FreBSD' a Technorati

Add 'A few useful sysctl variables in FreBSD' a Ma.gnolia

Add 'A few useful sysctl variables in FreBSD' a Stumble Upon

Add 'A few useful sysctl variables in FreBSD' a Google Bookmarks

Add 'A few useful sysctl variables in FreBSD' a BlinkBits

Add 'A few useful sysctl variables in FreBSD' a Blogmarks

Add 'A few useful sysctl variables in FreBSD' a Co.mments

Add 'A few useful sysctl variables in FreBSD' a Bloglines

Add 'A few useful sysctl variables in FreBSD' a SlashDot

Add 'A few useful sysctl variables in FreBSD' a FaceBook

*BSD

If you enjoyed this post, please consider to leave a comment or subscribe to the feed and get future articles delivered to your feed reader.

Comments

No comments yet.

A few useful sysctl variables in FreBSD

Comments

Leave a comment

Search

Archives

Categories

Recent Posts

More Links

Last Comments

Blogroll

My Bookmarks

My Flickr Photos

Categories

I am reading