Saturday, February 5, 2011

Understanding Land Attacks

Only for educational purposes!!!

A LAND (Local Area Network Denial) attack is a DoS (Denial of Service) attack that consists of sending a special poison spoofed packet to a computer, causing it to lock up.

Combining a SYN attack with IP spoofing, a land attack occurs when an attacker sends spoofed SYN packets containing the IP address of the victim as both the destination and the source IP address.

The receiving system responds by sending the SYN-ACK packet to itself, creating an empty connection that lasts until the idle timeout value is reached. Flooding a system with such empty connections can overwhelm the system, causing a denial of service (DoS).

Land Attack

How to avoid being attacked ?

Most firewalls should intercept the poison packet thus protecting the host from this attack. Some operating systems released updates fixing this security hole.

Leave your comment below

1 comment: