diff --git a/hosts/dunamis/hardware.nix b/hosts/dunamis/hardware.nix
index 093c80e..e751efd 100644
--- a/hosts/dunamis/hardware.nix
+++ b/hosts/dunamis/hardware.nix
@@ -28,25 +28,29 @@
     };
   };
   boot.kernelParams = [
-    "mitigations=auto"
-    "spectre_v2=on"
-    "spectre_bhi=on"
-    "spec_store_bypass_disable=on"
-    "tsx=off"
-    "kvm.nx_huge_pages=force"
-    "nosmt=force"
-    "l1d_flush=on"
-    "spec_rstack_overflow=safe-ret"
-    "gather_data_sampling=force"
-    "reg_file_data_sampling=on"
-    "module.sig_enforce=1"
-    "lockdown=confidentiality"
-    "intel_iommu=on"
+    # "mitigations=auto"
+    # "spectre_v2=on"
+    # "spectre_v2_user=on"
+    # "spectre_bhi=on"
+    # "spec_store_bypass_disable=on"
+    # "tsx=off"
+    # "kvm.nx_huge_pages=force"
+    # "l1d_flush=on"
     "amd_iommu=force_isolation"
+    "debugfs=off"
     "efi=disable_early_pci_dma"
-    "iommu=force"
+    "gather_data_sampling=force"
+    # "ia32_emulation=0"
+    "intel_iommu=on"
     "iommu.passthrough=0"
     "iommu.strict=1"
+    "iommu=force"
+    "lockdown=confidentiality"
+    "module.sig_enforce=1"
+    "page_alloc.shuffle=1"
+    "reg_file_data_sampling=on"
+    "spec_rstack_overflow=safe-ret"
+    "vsyscall=none"
   ];
 
   hardware.graphics = {