Hi. On Thu, Aug 11, 2016 at 03:55:56PM +0000, Curt wrote: > > http://www.pcworld.com/article/3106180/security/use-the-internet-this-linux-flaw-could-open-you-up-to-attack.html?google_editors_picks=true > > Calling all experts: cause for concern?
Debian stable is affected. If you're relying on HTTP or FTP - you're screwed. If you prefer HTTPS and SSH - it does not concern you. To workaround the problem, use (/etc/sysctl.conf is preferred): sysctl -w net.ipv4.tcp_challenge_ack_limit=999999999 To solve the problem you should wait until Debian-provided kernels gain a backport for CVE-2016-5696. Reco
