Security vulnerability in TCP of linux, patches available, how soon in Fedora?

Rick Walker Tue, 09 Aug 2016 22:45:00 -0700

> 1. Open /etc/sysctl.conf, append a command
> "/net.ipv4/tcp_challenge_ack_limit = 999999999".


I'm very skeptical.  The default on my stock machine is 100.  You can check 
your own with:

      sysctl -A | grep tcp | grep limit

In the absence of better documentation, I'm guessing that opening the
ack limit to several million is essentially setting your machine up to
unlimited hack attack. 

--
Rick Walker

--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://lists.fedoraproject.org/admin/lists/users@lists.fedoraproject.org
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org

Security vulnerability in TCP of linux, patches available, how soon in Fedora?

Reply via email to