Syn flooding attacks

Vern Paxson vern at
Mon Oct 20 18:08:27 UTC 1997

> The router could discard the SYN, remembering it, and let pass the retry SYN
> that usually occurs with valid connections and does not with invalid ones.

This is no good - all the crackers have to do is modify their programs
to send two bogus SYNs, spaced apart, instead of just one.


More information about the NANOG mailing list