From SOLARIS 10 X86 SECURITY TECHNICAL IMPLEMENTATION GUIDE
Part of GEN007900
Associated with IA controls: ECSC-1
Associated with: CCI-001551
Reverse-path filtering provides protection against spoofed source addresses by causing the system to discard packets with source addresses for which the system has no route or if the route does not point towards the interface on which the packet arrived. Depending on the role of the system, reverse-path filtering may cause legitimate traffic to be discarded and, therefore, should be used with a more permissive mode or filter, or not at all. Whenever possible, reverse-path filtering should be used.
Determine if the system uses a reverse-path filter for IPv6 network traffic. If it does not, this is a finding.
Configure the system to use a reverse-path filter for IPv6 network traffic.
Lavender hyperlinks in small type off to the right (of CSS
class id, if you view the page source) point to
globally unique URIs for each document and item. Copy the
link location and paste anywhere you need to talk
unambiguously about these things.
You can obtain data about documents and items in other
formats. Simply provide an HTTP header Accept:
text/turtle or
Accept: application/rdf+xml.
Powered by sagemincer