A smurf attack is a form of a distributed denial-of-service attack that renders computer networks inoperable
The Smurf program accomplishes this by exploiting vulnerabilities of the Internet Protocol (IP) and Internet Control Message Protocols (ICMP).
Huge numbers of ICMP requests are sent to the victim's IP address.
The source and destination IP address is spoofed. The hosts on the victim's network respond to the ICMP requests.
This creates a significant amount of traffic on the victim’s network, resulting in the consumption of bandwidth and ultimately causing the victim’s server to crash.
Countermeasures
Configure individual hosts and routers to not respond to ICMP requests or broadcasts; or
Configure routers to not forward packets directed to broadcast addresses.
No comments:
Post a Comment