diff --git a/etc/sysctl.d/30_security-misc.conf b/etc/sysctl.d/30_security-misc.conf
index ed0bd49..e83df56 100644
--- a/etc/sysctl.d/30_security-misc.conf
+++ b/etc/sysctl.d/30_security-misc.conf
@@ -134,10 +134,8 @@ kernel.sysrq=132
 ## https://lkml.org/lkml/2019/4/15/890
 dev.tty.ldisc_autoload=0
 
-## Disable for now.
-## https://forums.whonix.org/t/kernel-hardening/7296/406
 ## Restrict the userfaultfd() syscall to root as it can make heap sprays
 ## easier.
 ##
 ## https://duasynt.com/blog/linux-kernel-heap-spray
-#vm.unprivileged_userfaultfd=0
+vm.unprivileged_userfaultfd=0