Re: [PATCH] add stealth mode

From: Nicolas Dichtel
Date: Thu Jul 02 2015 - 04:23:52 EST

Next message: Al Viro: "Re: running out of tags in 9P (was Re: [git pull] vfs part 2)"
Previous message: Kishon Vijay Abraham I: "Re: [PATCH 2/3] phy: rcar-gen2 usb: Add Host/Function switching for USB0"
In reply to: Matteo Croce: "[PATCH] add stealth mode"
Next in thread: Matteo Croce: "Re: [PATCH] add stealth mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Le 02/07/2015 00:53, Matteo Croce a Ãcrit :

Add option to disable any reply not related to a listening socket,
like RST/ACK for TCP and ICMP Dest-Unreach for UDP.
Also disables ICMP replies to echo request and timestamp.
The stealth mode can be enabled selectively for a single interface.
---
include/linux/inetdevice.h | 1 +
include/linux/ipv6.h | 1 +
include/uapi/linux/ip.h | 1 +
net/ipv4/devinet.c | 1 +
net/ipv4/icmp.c | 6 ++++++
net/ipv4/tcp_ipv4.c | 3 ++-
net/ipv4/udp.c | 4 +++-
net/ipv6/addrconf.c | 7 +++++++
net/ipv6/icmp.c | 3 ++-
net/ipv6/tcp_ipv6.c | 2 +-
net/ipv6/udp.c | 3 ++-
11 files changed, 27 insertions(+), 5 deletions(-)

It is recommended to add an explanation of new sysctl here:
Documentation/networking/ip-sysctl.txt
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Al Viro: "Re: running out of tags in 9P (was Re: [git pull] vfs part 2)"
Previous message: Kishon Vijay Abraham I: "Re: [PATCH 2/3] phy: rcar-gen2 usb: Add Host/Function switching for USB0"
In reply to: Matteo Croce: "[PATCH] add stealth mode"
Next in thread: Matteo Croce: "Re: [PATCH] add stealth mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]