Domain 4 - Communications and Network Security Flashcards
What is a smurf attack?
A DDoS attack. Directs large volumes of spoofed ICMP packets to a computer network using an IP broadcast address.
What is a fraggle attack?
A DDoS attack directing large volumes of traffic to UDP/7 (echo) and UDP/19 (CHARGEN)
What is a LAND attack?
A spoofed TCP SYN packet directed to open port on victim IP address with spoofed source IP and destination. Causing the machine to reply to itself on end.
What is Code Red?
A worm that exploited a buffer overflow vuln targeting Microsoft IIS web servers.
What is a teardrop attack?
A DoS attack conducted by targeting TCP/IP fragmentation reassembly codes, causing fragmented packets to overlap one another on the host receiving them.
How long is the typical mac address?
48 bits. Where the first 24 bits are the OUI and last 24 is the serial number called (EI).
How longe are IPv6 MAC addresses?
They are now 64 bits. The first 24 is still the OUI and last 40 bits form the serial
What is the difference between monitor mode and promiscuous mode?
Monitor mode allows for packet capture without first associating with the AP. Promicious mode requires an administrator to configure the NIC into promiscuous mode.
What port is SQL?
Port 1433 TCP
What port is DNS?
UDP 53
What port is DHCP?
UDP 67 and 68
What port is LPD?
TCP 515
What port is Telnet?
TCP 23
What port is FTP?
Port 20 and 21
What port is SNMP?
UDP 161