文档章节

Linux Kernal Tidbits

Silvery
 Silvery
发布于 2014/06/20 06:05
字数 244
阅读 63
收藏 1
点赞 0
评论 0


-------------------------------------------------

What is IP address spoofing?


IP spoofing is a method adopted by attacker's to send forged source address in their attack traffic.Which means they can send an IP packet with an IP address of their wish.


Most of the time's spoofing is used by an attacker mainly for the following reasons.


To conduct a DDOS attack ,and he does not want the response from the target machine to reach him

To compromise source based authentication

Spoofing can be controlled to a cerain extent by using Reverse Path filtering(not fully although).


What is reverse path filtering?


Reverse path filtering is a mechanism adopted by the Linux kernel, as well as most of the networking devices out there to check whether a receiving packet source address is routable.


So in other words, when a machine with reverse path filtering enabled recieves a packet, the machine will first check whether the source of the recived packet is reachable through the interface it came in.


If it is routable through the interface which it came, then the machine will accept the packet

If it is not routable through the interface, which it came, then the machine will drop that packet.

Latest red hat machine's will give you one more option. This option is kind of liberal in terms of accepting traffic.


If the recieved packet's source address is routable through any of the interfaces on the machine, the machine will accept the packet.

Original

------------------------------------------------------










© 著作权归作者所有

共有 人打赏支持
Silvery
粉丝 2
博文 16
码字总数 2537
作品 0
厦门
激光雷达学习笔记(六)ARM-Linux平台算法移植

在写第一篇激光雷达的日志我就说,激光雷达的算法开发的最终的目标是移植到嵌入式设备上, 因为在机器人定位时,不可能用一个很大很重的设备,因此最理想的还是ARM平台,(工控机也可以 考虑...

dddxxxx ⋅ 05/11 ⋅ 0

内核入门驱动——helloword模块

一.认识Linux内核编程 1. Linux是"单块内核"的操作系统,这是说整个系统内核都运行于一个单独的保护域中,但是linux内 核是模块化组成的,它允许内核在运行时动态地向其中插入或从中删除代码...

a4729821 ⋅ 04/22 ⋅ 0

VirtualBox安装CentOS增强工具

在VirtualBox里安装CentOS系统,会遇到增强工具无法正常安装,[Building the main Guest Additions module]主要的原因是出在Kernal 库找不到。 安装 gcc g++ 编译器,安装内核Kernal库 yum in...

Zhao-Qian ⋅ 2016/06/15 ⋅ 0

android 4.0 内核(3.0)编译方法

在编译之前呢要有交叉编译环境阿,android内核自带有交叉编译器 进入android4.0.3 源码内核包中lichee #cd buildroot/dl/ 你将会看到 arm-2010.09-50-arm-none-linux-gnueabi-i686-pc-linux-...

雨焰 ⋅ 2012/10/15 ⋅ 2

A20启动代码流程分析

A20启动代码流程分析: 1:全志的启动包括boot0,boot1,u-boot,boot0与boot1源码在lichee/boot/目录下, 机器上电执行boot0,boot0就会引导boot1,boot1再引导u-boot。 2:在lichee/boot/目录...

雨焰 ⋅ 2014/03/14 ⋅ 0

Linux启动顺序简要记录

Linux启动顺序简要记录,在执行一些相互依赖的启动任务时,需注意相关过程的启动顺序。 1. BIOS 2. MBR 3. Boot Loader 4. loading kernal 5. init - inittab 6. init - rc.sysinit 7. /etc...

先进哥 ⋅ 2014/04/20 ⋅ 0

How to Device a Crawler in Python

Learning pool: urllib2: http://www.pythonforbeginners.com/python-on-the-web/how-to-use-urllib2-in-python/ Python tidbits: http://nbviewer.ipython.org/url/www.cs.sfu.ca/~anoop/te......

Silvery ⋅ 2014/02/14 ⋅ 0

LINUX6不能启动,bringing up interface eth0:

声明:以下问题是在虚拟机中安装redhat 6.0遇到的问题(VMware-workstation-full-8.0.0-471780和rhel-server-6.3-i386-dvd.iso) 这是问题是因为没有设置静态IP,还要注意一个事情,就是有人设...

yimi ⋅ 2013/05/21 ⋅ 0

Shell Scripting Notes

Basic tidbits cd / #back to the root directorycd ~ #back to the home directorycd - #back to the previous directory pwd # printing current working directory Short cuts inside the......

Silvery ⋅ 2014/02/08 ⋅ 0

Ext on AIR : Pixel Bender

Pixel Bender技术提供了一种于强大的图形和视频动态处理机制。Pixel Bender使用其特有的Kernal语言来描述图形处理算法,同时使用一种基于XML的描述语言将多个Kernal处理单元组合起来,形成更...

sp42 ⋅ 2009/07/19 ⋅ 0

没有更多内容

加载失败,请刷新页面

加载更多

下一页

Jenkins实践3 之脚本

#!/bin/sh# export PROJ_PATH=项目路径# export TOMCAT_PATH=tomcat路径killTomcat(){pid=`ps -ef | grep tomcat | grep java|awk '{print $2}'`echo "tom...

晨猫 ⋅ 今天 ⋅ 0

Spring Bean的生命周期

前言 Spring Bean 的生命周期在整个 Spring 中占有很重要的位置,掌握这些可以加深对 Spring 的理解。 首先看下生命周期图: 再谈生命周期之前有一点需要先明确: Spring 只帮我们管理单例模...

素雷 ⋅ 今天 ⋅ 0

zblog2.3版本的asp系统是否可以超越卢松松博客的流量[图]

最近访问zblog官网,发现zlbog-asp2.3版本已经进入测试阶段了,虽然正式版还没有发布,想必也不久了。那么作为aps纵横江湖十多年的今天,blog2.2版本应该已经成熟了,为什么还要发布这个2.3...

原创小博客 ⋅ 今天 ⋅ 0

聊聊spring cloud的HystrixCircuitBreakerConfiguration

序 本文主要研究一下spring cloud的HystrixCircuitBreakerConfiguration HystrixCircuitBreakerConfiguration spring-cloud-netflix-core-2.0.0.RELEASE-sources.jar!/org/springframework/......

go4it ⋅ 今天 ⋅ 0

二分查找

二分查找,也称折半查找、二分搜索,是一种在有序数组中查找某一特定元素的搜索算法。搜素过程从数组的中间元素开始,如果中间元素正好是要查找的元素,则搜素过程结束;如果某一特定元素大于...

人觉非常君 ⋅ 今天 ⋅ 0

VS中使用X64汇编

需要注意的是,在X86项目中,可以使用__asm{}来嵌入汇编代码,但是在X64项目中,再也不能使用__asm{}来编写嵌入式汇编程序了,必须使用专门的.asm汇编文件来编写相应的汇编代码,然后在其它地...

simpower ⋅ 今天 ⋅ 0

ThreadPoolExecutor

ThreadPoolExecutor public ThreadPoolExecutor(int corePoolSize, int maximumPoolSize, long keepAliveTime, ......

4rnold ⋅ 昨天 ⋅ 0

Java正无穷大、负无穷大以及NaN

问题来源:用Java代码写了一个计算公式,包含除法和对数和取反,在页面上出现了-infinity,不知道这是什么问题,网上找答案才明白意思是负的无穷大。 思考:为什么会出现这种情况呢?这是哪里...

young_chen ⋅ 昨天 ⋅ 0

前台对中文编码,后台解码

前台:encodeURI(sbzt) 后台:String param = URLDecoder.decode(sbzt,"UTF-8");

west_coast ⋅ 昨天 ⋅ 0

实验楼—MySQL基础课程-挑战3实验报告

按照文档要求创建数据库 sudo sercice mysql startwget http://labfile.oss.aliyuncs.com/courses/9/createdb2.sqlvim /home/shiyanlou/createdb2.sql#查看下数据库代码 代码创建了grade......

zhangjin7 ⋅ 昨天 ⋅ 0

没有更多内容

加载失败,请刷新页面

加载更多

下一页

返回顶部
顶部