:confused: i recently detected a smurf attack on my firewall log
what is this? and what should i do the next time this happens?
Printable View
:confused: i recently detected a smurf attack on my firewall log
what is this? and what should i do the next time this happens?
You won't believe this, but Mr. Google did it AGAIN!!! Bam! TouchDown!
thanks for the link to the Cert Centre it is useful
Mr.Google?
Yups, Mr. Google...
You can find him here
Also meet his family:
Open Directory Project
Yahoo
LookSmart
IxQuick
Ask Jeeves
About
All the Web
Altavista
Hotbot
Northern Light
Teoma
WebCrawler
Direct Hit
Disinformation
DogPile
Edit: added Dogpile (Thx Wolf)
Yups, Mr. Google...
chuckle :D
Did you get the info that you need if not here is a simple explanation thanks to the folks at Symantec.
Symantec Security Response
http://securityresponse.symantec.com/
Smurf DoS Attack
Ping is a software tool available on most operating systems and commonly used to check if a specified machine is reachable. When the ping tool is executed, an ICMP (Internet Control Message Protocol) echo request packet (includes the return IP address) is sent to the destination computer. If the destination computer receives the TCP packet, it replies to confirm the ping request.
In the case of a Smurf DoS attack, the ping's packet return IP address is forged with the IP of the targeted machine. The ping is issued to the entire IP broadcast address. This causes every machine to respond to the bogus ping packets and reply to the targeted machine, which floods it.
This is called a Smurf attack because the DoS tool used to perform the attack is called Smurf.
One way to reduce risk of this attack is to disable IP-directed broadcast, which is often not used or needed. Some OS can be even be configured to prevent the machine from responding to ICMP packets.
Type: Virus
Write-up by: Motoaki Yamamura
And if we are adding search engines of our list or resources Neg that I have to add DogPile
I find it pretty useless thing to list search engines... Google finds everything, and if it's not enough, you can use All the Web, Ask Jeeves, Yahoo or, a new list entry, Researchville.Quote:
Originally posted by Negative
Yups, Mr. Google...
You can find him here
Also meet his family:
Open Directory Project
=========8<------------------
DogPile
-ZeroOne :cool: