From b7adc678f40da3094323863601fde85e2ae21382 Mon Sep 17 00:00:00 2001
From: Aminda Suomalainen <suomalainen@aminda.eu>
Date: Mon, 13 Apr 2026 09:47:06 +0300
Subject: [PATCH] sysctl.d: cleanup

---
 etc/sysctl.d/90-ssd-swappiness.conf                   | 6 ++----
 etc/sysctl.d/questionable/00-kernel-core_pattern.conf | 4 ----
 etc/sysctl.d/questionable/00-local-userns.conf        | 9 ---------
 etc/sysctl.d/questionable/91-hdd-swappiness.conf      | 2 --
 4 files changed, 2 insertions(+), 19 deletions(-)
 delete mode 100644 etc/sysctl.d/questionable/00-kernel-core_pattern.conf
 delete mode 100644 etc/sysctl.d/questionable/00-local-userns.conf
 delete mode 100644 etc/sysctl.d/questionable/91-hdd-swappiness.conf

diff --git a/etc/sysctl.d/90-ssd-swappiness.conf b/etc/sysctl.d/90-ssd-swappiness.conf
index 728f5c78..38492a5e 100644
--- a/etc/sysctl.d/90-ssd-swappiness.conf
+++ b/etc/sysctl.d/90-ssd-swappiness.conf
@@ -1,4 +1,2 @@
-# Only use swap when it has to be used. On SSDs it's preferable to not have
-# so much swap use, while on HDD the default 60 is ok.
-# REMEMBER TO `sudo systemctl enable --now earlyoom`
-vm.swappiness = 1
+# Start using swap when 90 % of RAM is used.
+vm.swappiness = 10
diff --git a/etc/sysctl.d/questionable/00-kernel-core_pattern.conf b/etc/sysctl.d/questionable/00-kernel-core_pattern.conf
deleted file mode 100644
index 12477aeb..00000000
--- a/etc/sysctl.d/questionable/00-kernel-core_pattern.conf
+++ /dev/null
@@ -1,4 +0,0 @@
-# Core files appear with filename <binary>-<PID>-<hostname>.core
-# Note, I am not sure if this makes sense especially when systemd or apport
-# or something similar is used as it tends to override this option
-kernel.core_pattern = %e-%p-%h.core
diff --git a/etc/sysctl.d/questionable/00-local-userns.conf b/etc/sysctl.d/questionable/00-local-userns.conf
deleted file mode 100644
index 41a3fc7a..00000000
--- a/etc/sysctl.d/questionable/00-local-userns.conf
+++ /dev/null
@@ -1,9 +0,0 @@
-# TODO: is this deprecated? It might be Debian-only regardless.
-
-# A security hole required by at least by
-#  * Brave https://github.com/brave/brave-browser/issues/3420
-#  * IPFS Desktop https://github.com/ipfs-shipyard/ipfs-desktop/issues/1044
-#  * A lot of Electron apps? https://github.com/electron/electron/issues/17972
-#    Look for "The SUID sandbox helper binary was found, but is not configured correctly."
-# via https://superuser.com/a/1122977
-kernel.unprivileged_userns_clone=1
diff --git a/etc/sysctl.d/questionable/91-hdd-swappiness.conf b/etc/sysctl.d/questionable/91-hdd-swappiness.conf
deleted file mode 100644
index 720e4f5a..00000000
--- a/etc/sysctl.d/questionable/91-hdd-swappiness.conf
+++ /dev/null
@@ -1,2 +0,0 @@
-# This is the default
-vm.swappiness = 60