978-0840020932 Chapter 11

Type Homework Help

Pages 4

Words 859

Textbook Computer Security and Penetration Testing 2nd Edition

Authors Alfred Basta, Nadine Basta, PhD CISSP CISA Mary Brown

Unlock document.

This document is partially blurred.

Unlock all pages and 1 million more documents.

Get Access

Chapter 11: Denial-of-Service Attacks

TRUE/FALSE

1. Some vulnerabilities cannot be closed by patching because there is an inherent bandwidth limit or active

connection limit on all physical equipment and all software.

2. The process table in UNIX permits a virtually infinite number of entries.

3. Most legitimate Ping utilities do not allow you to send a ping of less than 64 KB.

4. Computers that are connected to the Internet utilize DNS to resolve URLs.

5. ICMP is used to handle errors and exchange control messages on a network.

MULTIPLE CHOICE

1. A(n) ____ occurs when the sysadmin has allowed the system to perform a variety of services without

considering the system’s limitations.

involuntary DoS

isolated DoS

distributed DoS

voluntary DoS

2. ____ attacks consume the limited resources of a computer or a network by transmitting a large number

of packets as quickly as possible.

Software

Flood

Isolated

Void

3. ____ attacks exploit the existing software weaknesses. The effect is either degraded performance or

crashes on the victim server.

Software

Voluntary

Flood

Isolated

4. The ____ utility is used to determine if a specific machine located at a specific IP address is online.

Echo

Ping

Alive

5. In a ____ attack, a hacker sends to the target computer a packet that has the identical source and

destination IP address as that of the target computer.

DNS overflow

Land

Teardrop

Chargen

COMPLETION

1. A(n) ______________________________ is a strategy designed to keep valid traffic from accessing the

target of your attack.

2. ____________________ is a historical DoS attack in which the hacker uses the Ping utility to acquire

access to a system.

3. ______________________________ is a database that maps domain names to IP addresses.

4. ____________________ attacks are like SMURF DoS attacks, but instead of using ICMP packets, they

use UDP packets.

5. A(n) ____________________ is a network of robot, or zombie, computers, which can harness their

collective power to do considerable damage or send out huge amounts of junk e-mail.

SHORT ANSWER

1. What are the main targets of DoS attacks and what do the attacks accomplish?

2. Describe an example of a voluntary DoS attack.

3. Under what conditions can a flood attack occur?

4. Describe an example of a DNS spoofing attack.

5. What are the main characteristics of Trinoo?

Trusted by Thousands of
Students

Here are what students say about us.

Albert

University of Michigan

“I found almost every finance case study paper for my MBA courses.”.

Anna

University of Massachutsetts

“Wow! Solution manual for 3 out of 4 courses.”.

Collins

Jacksonville State University

“One-stop shop for college students. I passed all my exams thanks to Coursepaper”.

Jill

Boston University

“A helpful studying resources, a combination of all studying material in one place”.

Drake

Clark Atlanta University

“I graduated thanks to Coursepaper”.

Karen

College of Charleston

“I invested in Coursepaper, and it is paid off after the first semester. I got straight A”.

Hill

Concordia University Irvine

“Awesome awesome awesome site”.

Rachel

Coppin State University

“The one website that I recommend to every college students”.

978-0840020932 Chapter 11

Unlock document.

Trusted by Thousands of
Students

Albert

Anna

Collins

Jill

Drake

Karen

Hill

Rachel

Kristopher

Resources

Company

Legal

978-0840020932 Chapter 11

Unlock document.

Trusted by Thousands ofStudents

Albert

Anna

Collins

Jill

Drake

Karen

Hill

Rachel

Kristopher

Resources

Company

Legal

Trusted by Thousands of
Students