SBDavid
May 21st, 2009
May 21st, 2009
TCP_SYN Cookies protection
TCP_SYNCookies protection
A SYN-flood attack has the ability to bring the network aspect of your linux box to a snail like crawl. TCP_SYNCookies protection attempts to stop this from taking a heavy toll on the machine. To enable tcp_syncookies protection, use the following command:
echo 1 > /proc/sys/net/ipv4/tcp_syncookies
If it’s not enabled, there isn’t much you can do other than build a new kernel and reboot and use it.
