diff options
| author | YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org> | 2007-04-24 17:58:30 -0400 |
|---|---|---|
| committer | David S. Miller <davem@davemloft.net> | 2007-04-24 17:58:30 -0400 |
| commit | 0bcbc92629044b5403719f77fb015e9005b1f504 (patch) | |
| tree | ac9635a8ac7b14edcaa0e5ad42a5bc70f778ec33 /Documentation/networking | |
| parent | 05d224468a273a9ee773a0e9d34227ee7f2c0840 (diff) | |
[IPV6]: Disallow RH0 by default.
A security issue is emerging. Disallow Routing Header Type 0 by default
as we have been doing for IPv4.
Note: We allow RH2 by default because it is harmless.
Signed-off-by: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'Documentation/networking')
| -rw-r--r-- | Documentation/networking/ip-sysctl.txt | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/Documentation/networking/ip-sysctl.txt b/Documentation/networking/ip-sysctl.txt index d3aae1f9b4c1..702d1d8dd04a 100644 --- a/Documentation/networking/ip-sysctl.txt +++ b/Documentation/networking/ip-sysctl.txt | |||
| @@ -851,6 +851,15 @@ accept_redirects - BOOLEAN | |||
| 851 | Functional default: enabled if local forwarding is disabled. | 851 | Functional default: enabled if local forwarding is disabled. |
| 852 | disabled if local forwarding is enabled. | 852 | disabled if local forwarding is enabled. |
| 853 | 853 | ||
| 854 | accept_source_route - INTEGER | ||
| 855 | Accept source routing (routing extension header). | ||
| 856 | |||
| 857 | > 0: Accept routing header. | ||
| 858 | = 0: Accept only routing header type 2. | ||
| 859 | < 0: Do not accept routing header. | ||
| 860 | |||
| 861 | Default: 0 | ||
| 862 | |||
| 854 | autoconf - BOOLEAN | 863 | autoconf - BOOLEAN |
| 855 | Autoconfigure addresses using Prefix Information in Router | 864 | Autoconfigure addresses using Prefix Information in Router |
| 856 | Advertisements. | 865 | Advertisements. |