875f635ab4
This patch gets rid of the old "special notes" section that was a dead-end in the documentation and replaces it with a brief header followed by a dynamically-generated list of tag-specific documentation. All of this sits underneath the "Hardening Domains" section. It also splits the "Deviations" documentation into its own section because it's quite important for a deployer to review. The patch also includes a link to video/slides from the Boston Summit, which provided the latest updates for the project and some background on how everything fits together. Change-Id: I1a5e78733c301335fe1bcfcee36cc146d690b841
618 B
618 B
kernel - Kernel parameters
The Linux kernel has many parameters that can improve overall system security and most of these parameters can be changed while a system is running.
Overview
The security role applies several changes to kernel parameters and
each of these changes are controlled by Ansible variables. Review the
## Kernel settings section within
defaults/main.yml file for more information on these
changes.
One deviation appears in this section for IP forwarding. Review the
documentation for V-72309 below for more details.