syncookies: remove Kconfig text line about disabled-by-default

syncookies default to on since e994b7c901ded7200b525a707c6da71f2cf6d4bb (tcp: Don't make syn cookies initial setting depend on CONFIG_SYSCTL). Signed-off-by: Florian Westphal <fw@strlen.de> Signed-off-by: David S. Miller <davem@davemloft.net>
author: Florian Westphal <fw@strlen.de> 2010-06-02 20:42:30 -0400
committer: David S. Miller <davem@davemloft.net> 2010-06-04 18:56:01 -0400
commit: 57f1553ee5d9f093660cc49098f494e17ed11668 (patch)
tree: 95387158da48c4dde7bb17477f87944c13e2456f /net/ipv4
parent: ca739481662137b8f717bc21f16719cda3c33d6b (diff)
1 files changed, 5 insertions, 5 deletions
diff --git a/net/ipv4/Kconfig b/net/ipv4/Kconfig
index 8e3a1fd938ab..7c3a7d191249 100644
--- a/net/ipv4/Kconfig
+++ b/net/ipv4/Kconfig
@@ -303,7 +303,7 @@ config ARPD
          If unsure, say N.
 config SYN_COOKIES
-        bool "IP: TCP syncookie support (disabled per default)"
+        bool "IP: TCP syncookie support"
        ---help---
          Normal TCP/IP networking is open to an attack known as "SYN
          flooding". This denial-of-service attack prevents legitimate remote
@@ -328,13 +328,13 @@ config SYN_COOKIES
          server is really overloaded. If this happens frequently better turn
          them off.
-          If you say Y here, note that SYN cookies aren't enabled by default;
+          If you say Y here, you can disable SYN cookies at run time by
-          you can enable them by saying Y to "/proc file system support" and
+          saying Y to "/proc file system support" and
          "Sysctl support" below and executing the command
-          echo 1 >/proc/sys/net/ipv4/tcp_syncookies
+          echo 0 > /proc/sys/net/ipv4/tcp_syncookies
-          at boot time after the /proc file system has been mounted.
+          after the /proc file system has been mounted.
          If unsure, say N.
author	Florian Westphal <fw@strlen.de>	2010-06-02 20:42:30 -0400
committer	David S. Miller <davem@davemloft.net>	2010-06-04 18:56:01 -0400
commit	57f1553ee5d9f093660cc49098f494e17ed11668 (patch)
tree	95387158da48c4dde7bb17477f87944c13e2456f /net/ipv4
parent	ca739481662137b8f717bc21f16719cda3c33d6b (diff)

diff --git a/net/ipv4/Kconfig b/net/ipv4/Kconfig index 8e3a1fd938ab..7c3a7d191249 100644 --- a/net/ipv4/Kconfig +++ b/net/ipv4/Kconfig
@@ -303,7 +303,7 @@ config ARPD
303	If unsure, say N.	303	If unsure, say N.
304		304
305	config SYN_COOKIES	305	config SYN_COOKIES
306	bool "IP: TCP syncookie support (disabled per default)"	306	bool "IP: TCP syncookie support"
307	---help---	307	---help---
308	Normal TCP/IP networking is open to an attack known as "SYN	308	Normal TCP/IP networking is open to an attack known as "SYN
309	flooding". This denial-of-service attack prevents legitimate remote	309	flooding". This denial-of-service attack prevents legitimate remote
@@ -328,13 +328,13 @@ config SYN_COOKIES
328	server is really overloaded. If this happens frequently better turn	328	server is really overloaded. If this happens frequently better turn
329	them off.	329	them off.
330		330
331	If you say Y here, note that SYN cookies aren't enabled by default;	331	If you say Y here, you can disable SYN cookies at run time by
332	you can enable them by saying Y to "/proc file system support" and	332	saying Y to "/proc file system support" and
333	"Sysctl support" below and executing the command	333	"Sysctl support" below and executing the command
334		334
335	echo 1 >/proc/sys/net/ipv4/tcp_syncookies	335	echo 0 > /proc/sys/net/ipv4/tcp_syncookies
336		336
337	at boot time after the /proc file system has been mounted.	337	after the /proc file system has been mounted.
338		338
339	If unsure, say N.	339	If unsure, say N.
340		340