tcp_syncookie question
Bruno Wolff III
bruno at wolff.to
Wed Jun 1 16:57:59 UTC 2011
On Wed, Jun 01, 2011 at 11:09:35 -0400,
Genes MailLists <lists at sapience.com> wrote:
>
> Right - I understand its purpose and benefits - but networking (and
> the speed and window sizes) have changed since 1996 ... my question is
> if it is still good practice today to use it?
Unless there is some other alternate way to maintain state in the packets,
the DoS attacks will still work. If you aren't worried about those you
could turn it off.
Also, my memory is that there is a threshold for switching to syn cookies.
I don't remember where I saw the reference, but if that is correct, you
shouldn't be using them unless your machine is fielding lots of connections.
More information about the users
mailing list