Red Hat 6.5- sysctl -w net.ipv6.conf.default.accept_redirects=0

Posted by kjbradley on Server Fault See other posts from Server Fault or by kjbradley
Published on 2014-05-27T14:54:42Z Indexed on 2014/05/27 15:28 UTC
Read the original article Hit count: 173

Filed under:
|
|
|

I am in the process of writing a Red Hat 6.5 Kickstart disc with hardened security. I have run a program to determine where the weaknesses are in my system, and apparently there is a medium severity problem by accepting IPV6 redirects.

When I implement the following line in my post script in my kickstart, I can't access any websites externally with wget, or ssh/scp in from my computer.

sysctl -w net.ipv6.conf.default.accept_redirects=0

Is there a workaround to this so that the system will still be hardened but I will be able to access systems that are external?

© Server Fault or respective owner

Related posts about redhat

Related posts about redirect