mailing list archives
Re: DoS Attackers using only udp and icmp protocol?
From: cuervo73 () wanadoo es
Date: 12 Feb 2007 09:53:51 -0000
WHY DOS attacks are using UDP and ICMP packets? I can think of one good reason for this:
The attacker wants to be sure the attack volume cannot be stopped/slowed by the victim. If using some TCP packets, a
smart victim can implement some kind of TARPIT to slow the attack stream down to a very slow rate. But, TARPIT methods
do not work against UDP nor ICMP protocols.
If you do not know about TARPIT, please search Google.com using TARPIT and it will become clear.