The Problem:
TCP timestamps are enabled on the remote host. This could allow a remote attacker to estimate the amount of time since the remote host was last booted.
Resolution:
TCP timestamps are enabled on the remote host. This could allow a remote attacker to estimate the amount of time since the remote host was last booted.
Resolution:
TCP timestamps are generally only useful for testing, and support for them should be disabled if not needed.
To disable TCP timestamps on Linux, add the following line to the /etc/sysctl.conf file:
net.ipv4.tcp_timestamps = 0
To disable TCP timestamps on Windows, set the following registry value:
Key: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters
Value: Tcp1323Opts
Data: 0 or 1
To disable TCP timestamps on Cisco, use the following command:
no ip tcp timestamp
0 comments:
Post a Comment