Re: (OT kinda) Newly-discovered TCP flaw

To: Gene Heskett <gheskett@shentel.net>
Cc: debian-user@lists.debian.org
Subject: Re: (OT kinda) Newly-discovered TCP flaw
From: Dan Ritter <dsr@randomstring.org>
Date: Thu, 11 Aug 2016 12:51:32 -0400
Message-id: <[🔎] 20160811165132.GU13077@newtao.randomstring.org>
In-reply-to: <[🔎] 201608111216.30257.gheskett@shentel.net>
References: <[🔎] slrnnqp80d.67r.curty@einstein.electron.org> <[🔎] 201608111216.30257.gheskett@shentel.net>

On Thu, Aug 11, 2016 at 12:16:30PM -0400, Gene Heskett wrote:
> On Thursday 11 August 2016 11:55:56 Curt wrote:
> 
> > http://www.pcworld.com/article/3106180/security/use-the-internet-this-
> >linux-flaw-could-open-you-up-to-attack.html?google_editors_picks=true
> >
> > Calling all experts: cause for concern?
> 
> I do not know if wheezy is/can be affected, however the fix promulgated 
> by the link to the UCR announcement is wrong, at least for my wheezy 
> install, in that when I investigated my machine, the dots in that 
> string:
> 
> net.ipv4.tcp_challenge_ack_limit = 999999999
> 
> to add should be changed to forward slashes:
> 
> net/ipv4/tcp_challenge_ack_limit = 999999999
> 
> as that is the directory structure on this wheezy based machine, and then 
> the following update command:
> 
> sysctl -p

Not exactly. While the directory structure certainly uses
slashes, the sysctl.conf uses either slashes or dots, and 
dots are the convention used by almost everyone across Linux
distros, including examples in Debian documentation.

-dsr-

Reply to:

References:
- (OT kinda) Newly-discovered TCP flaw
  - From: Curt <curty@free.fr>
- Re: (OT kinda) Newly-discovered TCP flaw
  - From: Gene Heskett <gheskett@shentel.net>

Prev by Date: Re: The DISPLAY variable.
Next by Date: Re: Debian server for backups of Windows clients
Previous by thread: Re: (OT kinda) Newly-discovered TCP flaw
Next by thread: Re: (OT kinda) Newly-discovered TCP flaw
Index(es):
- Date
- Thread