Skip to main content

How a Denial of Service Attack Works

The simple approach to DOS is to flood a server with a large amount of pointless traffic. This gives the server far too much to deal with. Bandwidth escalates, memory is exhausted and ordinary users can’t get a connection to the server.
But actually maxing out a server can be quite difficult, even with a large number of computers opening up as many connections as they can. As such, attackers have come up with a way to magnify the effect by using fake IP addresses.
Using fake IPs, the same process can be carried out by one computer, a botnet that’s controlled by one master or, as with Operation Payback, a group of people working together.
Here’s what happens.
  1. The attacking machine sends a SYN packet to the server. However, it makes it appear to come from somewhere else.
  2. The server then responds with a SYN/ACK packet, but there’s no response – the sender address was fake.
  3. The server continues to wait for a reply, keeping the connection open and in its memory until it times out.
The server keeps a bunch of useless connections open, losing more and more memory to the attack and eventually becoming crippled.
The strategy is actually fairly successful. It has slowed or crashed some prominent sites.
Labels:

Comments

Post a Comment

Popular posts from this blog

How does an English proficiency test work?

 English proficiency tests are administered by authorized institutions and centers in many countries. In Brazil, they are held in most states, on days and times that vary from one organization to another. See more:  Amazon Saheli Quiz Answers No test requires prior completion of a specific course, they only assess the results achieved during the assessment. Therefore, the form of study is optional - it can be done on your own, online, with a private teacher, in a preparatory course or in a language school. Most of the tests assess four skills of the candidate: reading, writing, speaking and listening. They take grammar into account, of course. The weight given to each of the stages varies according to the body responsible for preparing the event. The minimum score required also depends on the level you want to prove or the requirement of the company, the educational institution and the country for which you are looking for an opportunity. Generally, all stages of the assessment are car
12 comments
Read more

How to reassign a WAN port on a router

 To reassign the WAN port to the LAN on the router (for example, the TP-Link WR841N router), you need to go to the router's web interface: Go in your browser to 192.168.0.1 (or 192.168.1.1 or whatever address you set earlier) Login and password are standard (indicated on a sticker under the router) If you failed to log in through any of the above addresses, you can reset the router settings to factory defaults. To do this, on the switched on router, hold down the RESET button (located near the WAN port) and hold it for 7-8 seconds, then release it and wait for the device to reboot. After the reset, the router's web interface will be available at one of the addresses written above. Once you get into the router's web interface, make sure once again that after resetting the equipment to factory settings, you do not have the Internet. Nothing has changed, so go to the "Network" - "IPTV" section Change the mode from “Automatic” to “Bridge” A drop-down menu wi
1 comment
Read more

NoOps, the future of cloud computing

In 2009, consulting firm  Delloite  , curious about the trends that the beginning of  digital transformation  was causing in large companies and different sectors of the economy, created a study to survey the digital technologies employed at the time. Ten years later, the booming technologies in 2009 became obsolete  .  Regarding the maturity of  digital transformation  ,  Deloitte  says: “  To stay ahead of the market, organizations must work methodically to envision new innovations and possibilities, set their ambitions for the future and go beyond the digital frontier.” Sounds like a difficult task, doesn't it?  But not so much.  Many previous trends remain important today, have only been refined and continue to evolve.  These include analytics and  cloud computing  , for example. The use of  artificial intelligence  remains paramount, but it is now necessary to step in and completely re-evaluate the way humans and machines interact within the workplace. Next, let's
10 comments
Read more