Wednesday, June 11, 2008

No It's Not

A 'smurf attack' not especially nasty, that is.  It is, however, old news

The attack consists of a flood of ICMP echo reply packets generated by exploiting the "broadcast address" feature of the Internet Protocol.  It is defended against by dropping packets aimed for such addresses outside of local networks (i.e. at routers).  See here, as well as the CERT-CC advisory.

The 'fraggle attack' is a similar concept but using the UDP protocol rather than ICMP (after many people just started blocking ICMP at the firewall.)

Smurfs, on the other hand, are truly hideous.

No comments:

HTTP Error 403: You are not authorised to access the file "\real_name_and_address.html" on this server.

(c) 'Surreptitious Evil' 2006 - 2017.