DGLInfo: CERT Advisory CA-96.21: TCP SYN Flooding & IP Spoofing Attacks

CERT Advisory CA-96.21
TCP SYN Flooding & IP Spoofing Attacks

This CERT (Computer Emergency Response Team at the Software Engineering Institute at Carnegie-Mellon University) advisory, released 9/19/96 at 16:44, reports on the publicly-available information related to the vulnerabilities of any TCP-based network service connected to the Internet (Web servers, FTP servers, mail servers).

Information for ISPs (Internet Service Providers) and net users describes the hacking procedures and methodologies to protect systems from these attacks.

The impact of these attacks is service-based. During and shortly following the attack, service may be interrupted; however, the service itself is not permanently harmed. "In some cases, the system may exhaust memory, crash, or be rendered otherwise inoperative."

A copy of the advisory report is posted at http://dgl.com/docs/ca9621.html.

For more information on IP Spoofing and Internet/LAN-based mail security, review documents:

Security & Firewalls: Why you need them: http://dgl.com/docs/iisec.html

Internet/LAN-base mail systems: http://dgl.com/docs/iiemail.html

Note: these documents were written to describe the security implementations of a specific commercial product; however, the security practices and protections are relevant to all Internet services equipment and users.

Damar Group, Ltd. helps business use technology.

ITINFO is again accepting sponsors. Sponsor messages are included in ITINFO's email newsletter and are permanently posted to DGL's website and online reference areas.

ITINFO is an electronic publication of Damar Group, Ltd., publisher of Training Express computer learning guides. Comments and submissions to info@dgl.com.

Previous issues are on our website at dgl.com/dglinfo.

updated September 19, 1996
http://dgl.com/dglinfo/1996/dg960919.html