www.Usenet.com
www.Usenet.com
| <-- __Chronological__ --> | <-- __Thread__ --> |
"Patrick Schaaf" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] > "Skybuck Flying" <[EMAIL PROTECTED]> writes: > > >> Directed broadcasts are practically never used. They make nice toys for > >> network admins, until they are misused for the first time by some bozo. > >> Then, they'll set their routers to block & drop them. As a consequence, > >> except maybe in some highly controlled environments, directed broadcast > >> is never used, because it just won't work. > > >How can a directed broadcast be misused ? > > Like any other mechanism which results in N packets answer for 1 packet > request: by faking the source IP address of a request to be the address > of a victim machine, and sending the request someplace where N machines > answer. The result is an easy 1:N flood amplification, which means that > an attacker can attack with N times its own local transmit pps capacity. Yes... but what is the difference between a 255.255.255.255 broadcast and a directed broadcast like 192.255.255.255 ? Best regards, Skybuck.
| <-- __Chronological__ --> | <-- __Thread__ --> |
