Actually log martians? #89

Closed
patcon opened this Issue Sep 9, 2015 · 1 comment

Comments

Projects
None yet
2 participants
@patcon
Contributor

patcon commented Sep 9, 2015

@chris-rock

This comment has been minimized.

Show comment
Hide comment
@chris-rock

chris-rock Oct 3, 2015

Member

Hi @patcon Thanks for reporting this. Yes, we should log it by default. See also CIS Benchmark reference in section 4.2.4 Log Suspicious Packets (Scored)

sysctl should have the following values by default:

net.ipv4.conf.all.log_martians=1
net.ipv4.conf.default.log_martians=1
Member

chris-rock commented Oct 3, 2015

Hi @patcon Thanks for reporting this. Yes, we should log it by default. See also CIS Benchmark reference in section 4.2.4 Log Suspicious Packets (Scored)

sysctl should have the following values by default:

net.ipv4.conf.all.log_martians=1
net.ipv4.conf.default.log_martians=1
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment