Home page logo

basics logo Security Basics mailing list archives

RE: Smurf ,land attacks
From: "Carere, Courtney" <CCarere () rich com>
Date: Tue, 5 Nov 2002 10:04:41 -0500

As far as I understand it, IP spoofing is not an attack by itself.  It's an
integral resource for hackers for many reasons.  Both the smurf and land
attacks utilize it.

Smurf and land attacks are both DoS (denial of service) attacks.  

Land attacks work by sending a stream of TCP SYN packets that have the IP
address and TCP port number set to the same value for both the sender and
receiver (the victim host).  For some implementations of TCP/IP, this causes
an infinite loop and eventual denial of service (a crash and/or reboot of
the system).  Basically, the victim machine crashes itself.

Smurf attacks work through one or more intermediaries.  They ping the
intermediary (send a packet with a request for a reply).  The trick is, the
source of the packet is spoofed as the victim; so when the intermediaries
send a reply packet to the "source" (the victim), it can cause an overload
of DoS.  Smurf attacks cause DoS through other machines.  I think this would
be classified a distributed denial of service attack.

If I'm inaccurate on any of these explanations, please correct me! :D

Here are two websites on smurf attacks:

And here's some resources on land attacks:


-----Original Message-----
From: vijay vikram shreenivos [mailto:karpagamekapali () rediffmail com]
Sent: Saturday, November 02, 2002 2:15 AM
To: security-basics () securityfocus com
Subject: Smurf ,land attacks

Hi list,

Can someone give the EXACT differences btw

and IP soofing attacks.

Give your Company an email address like
ravi @ ravi-exports.com.  Sign up for Rediffmail Pro today!
Know more. http://www.rediffmailpro.com/signup/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]