The values to play with are tcp_conn_req_max (defines the max value for listen queue), tcp_ip_notify_cinterval (makes tcp send another SYN???), tcp_ip_abort_cinterval (aborts connection and frees the slot). Note "c" in "cinterval". I understand these timer values work for both incoming and outgoing connections. Dima
Does anyone have simple exploit code? I'm working on our fix for Solaris. Are there any side effects to increasing the listen queue? You can mail it privately if you'd rather not post it. allan Dima Volodin wrote:
The values to play with are tcp_conn_req_max (defines the max value for listen queue), tcp_ip_notify_cinterval (makes tcp send another SYN???), tcp_ip_abort_cinterval (aborts connection and frees the slot). Note "c" in "cinterval". I understand these timer values work for both incoming and outgoing connections.
Dima
participants (2)
-
Allan Chong
-
dvv@sprint.net