diff --git a/etc/sysctl.d/ptrace_scope.conf b/etc/sysctl.d/ptrace_scope.conf
new file mode 100644
index 0000000..649c12e
--- /dev/null
+++ b/etc/sysctl.d/ptrace_scope.conf
@@ -0,0 +1,2 @@
+# Restricts the use of ptrace to root.
+kernel.yama.ptrace_scope=2