Date: 05 Nov 1998 18:54:51 +0100 From: dag-erli@ifi.uio.no (Dag-Erling C. =?iso-8859-1?Q?Sm=F8rgrav?= ) To: Poul-Henning Kamp <phk@critter.freebsd.dk> Cc: Nate Williams <nate@mt.sri.com>, Don Lewis <Don.Lewis@tsc.tdk.com>, cvs-committers@FreeBSD.ORG Subject: Re: cvs commit: src/usr.sbin/inetd inetd.c Message-ID: <xzppvb2vxck.fsf@hrotti.ifi.uio.no> In-Reply-To: Poul-Henning Kamp's message of "Thu, 05 Nov 1998 18:45:16 %2B0100" References: <354.910287916@critter.freebsd.dk>
next in thread | previous in thread | raw e-mail | index | archive | help
Poul-Henning Kamp <phk@critter.freebsd.dk> writes: > In message <xzp67cuxdgj.fsf@hrotti.ifi.uio.no>, Dag-Erling C. =?iso-8859-1?Q?Sm > =F8rgrav?= writes: > >Poul-Henning Kamp <phk@critter.freebsd.dk> writes: > >> Everybody who's concerned about security should run with > >> sysctl -w net.inet.tcp.log_in_vain=1 > >> even if behind a firewall. > >...and exactly where is this variable documented? > UTSL I did: $ glimpse -H /usr/src/ log_in_vain /usr/src/sys/netinet/tcp_input.c: static int log_in_vain = 0; /usr/src/sys/netinet/tcp_input.c: SYSCTL_INT(_net_inet_tcp, OID_AUTO, log_in_vain, CTLFLAG_RW, /usr/src/sys/netinet/tcp_input.c: &log_in_vain, 0, ""); /usr/src/sys/netinet/tcp_input.c: if (log_in_vain && tiflags & TH_SYN) { /usr/src/sys/netinet/udp_usrreq.c: static int log_in_vain = 0; /usr/src/sys/netinet/udp_usrreq.c: SYSCTL_INT(_net_inet_udp, OID_AUTO, log_in_vain, CTLFLAG_RW, /usr/src/sys/netinet/udp_usrreq.c: &log_in_vain, 0, ""); /usr/src/sys/netinet/udp_usrreq.c: if (log_in_vain) { As you can see, the sysctl doc strings are empty. DES -- Dag-Erling Smørgrav - dag-erli@ifi.uio.no To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xzppvb2vxck.fsf>