Monday, December 1, 2008

Limiting Denial of Service (DoS) attacks

,
Author: Vikas Vishnu | Filed Under:
Denial of Service (DoS) attack is an attempt by a malicious (or unwitting) user, process, or system to prevent legitimate users from accessing a resource (usually a network service) by exploiting a weakness or design limitation in an information system. Examples of DoS attacks include flooding network connections, filling disk storage, disabling ports, or removing power. This can be limited by setting timeouts.
  • # echo 30 > /proc/sys/net/ipv4/tcp_fin_timeout
  • # echo 1800 > /proc/sys/net/ipv4/tcp_keepalive_time
  • # echo 1 > /proc/sys/net/ipv4/tcp_window_scaling
  • # echo 0 > /proc/sys/net/ipv4/tcp_sack
  • # echo 1280 > /proc/sys/net/ipv4/tcp_max_syn_backlog

Source: http://sourcelinux.wikidot.com/firewall-using-iptables

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)
 

A Linux Admin's WeBlog! Blak Magik is Designed by productive dreams for smashing magazine Bloggerized by Ipiet The Blog Full of Games © 2008