V8.13.144.2025.10.16

Signed-off-by: Marc S. Weidner <msw@coresecret.dev>

config/includes.chroot/etc/sysctl.d/99_local.hardened

@@ -9,7 +9,7 @@
 # SPDX-PackageName: CISS.debian.live.builder
 # SPDX-Security-Contact: security@coresecret.eu
 
-# Version Master V8.13.142.2025.10.14
+# Version Master V8.13.144.2025.10.16
 
 ### https://docs.kernel.org/
 ### https://github.com/a13xp0p0v/kernel-hardening-checker/
@@ -280,15 +280,6 @@ net.ipv4.conf.all.forwarding=0
 net.ipv6.conf.all.accept_ra=0
 net.ipv6.conf.default.accept_ra=0
 
-###########################################################################################
-# These parameters relate to secure ICMP redirects. ICMP redirects are messages that a
-# router sends to a device to inform it that there is a better route for the data traffic.
-# This setting prevents the system from responding to redirects that have been spoofed by
-# potential attackers to redirect traffic (e.g., for man-in-the-middle attacks).
-###########################################################################################
-net.ipv4.conf.all.secure_redirects=1
-net.ipv4.conf.default.secure_redirects=1
-
 ###########################################################################################
 # This setting prevents the disclosure of TCP timestamps that can be used for system
 # fingerprinting: