an detailed explaination why land attack works?

Feiyi Wang (fwang2@EOS.NCSU.EDU)
Sat, 29 Nov 1997 16:17:21 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: CERT Bulletin: "CERT Vendor-Initiated Bulletin VB-97.15 - nis_cachemgr"
Previous message: Aaron Campbell: "More telnet Daemon Fun"
Next in thread: Bill Paul: "Re: an detailed explaination why land attack works?"

Hi, there

Can anyone give a detailed explaination about why land attack works on
some TCP/IP stack (say BSD-derived)? Which loop is trapped in by this
"self-connect" request? What's the state transition internally? I can't
figure it out.

A related question is I can't use tcpdump get any output from the victim
machine, once it is received the "self-connect" request, it freeze, not
even a ACK packet. (I am trying it on FreeBSD 2.2.5)

Any information is appreciated.

/Feiyi

Next message: CERT Bulletin: "CERT Vendor-Initiated Bulletin VB-97.15 - nis_cachemgr"
Previous message: Aaron Campbell: "More telnet Daemon Fun"
Next in thread: Bill Paul: "Re: an detailed explaination why land attack works?"