diff options
author | bmah <bmah@FreeBSD.org> | 2001-09-06 22:50:12 +0000 |
---|---|---|
committer | bmah <bmah@FreeBSD.org> | 2001-09-06 22:50:12 +0000 |
commit | a8694192c03d652670839bd56d378140b7fb5ca1 (patch) | |
tree | b3e16759e30e56a372de0d4bf4c0f32ba7388b7d /share | |
parent | ec1ab724cbe3c78386953bccae0045b96cd12813 (diff) | |
download | FreeBSD-src-a8694192c03d652670839bd56d378140b7fb5ca1.zip FreeBSD-src-a8694192c03d652670839bd56d378140b7fb5ca1.tar.gz |
Document two sysctl variables used by RFC 1948 functionality.
While I'm here, fix two markup inconsistencies.
Submitted by: silby
Diffstat (limited to 'share')
-rw-r--r-- | share/man/man4/tcp.4 | 18 |
1 files changed, 16 insertions, 2 deletions
diff --git a/share/man/man4/tcp.4 b/share/man/man4/tcp.4 index e9ac8d3..c91aac9 100644 --- a/share/man/man4/tcp.4 +++ b/share/man/man4/tcp.4 @@ -207,10 +207,10 @@ as described in RFC 1644. The default value used for the maximum segment size .Pq Dq MSS when no advice to the contrary is received from MSS negotiation. -.It TCPCTL_SENDSPACE +.It Dv TCPCTL_SENDSPACE .Pq tcp.sendspace Maximum TCP send window. -.It TCPCTL_RECVSPACE +.It Dv TCPCTL_RECVSPACE .Pq tcp.recvspace Maximum TCP receive window. .It tcp.log_in_vain @@ -289,6 +289,20 @@ in the .It tcp.pcbcount Number of active process control blocks (read-only). +.It tcp.strict_rfc1948 +Enable strict RFC 1948 (Defending Against Sequence Number Attacks) +compliance. +Setting this variable to a non-zero value will disable reseeding and +will disable the use of randomized initial sequence numbers in favor +of MD5-generated initial sequence numbers. +.It tcp.isn_reseed_interval +The interval (in seconds) specifying how often the secret data used in +RFC 1948 initial sequence number calculations should be reseeded. +By default, this variable is set to zero, indicating that +no reseeding will occur. +Reseeding should not be necessary, and will break +.Dv TIME_WAIT +recycling for a few minutes. .El .Sh ERRORS A socket operation may fail with one of the following errors returned: |