Other possible protection against RST/SYN attacks (was Re: TCP
RST attack
Dag-Erling Smørgrav
des at des.no
Wed Apr 21 14:01:45 PDT 2004
Mike Tancsa <mike at sentex.net> writes:
> I am no IP expert, but I have been around long enough to know that
> these default values get set only after long arduous debates and often
> there are tradeoffs by raising or lowering a value. I guess I am
> trying to find that original debate to see what I might be in for by
> implementing this with my peers who request it.
I think the default ttl of 64 was an arbitrary choice. You would
probably be fine using 32, but any lower than that and you would start
having trouble crossing oceans.
DES
--
Dag-Erling Smørgrav - des at des.no
More information about the freebsd-security
mailing list