$cat /proc/sys/net/ipv4/tcp_max_syn_backlog
1024
$
Maximal number of remembered connection requests, which still did not
receive an acknowledgement from connecting client. The default value
is 1024 for systems with more than 128 MB of memory, and 128 for low
memory machines. If server suffers of overload, try to increase this
number.
source :
http://www.linuxinsight.com/proc_sys_net_ipv4_tcp_max_syn_backlog.html
Script.January/HPUX11/GEN003600 - 11 identical
12: # 6.10.06 JM created initial check.
13: # 9.20.06 JMazz chnage net.ipv4.tcp_max_syn_backlog test condition
14: # from -ne to -lt and the test value from 0 to 1280.
158: # "9.20.06:Code mod."
159: if [ `sysctl -a |grep "net.ipv4.tcp_max_syn_backlog" | awk -F"=" '{print $2}'` -lt 1280 ]
160: then
iase.disa.mil/stigs/SRR/UNIX_51-15January07.tar.bz2 - Unknown - Shell
Testing Response to a SYN Flood Attack
-- a selection follows
Also after the system is started, the value 0 must be
written in the /proc file system into the pseudo file
/proc/sys/net/ipv4/tcp_max_syn_backlog. This specifies
the maximum number of pending connection requests
allowed. When it equals 0, only one connection request
may be pending.
source :
Verifying TCP Implementation
Fang Fang
University of New Brunswick
POBox 4400
(506) 453-4566
(506) 453-4566
John M. DeDourek
University of New Brunswick
POBox 4400
(506) 453-4566
(506) 453-4566
q2a6z@unb.ca
dedourek@unb.ca
.png)
| jeffrin@rocketmail.com |