On 2016-08-11, Reco <recovery...@gmail.com> wrote: > Hi. > > On Thu, Aug 11, 2016 at 03:55:56PM +0000, Curt wrote: >> >> http://www.pcworld.com/article/3106180/security/use-the-internet-this-linux-flaw-could-open-you-up-to-attack.html?google_editors_picks=true >> >> Calling all experts: cause for concern? > > Debian stable is affected. > > If you're relying on HTTP or FTP - you're screwed. If you prefer HTTPS > and SSH - it does not concern you. > > To workaround the problem, use (/etc/sysctl.conf is preferred): > > sysctl -w net.ipv4.tcp_challenge_ack_limit=999999999
Thank you very much for this. > To solve the problem you should wait until Debian-provided kernels gain > a backport for CVE-2016-5696. > > Reco > > -- Même l’avenir n’est plus ce qu’il était. Paul Valéry
