Internet and Network Security

Continuing previous article about Network attack types, below are the other two attack which are ping of death and Half open connection, describe as below:

Ping of Death is an attack (Denial of Service) DoS against a server / computer that is connected in a network. These attacks take advantage of existing features in the TCP / IP packet fragmentation or breakdown of the package, and also the fact that the limit on the IP protocol packet size is 65,536 bytes or 64 kilobytes. Attackers can send various ICMP packets (used to ping) are fragmented so that when the packets are put back together, then the total packet size exceeds the limit of 65,536 bytes.
Read the rest of this entry »

UDP Bomb attack is an offensive type of Denial of Service (DoS) against a server or computers connected in a network. To perform a UDP Bomb attack against a server, an attacker sends an UDP (User Datagram Protocol) which has been engineered so dispoof or contain values ??that are invalid in certain fields.

If the server is not protected still uses the operating system (operating system) that can not handle long invalid UPD packages, then the server will crash immediately. Examples of operating systems that can be dropped by UDP bomb attack is a SunOS version 4.1.3a1 or earlier versions. Most operating systems will discard UDP packets that are not valid, so the operating system will not crash. However, to make it more secure, you should use a packet filtering through the firewall to monitor and block attacks such as UDP Bomb attack.
Read the rest of this entry »

Today I’d like to discuss about network attack, previous article we have discuss about specific network attack, but in this articles lets find out the basic type of network attack as below:

Teardrop-type attack is a Denial of Service attack (DoS) against a server / computer that is connected in a network. Teardrop attack takes advantage of existing features in the TCP / IP packet fragmentation or breakdown of the package, and weaknesses in the TCP / IP at the time of the fragmented packets are put back together. In a data transmission from one computer to another over a network based on TCP / IP, then the data is broken down into several smaller packets in the computer of origin, and the packets are sent and then put back together on the destination computer.
Read the rest of this entry »

Today many web developers using frameworks, cms, or other website builder to build their own sites. But between their ease of access and level of usage, don’t forget about security issues.

Security issues usually consider as parts of hardware issues such as physical server and Operating system interference or any related IT environment issues. But the software itself are not entirely safe from attack. As an example, lets try to review some cms (content management system) such as Drupal and Joomla.
Read the rest of this entry »

Hop-Count Filtering, proposed by Jin et al. A research project at the University of Michigan, aimed at defending against DDoS by observing the TTL value (time to live, the number of hops or routers a packet will travel before getting discarded to avoid network loops—the value gets decremented at each router the packet traverses) in inbound packets. Deployed at victim/target networks, it observes the proper TTL value for any given source address on the network that enters the victim/target network, attempts to infer a hop count (that is, the distance of the sender from the defense) and builds tables that bind a given IP to the hop count.

The system makes guesses of hop counts starting with the observed TTL value and guessing the initial TTL value that was placed in the packet at the sender. There are only a few such values that operating systems use and they are fairly different, which facilitates correct guesses. The hop count is then the difference between the initial TTL and the observed one.
Read the rest of this entry »