Enable SECURITY_DMESG_RESTRICT

Default on Debian, and seems to be reasonable for us since we also don't allow access to the system journal by default.
2020-12-31 01:18:17 +00:00
parent b54786ee1f
commit 45857ed86c
2 changed files with 2 additions and 2 deletions
--- a/2
+++ b/2
@@ -9329,7 +9329,7 @@ CONFIG_TRUSTED_KEYS=m
 CONFIG_ENCRYPTED_KEYS=m
 CONFIG_KEY_DH_OPERATIONS=y
 CONFIG_KEY_NOTIFICATIONS=y
-# CONFIG_SECURITY_DMESG_RESTRICT is not set
+CONFIG_SECURITY_DMESG_RESTRICT=y
 CONFIG_SECURITY=y
 CONFIG_SECURITYFS=y
 CONFIG_SECURITY_NETWORK=y