macubergeek
IS-IT--Management
Hello all
I've been creating a custom security template and I've had no problems following the instructions and creating one. I've been able to find and configure all the settings EXCEPT for the ones listed below. I'll be darned if I can find them in the mmc console (under the template I've been building). Could someone point me in the right direction? Now I have the faint impresstion that I'll need to open up my *.inf file in notepad and add them to the bottom of the file by hand...is this true?
------------------missing settings-----------------
MSS: (AFD DynamicBacklogGrowthDelta) Number of connections to create when additional connections are necessary for Winsock applications (10 recommended).
MSS: (AFD EnableDynamicBacklog) Enable dynamic backlog for Winsock applications (recommended).
MSS: (AFD MaximumDynamicBacklog) Maximum number of “quasi-free” connections for Winsock applications.
MSS: (AFD MinimumDynamicBacklog) Minimum number of free connections for Winsock applications (20 recommended for systems under attack, 10 otherwise).
MSS:Allow automatic detection of dead network gateways (could lead to DoS).
MSS:Allow automatic detection of MTU size (possible DoS by an attacker using a small MTU).
MSS:Allow ICMP redirects to override OSPF generated routes.
MSS:Allow IRDP to detect and configure Default Gateway addresses (could lead to DoS).
MSS:Allow the computer to ignore NetBIOS name release requests except from WINS servers.
MSS
isable Autorun for all drives.
MSS:Enable the computer to stop generating 8.3 style filenames.
MSS:How many dropped connect requests to initiate SYN attack protection (5 is recommended).
MSS:How many times unacknowledged data isretransmitted (3 recommended, 5 is default).
MSS:How often keep-alive packets are sent in milliseconds (300,000 is recommended).
MSS:IP source routing protection level (protects against packet spoofing).
MSSercentage threshold for the security event logat which the system will generate a warning.
MSS:Syn attack protection level (protects against DoS).
MSS:SYN-ACK retransmittions when a connection request is not acknowledged.
MSS:The time in seconds before the screen saver grace period expires (0 recommended).
MSS:Enable Safe DLL search mode (recommended).
I've been creating a custom security template and I've had no problems following the instructions and creating one. I've been able to find and configure all the settings EXCEPT for the ones listed below. I'll be darned if I can find them in the mmc console (under the template I've been building). Could someone point me in the right direction? Now I have the faint impresstion that I'll need to open up my *.inf file in notepad and add them to the bottom of the file by hand...is this true?
------------------missing settings-----------------
MSS: (AFD DynamicBacklogGrowthDelta) Number of connections to create when additional connections are necessary for Winsock applications (10 recommended).
MSS: (AFD EnableDynamicBacklog) Enable dynamic backlog for Winsock applications (recommended).
MSS: (AFD MaximumDynamicBacklog) Maximum number of “quasi-free” connections for Winsock applications.
MSS: (AFD MinimumDynamicBacklog) Minimum number of free connections for Winsock applications (20 recommended for systems under attack, 10 otherwise).
MSS:Allow automatic detection of dead network gateways (could lead to DoS).
MSS:Allow automatic detection of MTU size (possible DoS by an attacker using a small MTU).
MSS:Allow ICMP redirects to override OSPF generated routes.
MSS:Allow IRDP to detect and configure Default Gateway addresses (could lead to DoS).
MSS:Allow the computer to ignore NetBIOS name release requests except from WINS servers.
MSS
isable Autorun for all drives.MSS:Enable the computer to stop generating 8.3 style filenames.
MSS:How many dropped connect requests to initiate SYN attack protection (5 is recommended).
MSS:How many times unacknowledged data isretransmitted (3 recommended, 5 is default).
MSS:How often keep-alive packets are sent in milliseconds (300,000 is recommended).
MSS:IP source routing protection level (protects against packet spoofing).
MSS
ercentage threshold for the security event logat which the system will generate a warning.MSS:Syn attack protection level (protects against DoS).
MSS:SYN-ACK retransmittions when a connection request is not acknowledged.
MSS:The time in seconds before the screen saver grace period expires (0 recommended).
MSS:Enable Safe DLL search mode (recommended).