mirror of
https://github.com/Kicksecure/security-misc.git
synced 2025-08-01 00:48:42 -04:00
Add reference and move text
This commit is contained in:
parent
a1d1f97955
commit
c2aae73ce1
2 changed files with 15 additions and 14 deletions
|
@ -102,6 +102,9 @@ Networking:
|
|||
- Disable ICMP redirect acceptance and redirect sending messages to prevent
|
||||
man-in-the-middle attacks and minimize information disclosure.
|
||||
|
||||
- Optional - Drop gratuitous ARP packets to prevent ARP cache poisoning
|
||||
via man-in-the-middle and denial-of-service attacks.
|
||||
|
||||
- Ignore ICMP echo requests to prevent clock fingerprinting and Smurf attacks.
|
||||
|
||||
- Ignore bogus ICMP error responses.
|
||||
|
@ -121,9 +124,6 @@ Networking:
|
|||
|
||||
- Optional - Enable IPv6 Privacy Extensions.
|
||||
|
||||
- Optional - Drop gratuitous ARP packets to prevent ARP cache poisoning
|
||||
via man-in-the-middle and denial-of-service attacks.
|
||||
|
||||
### Boot parameters
|
||||
|
||||
Mitigations for known CPU vulnerabilities are enabled in their strictest form
|
||||
|
|
Loading…
Add table
Add a link
Reference in a new issue