UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The system must disable TCP reverse IP source routing.


Overview

Finding ID Version Rule ID IA Controls Severity
V-216377 SOL-11.1-050100 SV-216377r603267_rule Low
Description
If enabled, reverse IP source routing would allow an attacker to more easily complete a three-way TCP handshake and spoof new connections.
STIG Date
Solaris 11 SPARC Security Technical Implementation Guide 2021-03-01

Details

Check Text ( C-17613r371219_chk )
Determine if TCP reverse IP source routing is disabled.

# ipadm show-prop -p _rev_src_routes -co current tcp

If the output of this command is not "0", this is a finding.
Fix Text (F-17611r371220_fix)
The Network Management profile is required.

Disable reverse source routing.

# pfexec ipadm set-prop -p _rev_src_routes=0 tcp