Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
in Security+ book, it has been told that DoS attack can be undetectable and an attacker can use an invalid IP address.
what did it mean by Invalid IP address? is it a zombie IP? how can we face with that?
It means spoofing. Spoofing means sending a packet with a source IP that doesn’t belong to you.
It’s simple, really. The attacker sends a constant stream of packets to the victim and populates
ip.srcwith127.0.0.1or74.125.39.105or something like that. It does this to hide his identity. If he didn’t, you could go to his ISP “Hey, this guy is DoS’ing me! Shut him down“.You must understand that when a packet leaves a host there are not magic rules that ensure it’s correct. Most serious operating systems that support IP allow you to send whatever you want in an IP packet.