Craig A. Huegen <chuegen@cisco.com>
Network-Based Denial of Service Attacks
SANS ‘98 10
SYN flooding
•Goal is to deny access to a TCP service running on a
host
•Creates a number of half-open TCP connections which
fill up a host’s listen queue; host stops accepting connections
•Requires the TCP service be open to connections from
the victim