36 Initial Setup Ensure AppArmor is enabled in the bootloader configuration Vim /etc/default/grub GRUB_CMDLINE_LINUX=' apparmor =1 security= apparmor ' update-grub https://www.tenable.com/audits/items/CIS_Debian_Linux_10_v1.0.0_L1_Workstation.audit:e623af4464dcd9d63ca5634e6a7b2a30 88 Network Configuration Ensure packet redirect sending is disabled vim /etc/ sysctl.conf or a /etc/ sysctl.d / sysctl -w net.ipv4.conf.all.send_redirects=0 sysctl -w net.ipv4.conf . default.send _redirects=0 sysctl -w net.ipv4.route .flush=1 https://www.tenable.com/audits/items/Tenable_Best_Practices_Cisco_Firepower_Management_Center_OS.audit:24b8fcd749b252466282dc40c9226bf3 91 Network Configuration Ensure secure ICMP redirects are not accepted Ensure secure ICMP redirects are not accepted - sysctl net.ipv4.conf . default.secure _redirects ...
