diff --git a/hosts/micronix/config/sysctl.d/hardening.nix b/hosts/micronix/config/sysctl.d/hardening.nix
index 1c412f4..6a8ac0f 100644
--- a/hosts/micronix/config/sysctl.d/hardening.nix
+++ b/hosts/micronix/config/sysctl.d/hardening.nix
@@ -12,7 +12,7 @@
     "kernel.printk" = "3 3 3 3";
     "kernel.sysrq" = "4";
     "kernel.unprivileged_bpf_disabled" = "1";
-    "kernel.yama.ptrace_scope " = " 0";
+    "kernel.yama.ptrace_scope" = "0";
     "net.core.bpf_jit_harden" = "2";
     "net.ipv4.conf.all.accept_redirects" = "0";
     "net.ipv4.conf.all.accept_source_route" = "0";
@@ -30,7 +30,7 @@
     "net.ipv4.tcp_rfc1337" = "1";
     "net.ipv4.tcp_sack" = "0";
     "net.ipv4.tcp_syncookies" = "1";
-    "net.ipv4.tcp_timestamps" = "0";
+    "net.ipv4.tcp_timestamps" = "1";
     "net.ipv6.conf.all.accept_ra" = "0";
     "net.ipv6.conf.all.accept_redirects" = "0";
     "net.ipv6.conf.all.accept_source_route" = "0";
diff --git a/hosts/micronix/config/sysctl.d/performance.nix b/hosts/micronix/config/sysctl.d/performance.nix
index 7cb71c4..2855bd1 100644
--- a/hosts/micronix/config/sysctl.d/performance.nix
+++ b/hosts/micronix/config/sysctl.d/performance.nix
@@ -3,11 +3,13 @@
     "vm.dirty_ratio" = 20;
     "vm.dirty_background_ratio" = 10;
     "vm.vfs_cache_pressure" = 25;
-    "net.core.default_qdisc" = "cake";
-    "net.ipv4.tcp_congestion_control" = "bbr";
+    "net.core.default_qdisc" = ''
+      cake'';
+    "net.ipv4.tcp_congestion_control" = ''
+      bbr'';
     "vm.page-cluster" = 1;
     "kernel.nmi_watchdog" = 0;
-    "vm.swappiness" = 200;
+    "vm.swappiness" = 10;
     "vm.max_map_count" = 2147483642;
     "vm.watermark_boost_factor" = 1;
     "vm.watermark_scale_factor" = 1000;
@@ -20,8 +22,10 @@
     "net.core.wmem_default" = 1048576;
     "net.core.wmem_max" = 16777216;
     "net.core.optmem_max" = 65536;
-    "net.ipv4.tcp_rmem" = "4096 1048576 2097152";
-    "net.ipv4.tcp_wmem" = "4096 65536 16777216";
+    "net.ipv4.tcp_rmem" = ''
+      4096 1048576 2097152'';
+    "net.ipv4.tcp_wmem" = ''
+      4096 65536 16777216'';
     "net.ipv4.udp_rmem_min" = 16384;
     "net.ipv4.udp_wmem_min" = 16384;
     "net.ipv4.tcp_fastopen" = 3;
@@ -33,6 +37,7 @@
     "net.ipv4.tcp_keepalive_intvl" = 10;
     "net.ipv4.tcp_keepalive_probes" = 6;
     "net.ipv4.tcp_mtu_probing" = 1;
-    "net.ipv4.ip_local_port_range" = "30000 65535";
+    "net.ipv4.ip_local_port_range" = ''
+      30000 65535'';
   };
 }