diff options
author | YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org> | 2007-04-24 14:58:30 -0700 |
---|---|---|
committer | David S. Miller <davem@davemloft.net> | 2007-04-24 14:58:30 -0700 |
commit | 0bcbc92629044b5403719f77fb015e9005b1f504 (patch) | |
tree | ac9635a8ac7b14edcaa0e5ad42a5bc70f778ec33 /Documentation/networking | |
parent | 05d224468a273a9ee773a0e9d34227ee7f2c0840 (diff) | |
download | linux-0bcbc92629044b5403719f77fb015e9005b1f504.tar.gz linux-0bcbc92629044b5403719f77fb015e9005b1f504.tar.bz2 linux-0bcbc92629044b5403719f77fb015e9005b1f504.zip |
[IPV6]: Disallow RH0 by default.
A security issue is emerging. Disallow Routing Header Type 0 by default
as we have been doing for IPv4.
Note: We allow RH2 by default because it is harmless.
Signed-off-by: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'Documentation/networking')
-rw-r--r-- | Documentation/networking/ip-sysctl.txt | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/Documentation/networking/ip-sysctl.txt b/Documentation/networking/ip-sysctl.txt index d3aae1f9b4c1..702d1d8dd04a 100644 --- a/Documentation/networking/ip-sysctl.txt +++ b/Documentation/networking/ip-sysctl.txt @@ -851,6 +851,15 @@ accept_redirects - BOOLEAN Functional default: enabled if local forwarding is disabled. disabled if local forwarding is enabled. +accept_source_route - INTEGER + Accept source routing (routing extension header). + + > 0: Accept routing header. + = 0: Accept only routing header type 2. + < 0: Do not accept routing header. + + Default: 0 + autoconf - BOOLEAN Autoconfigure addresses using Prefix Information in Router Advertisements. |