A legacy web server in your company is suffering from a denial of service attack from a malicious source. Which of the following attacks is least likely initiated by the attacker? (Wentz QOTD)
A. Teardrop Attack
B. Smurf Attack
C. LAND (Local Area Network Denial) Attack
D. Ping of Death Attack
Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.
My suggested answer is B. Smurf Attack.
Wentz’s book, The Effective CISSP: Security and Risk Management, helps CISSP and CISM aspirants build a solid conceptual security model. It is a tutorial for information security and a supplement to the official study guides for the CISSP and CISM exams and an informative reference for security professionals.
Reference
- Attacks to be performed Using Hping3 (Packet Crafting)
- Packet crafting: a serious crime!
- Exploiting Buffer Overflow vulnerability to do Privilege Escalation
- Privilege escalation: What you need to know and how to defend your network
- IP Fragmentation Attack
- Teardrop Attack
- Ping of death
- What Is a Ping of Death Attack?
- Ping of Death (POD)
- Smurf Attack Meaning
- What is a Smurf Attack?
- Smurf DDoS attack
- Attack Defense
- LAND
貴公司一台老舊的 Web 主機正遭受一個惡意來源的阻斷式攻擊(DoS)。 以下哪項攻擊最不可能由攻擊者發起? (Wentz QOTD)
A. 淚珠攻擊 (Teardrop Attack)
B. 藍精靈攻擊 (Smurf Attack)
C. LAND(局域網拒絕)攻擊
D.死亡之PING