TCP/IP security threats and attack methods

摘要

The TCP/IP protocol suite is vulnerable to a variety of attacks ranging from password sniffing to denial of service. Software to carry out most of these attacks is freely available on the Internet. These vulnerabilities-unless carefully controlled-can place the sue of the Internet or intranet at considerable risk. This article classifies a range of known attack methods focusing in a particular on SYN flooding, IP spoofing, TCP sequence number attack, TCP session hijacking, RST and FIN attacks and the Ping O'Death. The article concludes with an examination of the vulnerabilities of the common protocols carried by TCP/IP (including SMTP, Telnet, NTP, Finger, NFS, FTP, WWW and X windows) and proposes configuration methods to limit their vulnerability.