Wiki

User Tools

Site Tools

Trace:
linux_hardening_guide:sysctl

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
linux_hardening_guide:sysctl [2025/05/31 15:17] peterlinux_hardening_guide:sysctl [2025/05/31 15:19] (current) peter
Line 191: Line 191:
 These enable source validation of packets received from all interfaces of the machine. These enable source validation of packets received from all interfaces of the machine.
  
-  * This protects against IP spoofing, in which an attacker sends a packet with a fraudulent IP address.+  * This protects against [[https://en.wikipedia.org/wiki/IP_address_spoofing|IP spoofing]], in which an attacker sends a packet with a fraudulent IP address.
  
 ---- ----
Line 206: Line 206:
 </code> </code>
  
-These disable ICMP redirect acceptance and sending to prevent man-in-the-middle attacks and minimize information disclosure.+These disable ICMP redirect acceptance and sending to prevent [[https://askubuntu.com/questions/118273/what-are-icmp-redirects-and-should-they-be-blocked|man-in-the-middle attacks]] and minimize information disclosure.
  
 ---- ----
linux_hardening_guide/sysctl.1748704646.txt.gz · Last modified: 2025/05/31 15:17 by peter
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki