Hello,
In 'securing and optimizing linux', the author suggests to turn off:
tcp_window_scaling
tcp_sack
Unfortunatelly he does not say why.
it's here:
http://www.linuxdoc.org/LDP/solrhe/Securing-Optimizing-Linux-RH-Edition-v1.3/chap6sec75.html
Any cons for sack and windows scaling?
AFAIK Selective ACK is a neat feature to allow us to ACK data in a more
elastic way. Say ACK all data to X, and some from Y to Z.
I am not sure about window scaling, maybe someone could advertise a
window of 0 bytes, then the connection would stall, but it is his
connection, not other people's.
any ideas?
Best Regards,
Maciej Soltysiak
