ctala · December 14, 2019 18:46
diff --git a/disable_tcp_timestamp.config b/disable_tcp_timestamp.config
 ###################################################################################################
 #### Copyright 2019 cristiantala.cl. All Rights Reserved.
 ####
 #### Licensed under the Apache License, Version 2.0 (the "License"). You may not use this file
 #### except in compliance with the License. A copy of the License is located at
 ####
 ####     http://aws.amazon.com/apache2.0/
 ####
 #### or in the "license" file accompanying this file. This file is distributed on an "AS IS"
 #### BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 #### License for the specific language governing permissions and limitations under the License.
 ###################################################################################################

 ###################################################################################################
 #### The following file disables the tcp_timestamps vulnerability on a Linux 1 AWS AMI using 
 #### .ebextentions for an Elastic Beanstalk Application on deployment.
 ####
 #### Description :
 #### The remote host responded with a TCP timestamp. The TCP timestamp response can be used to approximate 
 #### the remote host's uptime, potentially aiding in further attacks. Additionally, some operating systems can be 
 #### fingerprinted based on the behavior of their TCP timestamps.
 ###################################################################################################
 commands:
  01_disable_timestamp: 
    command: echo "0" > /proc/sys/net/ipv4/tcp_timestamps
	###################################################################################################
	#### Copyright 2019 cristiantala.cl. All Rights Reserved.
	####
	#### Licensed under the Apache License, Version 2.0 (the "License"). You may not use this file
	#### except in compliance with the License. A copy of the License is located at
	####
	#### http://aws.amazon.com/apache2.0/
	####
	#### or in the "license" file accompanying this file. This file is distributed on an "AS IS"
	#### BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
	#### License for the specific language governing permissions and limitations under the License.
	###################################################################################################

	###################################################################################################
	#### The following file disables the tcp_timestamps vulnerability on a Linux 1 AWS AMI using
	#### .ebextentions for an Elastic Beanstalk Application on deployment.
	####
	#### Description :
	#### The remote host responded with a TCP timestamp. The TCP timestamp response can be used to approximate
	#### the remote host's uptime, potentially aiding in further attacks. Additionally, some operating systems can be
	#### fingerprinted based on the behavior of their TCP timestamps.
	###################################################################################################
	commands:
	01_disable_timestamp:
	command: echo "0" > /proc/sys/net/ipv4/tcp_timestamps