Ok, since all my previous posts have gone AWOL (there wasnt that many anyway) i have decided to ask a question that may be bordering for some neg happy critics... Its been bugging me for a while so now seems like a good time, afterall "hackers know the weaknesses in your system, shouldnt you?"

I have been doing some reading revolving around the analysis of the Mitnick attack.. basically it stated that he exploited a trusted relationship by syn flooding one side of the relationship then assuming it's identity to communicate with the target.. that part made sense...

However, the document i was reading made out that the victim (the syn flooded host) was external to the target host yet was also trusted... My question is, how did mitnick determine the trusted relationship hosts. The two hosts were not related.

just wondering if someone could shed some light on how he determined a trusted relationship between two seemingly (meaning not on the same network or owned by the same company) unrelated hosts....thanks..

Be gentle