| Linux下基于SYN Cookie的防SYN Flood攻击的实现与改进 |
| |
| 引用本文: | 黄晗辉,陈蜀宇,石晶翔. Linux下基于SYN Cookie的防SYN Flood攻击的实现与改进[J]. 计算机系统应用, 2010, 19(3): 197-201 |
| |
| 作者姓名: | 黄晗辉 陈蜀宇 石晶翔 |
| |
| 作者单位: | 1. 重庆大学计算机学院,重庆,400030
2. 重庆大学软件学院,重庆,400030 |
| |
| 基金项目: | 科技部科技型中小企业技术创新基金(O5C26215111378) |
| |
| 摘 要: | DoS的思想是用大量的数据包来攻击服务器,降低服务器的性能。SYN Flood攻击是DoS攻击的一种重要形式,它是利用TCP协议3次握手时的漏洞对服务器进行攻击。介绍了SYN Flood的攻击原理,研究了Linux 2.6内核下SYN Cookie的实现,并在此基础上提出了一种改进方法。
|
| 关 键 词: | SYN Flood SYN Cookie DoS攻击 3次握手 |
| 收稿时间: | 2009-06-13 |
Implementation and Improvement Against SYN Floody Attack Based on SYN Cookie Under Linux |
| |
| HUANG Han-Hui,CHEN Shu-Yu and SHI Jing-Xiang. Implementation and Improvement Against SYN Floody Attack Based on SYN Cookie Under Linux[J]. Computer Systems& Applications, 2010, 19(3): 197-201 |
| |
| Authors: | HUANG Han-Hui CHEN Shu-Yu SHI Jing-Xiang |
| |
| Affiliation: | HUANG Han-Hui~1,CHEN Shu-Yu~2,SHI Jing-Xiang~1 (1.Computer College,Chongqing University,Chongqing 400030,China,2.Chongqing University,China) |
| |
| Abstract: | The principle of DoS is to attack servers to degrade their capability with a lot of data packets.SYN Flood attack is an important way of DoS attack,which uses leaks to attack servers during TCP's three-way handshake.The paper introduces the attack principle of SYN Flood and the implementation of SYN Cookie based on Linux 2.6 kernel.Finally,it proposes an improved method. |
| |
| Keywords: | SYN Flood SYN Cookie DoS attack three-way handshake |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机系统应用》浏览原始摘要信息 |
|
点击此处可从《计算机系统应用》下载全文 |
