[c-nsp] FW: Cisco Security Response: [Full-disclosure] Cisco
PIX TCP Connection Prevention
Virgil
virgil at webcentral.com.au
Wed Nov 23 20:32:17 EST 2005
On 23/11/05 9:07 PM, "Andrew Yourtchenko" <ayourtch at cisco.com> wrote:
> I believe setting econn to some reasonably "small" value (like
> 50 or such for an average single-host setup) would be a more
> conservative approach - normal flow of things would not be affected, and
> it will allow you to trivially detect, should the attack be taking place.
Is this information going to be added to the official advisory?
Regards
Virgil
--
Virgil
Network Architect, AS7496
virgil at webcentral dot com dot au
More information about the cisco-nsp
mailing list