Scheduled Maintenance: We are aware of an issue with Google, AOL, and Yahoo services as email providers which are blocking new registrations. We are trying to fix the issue and we have several internal and external support tickets in process to resolve the issue. Please see: viewtopic.php?t=158230
Security news about TCP weakness
-
Head_on_a_Stick
- Posts: 14114
- Joined: 2014-06-01 17:46
- Location: London, England
- Has thanked: 81 times
- Been thanked: 133 times
Re: Security news about TCP weakness
^ https://git.zx2c4.com/linux/commit/?id= ... 33c551f758
Check your ACK limit, as described above, the patched kernel will have "1000" as the default value.
Check your ACK limit, as described above, the patched kernel will have "1000" as the default value.
deadbang
-
Head_on_a_Stick
- Posts: 14114
- Joined: 2014-06-01 17:46
- Location: London, England
- Has thanked: 81 times
- Been thanked: 133 times
-
Nili
- Posts: 441
- Joined: 2014-04-30 14:04
- Location: $HOME/♫♪
- Has thanked: 5 times
- Been thanked: 3 times
Re: Security news about TCP weakness
I have changed mine to value 1000 on 3.16 series.
as a (root) nano /etc/sysctl.conf adding this code.
Value 100 confirmed by the above links that is default.
Thanks HoaS for new link update
Nili
Code: Select all
sudo sysctl -w net.ipv4.tcp_challenge_ack_limit=1000Code: Select all
net.ipv4.tcp_challenge_ack_limit=1000Thanks HoaS for new link update
Nili
openSUSE Tumbleweed KDE/Wayland
♫♪ Elisa playing...
Damascus Cocktail ♪ Black Reverie ♪ Dye the sky.
♫♪ Elisa playing...
Damascus Cocktail ♪ Black Reverie ♪ Dye the sky.
Re: Security news about TCP weakness
there is a patch for this:
https://github.com/torvalds/linux/commi ... 33c551f758
Why not yet been implemented in an update?
https://github.com/torvalds/linux/commi ... 33c551f758
Why not yet been implemented in an update?