Skip to content

HBSD: Update the sysctl from bsdinstall

The sysctl values `security.bsd.see_other_uids`, `security.bsd.see_other_gids`,
`security.bsd.unprivileged_read_msgbuf` and `security.bsd.unprivileged_proc_debug`
are already modified via the PAX_HARDENING option in the kernel.

It is therefore better to remove all the sysctl quoted above because it can be confusing.

Added two new sysctl entries not enabled by default that we leave to the user's decision.

Signed-off-by:	Loic <loic.f@hardenedbsd.org>
MFC-to:	13-STABLE

Merge request reports