home *** CD-ROM | disk | FTP | other *** search
/ Mac Easy 2010 May / Mac Life Ubuntu.iso / casper / filesystem.squashfs / etc / sysctl.d / 10-network-security.conf < prev    next >
Encoding:
Text File  |  2009-03-18  |  509 b   |  13 lines
  1.  
  2. # Turn on Source Address Verification in all interfaces to
  3. # prevent some spoofing attacks.
  4. net.ipv4.conf.default.rp_filter=1
  5. net.ipv4.conf.all.rp_filter=1
  6.  
  7. # Turn on SYN-flood protections.  Starting with 2.6.26, there is no loss
  8. # of TCP functionality/features under normal conditions.  When flood
  9. # protections kick in under high unanswered-SYN load, the system
  10. # should remain more stable, with a trade off of some loss of TCP
  11. # functionality/features (e.g. TCP Window scaling).
  12. net.ipv4.tcp_syncookies=1
  13.