Definition - What does Spoofing mean?
Spoofing is a fraudulent or malicious practice in which communication is
sent from an unknown source disguised as a source known to the
receiver. Spoofing is most prevalent in communication mechanisms that
lack a high level of security.
In general terms, a spoof entails falsifying one's identity or masquerading as some other individual or entity to gain access to a system or network or to gain information for some other unauthorized purpose.
In general terms, a spoof entails falsifying one's identity or masquerading as some other individual or entity to gain access to a system or network or to gain information for some other unauthorized purpose.
Definition - What does Smurf Attack mean?
A smurf attack is
a type of denial of service attack in which a system is flooded with
spoofed ping messages. This creates high computer network traffic on the
victim’s network, which often renders it unresponsive.
Smurfing takes certain well-known facts about Internet Protocol and
Internet Control Message Protocol (ICMP) into account. ICMP is used by
network administrators to exchange information about network state, and
can also be used to ping other nodes to determine their operational
status. The smurf program sends a spoofed network packet that contains
an ICMP ping. The resulting echo responses to the ping message are
directed toward the victim’s IP address. Large number of pings and the
resulting echoes can make the network unusable for real traffic.
 |
| Smurf Attack |
The following steps lead to a smurf attack:
- Huge numbers of ICMP requests are sent to the victim's IP address
- The source destination IP address is spoofed
- The hosts on the victim's network respond to the ICMP requests
- This creates a significant amount of traffic on the victim’s network, resulting in consumption of bandwidth and ultimately causing the victim’s server to crash.
