tcp syn flood and /proc configuration
Hello list,
Is there anyone having any suggestion to tune the /proc/sys/net/ipv4/*
to avoid tcp syn flood attack?
After reading Documentation/networking/ip-sysctl.txt, I'd like to change
tcp_syn_retries
tcp_synack_retries
both to "1", does it help? Any suggestion highly appreciated.
--
Patrick Hsieh <pahud@pahud.net>
GPG public key http://pahud.net/pubkeys/pahudatpahud.gpg
--
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: