Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Low Bandwidth Denial of Service Attacks

Posted by CmdrTaco on from the i'm-very-slow dept.

An anonymous reader writes "A paper from Rice University appearing at the 2003 ACM Sigcomm Conference presents a new denial of service attack where the attacker only needs to send at a low rate to shutdown TCP flows. The trick exploits the retransmission timeout mechanism in TCP. By sending small bursts of packets at just the right frequency, the attacker can cause all TCP flows sharing a bottleneck link to simultaneously stop indefinitely. And because the attacker only needs to burst periodically, the attacker will not be distinguishable from normal hosts. The presentation, and other presentations from the conference, are available online (live streaming)."

5 of 366 comments (clear)

  1. Re:Get the Lawyers ready. by daeley · · Score: 0, Offtopic

    Maybe we will see Microsoft do this, they like to sue the little guy.

    No, no. Microsoft likes to *buy* the little guy. The RIAA likes to sue the little guy. And SCO likes to sue the big guys to get bought by them.

    --
    I watched C-beams glitter in the dark near the Tannhauser gate.
  2. Obligatory simpsons quote... by pVoid · · Score: 0, Offtopic
    From episode where Sideshow Bob is running from the authorities (it's the Cape Fear-like one)...

    Sideshow Bob steals the Wright Bro's first airplane in an attempt to flee, the government scrambles Harriers.

    <snip> A pair of Harrier fly past them, and one pilot says, "Prepare to engage enemy." Unfortunately, they just speed right past Sideshow Bob. "Bogey's airspeed not sufficient for intercept. Suggest we get out and walk. We now see a very slow chase going on. The Wright Brothers' plane is being followed by two walking pilots, a squad car, an army jeep a tank, and the Simpsons </snip>

  3. 2400 is old school? by anonymous+loser · · Score: 0, Offtopic

    Holy crap I remember when I finally got a 2400 baud modem after suffering with a 300 baud "brick" modem for a couple of years. It was like the Renaissance. All of a sudden I could actually send and receive files faster than I could type them by hand!

    1. Re:2400 is old school? by tgd · · Score: 0, Offtopic

      If you didn't have an acoustic coupler, you're a n00b. I remember what a pain in the ass it what when the phone died, and I had to find a replacement phone like the old ATT ones that would fit the damn thing. It was an exciting day when I moved up to a 300 baud modem you could actually plug straight into the phone line. Unfortunately the house wasn't wired with RJ-45 jacks, which was an entirely other issue.

    2. Re:2400 is old school? by anonymous+loser · · Score: 0, Offtopic

      Actually I *did* have an acoustic coupler. Yours couldn't do 300 baud? I was happy when I upgraded to a modem that just had an RJ-45 jack since it improved my error rate quite a bit.