[arch-dev-public] systemd 207 ignores /etc/sysctl.conf

Tobias Powalowski tobias.powalowski at googlemail.com
Fri Sep 13 10:37:16 EDT 2013

Am 13.09.2013 15:55, schrieb Dave Reisner:
> On Fri, Sep 13, 2013 at 01:12:20PM +0200, Pierre Schmitz wrote:
>> Hi,
>> a new features in systemd 207 is to no longer read /etc/sysctl.conf.
>> Instead /etc/sysctl.d/*.conf has to be used. Imho this needs a news item
>> and we also need to think about what to do with the file we ship as part
>> of procps-ng.
> I've been talking about shipping that file in /usr/lib/sysctl.d for a
> while, but never got around to filing a bug (or doing it myself). We
> might also consider just dropping it, since this is in line with the
> upstream default.
> There's some bugfixes I should backport to 207 (sigh), so I can add a
> post_upgrade message to mention this once we figure out the direction
> we're going in.
>> From the systemd changelog:
>>         * The systemd-sysctl tool no longer natively reads the
>>           file /etc/sysctl.conf. If desired, the file should be
>>           symlinked from /etc/sysctl.d/99-sysctl.conf. Apart from
>>           providing legacy support by a symlink rather than built-in
>>           code, it also makes the otherwise hidden order of application
>>           of the different files visible.
>> Greetings,
>> Pierre
>> -- 
>> Pierre Schmitz, https://pierre-schmitz.com
All default values from sysctl.conf which are active are also the kernel
default so no need to ship this file anymore.
# Protection from the SYN flood attack.
net.ipv4.tcp_syncookies = 1
# Disable packet forwarding.
net.ipv4.ip_forward = 0
net.ipv6.conf.all.forwarding = 0


Tobias Powalowski
Archlinux Developer & Package Maintainer (tpowa)
tpowa at archlinux.org

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 555 bytes
Desc: OpenPGP digital signature
URL: <http://mailman.archlinux.org/pipermail/arch-dev-public/attachments/20130913/fdf7d8a2/attachment.asc>

More information about the arch-dev-public mailing list