2-4

Question 1

a smurf atack is clever and simple. the hardest part of the attack is _________

Answer 1

getting the packets started on the netowork

Question 2

you can protect agains a smurf attack in 2 ways.

1. configure your routers so the don’t forward any ______ .
2. guard against __________.

Answer 2

direct broadcast messages // trojan horses

Question 3

Using _______ serves is critical . ______ servers can hide the internal IP addresses of your machine, wich will make it a lot less vulnerable to smurf attack

Answer 3

proxy

Question 4

the simplest form of DOS attack, based on overloading the target system.

Answer 4

Ping of death

Question 5

tcp packets are limited in size so ending a packet that is too large can sometimes _______

Answer 5

shut down a system

Question 6

___ works to comprimise systems that cant deal with extremely large packet sizes

Answer 6

Ping of death

Question 7

_____ flood attack occurs when an attacker sends ___ packet to random port on the victim system. when the system receives a _____ packet it determines if the app is waiting on the destination port. When there is no app waiting it generates a ICMP packet of destination unreachable. if enough ____ packets are delivered the system goes down

Answer 7

UDP

Question 8

_______ flood is another name for ping flood

Answer 8

ICMP

Question 9

if enough requests flood onto the network , the attacker can completely exhaust the address space allocated by the DHCP servers for an indefinate period of time. a tool called gobbler can prevent this. preventing incoming dhcp requests will prevent this

Answer 9

dhcp starvation

Question 10

sends a legitimate http post message . partof the post message is the content length( this indicates the size of the message to follow. the attacker then sends the actual message at an extremely slow rate. the server is then hung up waiting for the process to complete.

Answer 10

http post dos

Question 11

an atack that is so sever that the victim either needs a os reinstall or new hardware.

Answer 11

pdos / permenent denial of service

Question 12

this is a special dos attack. accomplished by getting a number of machines to attack a selected target. rather then getting the computers to attack the target, this method tricks the routers into attacking the target. many routers on the internet backbone communicate on port 179. this attack exploits that line of communication and gets routers to attack a target system.

Answer 12

distributed reflection denial of service

Question 13

dos attacks are common because there are ______ available to execute these attacks

Answer 13

tools

Question 14

a well known online based tool to launch dos attacks

Answer 14

low orbit ion cannon

Question 15

more advanced then low orbit ion cannon, but simpler to run

Answer 15

high orbit ion cannon