Basic HTML version of Foils prepared May 19 99

Foil 14 Denial of Service Attacks (4)

From Computer Crimes: Examples of Network Security attacks Tango Group Internal Technology Seminars -- April 23 99. by Roman Markowski
Land Attack
  • November 1997
  • affects many Unix,Windows NT/95, routers and switches
  • uses poorly implemented TCP/IP stack
  • send a TCP SYNC packet
    • destination IP address= source IP address= victim's IP address
    • source port = destination port = available port on victim's machine
  • Packet is sent back to itself; result: machine crashes
Defense
  • vendor patches
  • anti-spoof filters

© Northeast Parallel Architectures Center, Syracuse University, npac@npac.syr.edu

If you have any comments about this server, send e-mail to webmaster@npac.syr.edu.

Page produced by wwwfoil on Mon Aug 16 1999