Archive for the tag 'spoof protection'

SBDavid
May 21st, 2009

How to turn on spoof protection

How to turn on spoof protection

To turn on spoof protection, run a simple bash script:

for i in /proc/sys/net/ipv4/conf/*/rp_filter; do echo 1 > $i done;

Sysctl Hardening Modifies kernel operating values to strengthen TCP/IP stack against various attacks including syn floods.

sysctl.conf is a simple file containing sysctl values to be read in and set by sysctl(8)

EXAMPLES

/sbin/sysctl -a
/sbin/sysctl -n kernel.hostname
/sbin/sysctl -w kernel.domainname=”example.com”
/sbin/sysctl -p /etc/sysctl.conf