commit 82a17f1689e8957635c8ccaae7c9b3bff7f94d49
Author: Ruediger Oertel <ro@suse.de>
Date:   Thu Aug 22 15:42:09 2019 +0200

    add sysctl.d/51-network.conf to tighten network security a bit
    see also boo#1146866

diff --git a/files/usr/lib/sysctl.d/51-network.conf b/files/usr/lib/sysctl.d/51-network.conf
new file mode 100644
index 0000000..a450e58
--- /dev/null
+++ b/files/usr/lib/sysctl.d/51-network.conf
@@ -0,0 +1,6 @@
+net.ipv4.conf.all.accept_redirects = 0
+net.ipv4.conf.default.accept_redirects = 0
+net.ipv4.conf.all.accept_source_route = 0
+net.ipv4.conf.default.accept_source_route = 0
+net.ipv6.conf.all.accept_redirects = 0
+net.ipv6.conf.default.accept_redirects = 0