General Kernel Configuration
These kernel parameters are configured to optimize system performance, security, and resource management. You may choose to adjust these settings based on your specific requirements.
List of General Kernel Configuration Settings
Enable Magic SysRq Keys
Related kernel setting: kernel.sysrq= 0 ⇨ 1
Enables the SysRq (commonly ‘Print Screen’) key for emergency recovery actions, such as Alt+SysRq+B to reboot.
Default: activated
Reduce Background Reclaiming of Filesystem Cache
Related kernel setting: vm.vfs_cache_pressure 100 ⇨ 50
Retains more filesystem metadata in memory for faster access, increasing RAM usage.
Default: activated if system as more than 24 GB RAM.
Minimize Background Memory Compaction
Related kernel setting: vm.compaction_proactiveness 20/100 ⇨ 1/100
Reduces effort spent on memory compaction in the background, which may decrease CPU load at the cost of increased RAM consumption.
Default: activated if system as more than 24 GB RAM.
Order Device Initialization & Power Tasks
Related kernel setting: fw_devlink ⇨ permissive
Facilitates the correct sequence of device initialization and power management tasks based on firmware information. This ensures stable system operation by prioritizing the initialization of supplier devices before consumers and managing power states effectively during suspend/resume cycles.
Default: activated
Allow Normal Users to Run Unprivileged Containers
Related kernel setting: kernel.unprivileged_userns_clone 0 ⇨ 1
This is crucial for running containers, such as Docker, in a more secure manner without granting users full root privileges. For example, a developer can run Docker containers for testing purposes without needing administrative access to the system.
Default: activated
Allow Normal Users to Access Performance Profiling Tools
Related kernel setting: perf_event_paranoid 0 ⇨ 1
This is particularly useful for developers who need to analyze application performance in a more secure way without needing full root privileges.
Default: activated
Automatically Fill Allocated Memory with 0
Related kernel setting: init_on_alloc 0 ⇨ 1
Increases security by zeroing out newly allocated memory.
Default: activated
Automatically Fill Deallocated Memory with 0
Related kernel setting: init_on_free 0 ⇨ 1
Aids in preventing data leakage by clearing freed memory.
Default: activated
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.