From d251c43344a04e1dd8afbf12352432810874e021 Mon Sep 17 00:00:00 2001
From: madaidan <50278627+madaidan@users.noreply.github.com>
Date: Fri, 14 Feb 2020 18:17:20 +0000
Subject: [PATCH] Restrict the SysRq key

---
 etc/sysctl.d/30_security-misc.conf | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/etc/sysctl.d/30_security-misc.conf b/etc/sysctl.d/30_security-misc.conf
index 4c17bcb..399c5d2 100644
--- a/etc/sysctl.d/30_security-misc.conf
+++ b/etc/sysctl.d/30_security-misc.conf
@@ -118,3 +118,9 @@ net.ipv4.conf.all.rp_filter=1
 net.ipv4.tcp_timestamps=0
 
 #### meta end
+
+## Only allow the SysRq key to be used for shutdowns and the
+## Secure Attention Key (SAK).
+##
+## https://forums.whonix.org/t/sysrq-magic-sysrq-key/8079/
+kernel.sysrq=132