Preventing a decrease in performance.
Disable the following parameters will prevent a hacker from using a spoofing attack against the IP address of the server:
sysctl –w net.ipv4.conf.eth0.accept_source_route = 0
sysctl –w net.ipv4.conf.lo.accept_source_route = 0
sysctl –w net.ipv4.conf.default.accept_source_route = 0
sysctl –w net.ipv4.conf.all.accept_source_route = 0
To prevent DOS (denial of service)
sysctl –w net.ipv4.tcp_syncookies = 1
Thursday, August 7, 2008
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment