#2813: Firewall defects
--------------------+-------------------------------------------------------
Reporter: Spinal | Owner: blfs-b...@…
Type: defect | Status: new
Priority: normal | Milestone: 6.4
Component: BOOK | Version: SVN
Severity: normal | Keywords:
--------------------+-------------------------------------------------------
Comment(by bdu...@…):
Replying to [ticket:2813 Spinal]:
> 1) echo 0 > /proc/sys/net/ipv4/conf/all/send_redirects
>
> '''DOESN'T WORK'''
> Probably the best thing we can do is adding this in rc.iptables:
> echo 0 > /proc/sys/net/ipv4/conf/default/send_redirects
It looks like we should add a default everyplace we have an all line, but
I think the issue is not really relevant in most cases. It seems that it
would only apply when adding a wifi card after the system is up and the
firewall code has run.
> 3) accept_redirects - same issue like with send_redirects (but only for
non-routers, with routers current config works fine).
OK.
> 4) Comment "Don¹t send Redirect Messages" - "Don¹t" -> "Don't", should
be fixed
According to svn, I did that, but I have no idea how it was done. That's
a 0xB9 when it should be a 0x27.
--
Ticket URL: <http://wiki.linuxfromscratch.org/blfs/ticket/2813#comment:1>
BLFS Trac <http://wiki.linuxfromscratch.org/blfs>
Beyond Linux From Scratch
--
http://linuxfromscratch.org/mailman/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
