Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-01-12 20:09:28 -05:00
Code Issues Packages Projects Releases Wiki Activity

Update README.md regarding secure ICMP redirects

Browse Source
This commit is contained in:
Raja Grewal 2024-07-18 15:28:31 +10:00
parent 13cc1f0986
commit 95286df502
No known key found for this signature in database
GPG Key ID: 92CA473C156B64C4
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
README.md
View File

@ -72,7 +72,8 @@ Various networking components of the TCP/IP stack are hardened for IPv4/6.
from all interfaces to prevent IP spoofing.
- Disable ICMP redirect acceptance and redirect sending messages to
prevent man-in-the-middle attacks and minimize information disclosure.
prevent man-in-the-middle attacks and minimize information disclosure. If
ICMP redirect messages are permitted, only do so from approved gateways.
- Ignore ICMP echo requests to prevent clock fingerprinting and Smurf attacks.