View topic - [Security][Hardening] Network configuration
[Security][Hardening] Network configuration
3 posts
• Page 1 of 1
[Security][Hardening] Network configuration
by St3f » Fri Nov 20, 2020 10:06 am
Hello,
In order to fulfill some hardening constraints, I try to configure some network parameters but didn’t find them in the QNX documentation (related to the “/etc/sysctl.conf” file).
I just wonder if there is any possibility to
• ensure that bogus ICMP responses are ignored. In Linux, the corresponding parameter is “icmp_ignore_bogus_error_responses”.
• Ensure that reverse path filtering is enabled. In Linux, the corresponding parameter is “rp_filter”.
Thanks for your help.
In order to fulfill some hardening constraints, I try to configure some network parameters but didn’t find them in the QNX documentation (related to the “/etc/sysctl.conf” file).
I just wonder if there is any possibility to
• ensure that bogus ICMP responses are ignored. In Linux, the corresponding parameter is “icmp_ignore_bogus_error_responses”.
• Ensure that reverse path filtering is enabled. In Linux, the corresponding parameter is “rp_filter”.
Thanks for your help.
- St3f
- New Member
- Posts: 4
- Joined: Thu Nov 19, 2020 1:02 pm
Re: [Security][Hardening] Network configuration
by maschoen » Fri Nov 27, 2020 6:43 am
Assuming that this is not a currently supported feature, you could create a stack filter that would deal with this, not a project for the faint of heart.
- maschoen
- QNX Master
- Posts: 2730
- Joined: Wed Jun 25, 2003 5:18 pm
Re: [Security][Hardening] Network configuration
by St3f » Thu Dec 03, 2020 9:00 am
Thanks for your answer !
- St3f
- New Member
- Posts: 4
- Joined: Thu Nov 19, 2020 1:02 pm
3 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 3 guests