Craig A. Huegen <chuegen@cisco.com>
Network-Based Denial of Service Attacks
NANOG 13     4
Goals of Attacks
•
•Prevent another user from using network connection
“Smurf” and “Fraggle” attacks, “pepsi” (UDP floods), ping floods
•Disable a host or service
“Land”, “Teardrop”, “NewTear”, “Bonk”, “Boink”, SYN flooding, “Ping of death”
•Traffic monitoring
Sniffing





•The attacks that we look at today are in one of three categories and have the following goals:
•Prevent another user from using a network connection
•Disable a host or service
•Monitor traffic
•The reasons for these goals vary:
•Usually the prevention of network, host, or service usability is a result of some revenge.
•Monitoring traffic usually has two eventual goals:
•New compromised accounts from which attacks can be staged
•Espionage of some type, resulting in embarrassment or blackmail