Add sysctl hardening options which disallow perf/viewing kernel symbols and dmesg for non-admin users as they contain valuable information for attackers.