Archives
  Columns
  Features
  Print Archives
1994-1998
  Special
  BYTE Digest
  Michael Abrash's Graphics Programming Black Book
  101 Perl Articles
  About Us
  How to Access BYTE.com
  Write to BYTE.com
  Advertise with BYTE.com

Newsletter
Free E-mail Newsletter from BYTE.com
 
    
  HOME   ABOUT US   ARCHIVES   CONTACT US   ADVERTISE   REGISTER
Visit the home page Browse the four-year online archive Download platform-neutral CPU/FPU benchmarks Find information for advertisers, authors, vendors, subscribers Request free information on products written about or advertised in BYTE Submit a press release, or scan recent announcements Talk with BYTE's staff and readers about products and technologies

ArticlesDenial Isn't Just a River in Egypt

June 1997 / BYTE Software Lab Report / Firewall Software for NT and Unix / Denial Isn't Just a River in Egypt
Pete Loshin

Denial-of-service attacks are a serious threat, and any good firewall should be able to stop at least some of them. Two have gotten a lot of att ention because they take advantage of the openness of TCP/IP protocols.

Ping of Death: IP datagrams larger than 65,535 bytes are "illegal," but some TCP/IP implementations incorrectly attempt to process them. Because large datagrams are almost always fragmente d and hosts don't start reconstructing datagrams until receiving the last fragment, when illegal datagrams are accepted, some TCP/IP stacks will crash the system that is attempting to process them. This attack uses Ping (a semi-acronym for Packet Internet Groper) because all TCP/IP hosts support it and it's easy to use; the attack itself requires only one command line.

SYN flooding: When hosts use Transmission Control Protocol (TCP of TCP/IP) for virtual circuit service, they use a three-way handshake protocol to negotiate the link. Every time a host is asked to open a TCP link, it responds with the second part of the handshake and waits for acknowledgment from the requesting host to open the circuit. Attackers generate a flood of TCP SYN (for "synchronize") requests to a server, but they never answer the server's responses. The server must allocate resources to handle these phony requests, in some cases tying up all the server's available resources.

Up to the BYTE Software Lab Report section contentsGo to previous article: Denial Isn't Just a River in EgyptSearchSend a comment on this articleSubscribe to BYTE or BYTE on CD-ROM  
Flexible C++
Matthew Wilson
My approach to software engineering is far more pragmatic than it is theoretical--and no language better exemplifies this than C++.

more...

BYTE Digest

BYTE Digest editors every month analyze and evaluate the best articles from Information Week, EE Times, Dr. Dobb's Journal, Network Computing, Sys Admin, and dozens of other CMP publications—bringing you critical news and information about wireless communication, computer security, software development, embedded systems, and more!

Find out more
BYTE.com Store

BYTE CD-ROM
NOW, on one CD-ROM, you can instantly access more than 8 years of BYTE.
 
The Best of BYTE Volume 1: Programming Languages
The Best of BYTE
Volume 1: Programming Languages
In this issue of Best of BYTE, we bring together some of the leading programming language designers and implementors...

Copyright © 2005 CMP Media LLC, Privacy Policy, Your California Privacy rights, Terms of Service
Site comments: webmaster@byte.com
SDMG Web Sites: BYTE.com, C/C++ Users Journal, Dr. Dobb's Journal, MSDN Magazine, New Architect, SD Expo, SD Magazine, Sys Admin, The Perl Journal, UnixReview.com, Windows Developer Network