🚨 ⚠️ ⚠️ ⚠️
Urgent Linux advisory
⚠️ ⚠️ ⚠️ 🚨

openwall.com/lists/oss-securit

Urgently run the following:

echo 0 | sudo tee /proc/sys/net/ipv4/tcp_sack

On all Linux hosts to work around the issue and then start patching your kernels

@sir just as not to run what I don't entirely understand: what will this change on my system/will it break my production?

Follow

@ignaloidas this will disable TCP SACK, an optional feature without which lossy connections may suffer reduced throughput

Without disabling this, your server can be remotely kernel paniced

Sign in to participate in the conversation
Mastodon

cmpwn.com is a private Mastodon instance for friends of SirCmpwn.