Red Hat 6.5- sysctl -w net.ipv6.conf.default.accept_redirects=0
Posted
by
kjbradley
on Server Fault
See other posts from Server Fault
or by kjbradley
Published on 2014-05-27T14:54:42Z
Indexed on
2014/05/27
15:28 UTC
Read the original article
Hit count: 173
I am in the process of writing a Red Hat 6.5 Kickstart disc with hardened security. I have run a program to determine where the weaknesses are in my system, and apparently there is a medium severity problem by accepting IPV6 redirects.
When I implement the following line in my post script in my kickstart, I can't access any websites externally with wget, or ssh/scp in from my computer.
sysctl -w net.ipv6.conf.default.accept_redirects=0
Is there a workaround to this so that the system will still be hardened but I will be able to access systems that are external?
© Server Fault or respective owner