[arch-dev-public] systemd 207 ignores /etc/sysctl.conf
tobias.powalowski at googlemail.com
Fri Sep 13 10:37:16 EDT 2013
Am 13.09.2013 15:55, schrieb Dave Reisner:
> On Fri, Sep 13, 2013 at 01:12:20PM +0200, Pierre Schmitz wrote:
>> a new features in systemd 207 is to no longer read /etc/sysctl.conf.
>> Instead /etc/sysctl.d/*.conf has to be used. Imho this needs a news item
>> and we also need to think about what to do with the file we ship as part
>> of procps-ng.
> I've been talking about shipping that file in /usr/lib/sysctl.d for a
> while, but never got around to filing a bug (or doing it myself). We
> might also consider just dropping it, since this is in line with the
> upstream default.
> There's some bugfixes I should backport to 207 (sigh), so I can add a
> post_upgrade message to mention this once we figure out the direction
> we're going in.
>> From the systemd changelog:
>> * The systemd-sysctl tool no longer natively reads the
>> file /etc/sysctl.conf. If desired, the file should be
>> symlinked from /etc/sysctl.d/99-sysctl.conf. Apart from
>> providing legacy support by a symlink rather than built-in
>> code, it also makes the otherwise hidden order of application
>> of the different files visible.
>> Pierre Schmitz, https://pierre-schmitz.com
All default values from sysctl.conf which are active are also the kernel
default so no need to ship this file anymore.
# Protection from the SYN flood attack.
net.ipv4.tcp_syncookies = 1
# Disable packet forwarding.
net.ipv4.ip_forward = 0
net.ipv6.conf.all.forwarding = 0
Archlinux Developer & Package Maintainer (tpowa)
tpowa at archlinux.org
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 555 bytes
Desc: OpenPGP digital signature
More information about the arch-dev-public