Craig A. Huegen <chuegen@cisco.com>
Network-Based Denial of Service Attacks
NANOG 12
10
SYN flooding
•
Goal is to deny access to a TCP service
running on a host
•
Creates a number of half-open TCP
connections which fill up a host’s listen
queue; host stops accepting
connections
•
Requires the TCP service be open to
connections from the victim