From bce5e59d4e804d2cd37a58ada08566ce689fe5f1 Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Sun, 5 Feb 2023 23:57:22 -0500
Subject: [PATCH] Update Kicksecure sysctl

Signed-off-by: Tommy <contact@tommytran.io>
---
 fedora-minimal/fedora-minimal.sh | 1 +
 fedora/fedora.sh                 | 1 +
 2 files changed, 2 insertions(+)

diff --git a/fedora-minimal/fedora-minimal.sh b/fedora-minimal/fedora-minimal.sh
index 32ca740..7ab84ce 100644
--- a/fedora-minimal/fedora-minimal.sh
+++ b/fedora-minimal/fedora-minimal.sh
@@ -7,6 +7,7 @@ sudo curl --proxy http://127.0.0.1:8082 https://raw.githubusercontent.com/Kickse
 sudo curl --proxy http://127.0.0.1:8082 https://raw.githubusercontent.com/Kicksecure/security-misc/master/etc/sysctl.d/30_security-misc.conf -o /etc/sysctl.d/30_security-misc.conf
 sudo sed -i 's/kernel.yama.ptrace_scope=2/kernel.yama.ptrace_scope=3/g' /etc/sysctl.d/30_security-misc.conf
 sudo curl --proxy http://127.00.1:8082 https://raw.githubusercontent.com/Kicksecure/security-misc/master/etc/sysctl.d/30_silent-kernel-printk.conf -o /etc/sysctl.d/30_silent-kernel-printk.conf
+sudo curl --proxy http://127.00.1:8082 https://raw.githubusercontent.com/Kicksecure/security-misc/master/etc/sysctl.d/30_security-misc_kexec-disable.conf -o /etc/sysctl.d/30_security-misc_kexec-disable.conf
 
 #Setup SSH client
 echo "GSSAPIAuthentication no" > /etc/ssh/ssh_config.d/10-custom.conf
diff --git a/fedora/fedora.sh b/fedora/fedora.sh
index 29a2d2b..93ea2db 100644
--- a/fedora/fedora.sh
+++ b/fedora/fedora.sh
@@ -12,6 +12,7 @@ sudo curl --proxy http://127.0.0.1:8082 https://raw.githubusercontent.com/Kickse
 sudo curl --proxy http://127.0.0.1:8082 https://raw.githubusercontent.com/Kicksecure/security-misc/master/etc/sysctl.d/30_security-misc.conf -o /etc/sysctl.d/30_security-misc.conf
 sudo sed -i 's/kernel.yama.ptrace_scope=2/kernel.yama.ptrace_scope=3/g' /etc/sysctl.d/30_security-misc.conf
 sudo curl --proxy http://127.00.1:8082 https://raw.githubusercontent.com/Kicksecure/security-misc/master/etc/sysctl.d/30_silent-kernel-printk.conf -o /etc/sysctl.d/30_silent-kernel-printk.conf
+sudo curl --proxy http://127.00.1:8082 https://raw.githubusercontent.com/Kicksecure/security-misc/master/etc/sysctl.d/30_security-misc_kexec-disable.conf -o /etc/sysctl.d/30_security-misc_kexec-disable.conf
 
 # Systemd hardening
 sudo mkdir -p /etc/systemd/system/ModemManager.service.d