https://futex.re/mediawiki/index.php?action=history&feed=atom&title=13.5_Tips13.5 Tips - Historique des versions2026-05-13T16:22:25ZHistorique des versions pour cette page sur le wikiMediaWiki 1.39.17https://futex.re/mediawiki/index.php?title=13.5_Tips&diff=1512&oldid=prevFutex le 5 juin 2012 à 15:062012-06-05T15:06:58Z<p></p>
<p><b>Nouvelle page</b></p><div>Vérifier que la stack n'est pas exécutable<br />
# sedmgr<br />
Stack Execution Disable (SED) mode: select<br />
SED configured in kernel: select<br />
<br />
Modifier le SED d'un programme (Insertion d'un tag dans le header COFF)<br />
# sedmgr -c exempt getenvaddress<br />
<br />
Afficher le SED d'un programme<br />
# sedmgr -d getenvaddress<br />
getenvaddress : system<br />
<br />
Decrease the ARP cache cleanup interval.<br />
no -o arpt_killc=20 <br />
<br />
Disable ICMP broadcast echo activity. Otherwise, your system could be used as part of a Smurf attack:<br />
no -o directed_broadcast=0<br />
<br />
Disable ICMP routing redirects. Otherwise, your system could have its routing table misadjusted by an attacker. <br />
no -o ipignoreredirects=1<br />
no -o ipsendredirects=0 <br />
<br />
Disable ICMP broadcast probes. Otherwise, an attacker might be able to reverse engineer some details of your network infrastructure. <br />
no -o icmpaddressmask=0 <br />
<br />
Disable IP source routing. The only use of IP source routing these days is by attackers trying to spoof IP addresses that you would trust as internal hosts<br />
no -o ipsrcroutesend=0<br />
no -o ipsrcrouteforward=0 <br />
<br />
Increase resiliance under heavy TCP load (which makes the system more resistant to SYN Flood attacks).<br />
no -o clean_partial_conns=1 <br />
<br />
Increase TCP send and receive window sizes to at least 32 kbytes.<br />
no -o tcp_sendspace=32768<br />
no -o tcp_recvspace=32768</div>Futex