TRANSPORT LAYER
INTRODUCTION
|
Question
[CLICK ON ANY CHOICE TO KNOW THE RIGHT ANSWER]
|
|
|
A client requests a TCP connect to a server, but doesn’t respond to the server’s syn-ack.
|
|
|
A server ignores a client’s connection attempt.
|
|
|
A client connects to the same server multiple times.
|
|
|
A client uses telnet to connect to a server.
|
Detailed explanation-1: -In a SYN flood attack, the attacker sends repeated SYN packets to every port on the targeted server, often using a fake IP address. The server, unaware of the attack, receives multiple, apparently legitimate requests to establish communication. It responds to each attempt with a SYN-ACK packet from each open port.
Detailed explanation-2: -A SYN flood attack is a type of denial-of-service (DoS) attack on a computer server. This exploit is also known as a half-open attack. SYN floods are one of several common vulnerabilities that take advantage of TCP/IP to overwhelm target systems. SYN flood attacks use a process known as the TCP three-way handshake.
Detailed explanation-3: -Q24) What response is missing in a SYN flood attack? A24) During a SYN flood, the last step of the three-way handshake is missing, which means that after the SYN, SYN-ACK are performed, the final ACK is not received.