IT283_Tina Harvey_Unit 10 Assignment.docx

Can help prevent these vulnerabilities from being

Info icon This preview shows pages 2–4. Sign up to view the full content.

View Full Document Right Arrow Icon
can help prevent these vulnerabilities from being taken advantage of such as using encrypted connections (IPsec), ensuring that cookies do not retain value for a long time, and implementing a firewall with an ACL.
Image of page 2

Info icon This preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
IPV4 AND IPV6 3 3. In a brief essay, describe three common types of IP-related attacks and at least one way to stop them. IP Service attacks occur on the most commonly used (and therefore open) ports. The attack looks for anonymous logins and other vulnerabilities on ports used for HTTP, FTC, etc. TCP is also very vulnerable to a myriad of DoS attacks due to its use of buffers to hold sent SYN waiting on ACKS. This is done by flooding a host with SYN using a spoofed address. The receiving host will send a SYN/ACK and hold it on its buffer until it receives an ACK or a predetermined amount of time passes. Another popular attack is a MITM (man in the middle) attack. This consists of the attacker sniffing valid traffic, extracting valid information, and posing as one of the parties involved in the transmission. Some of the best ways to protect against these attacks are to use firewalls/VPNs with awareness of these attacks. They will drop packet floods to help prevent DoS attacks and drop connections not originating from the same source to help prevent MITM attacks. 4. In a brief essay explain the security vulnerabilities of transition methods (6to4, etc.) During the transition from IPv4 to IPv6, many companies will be running both protocols in tandem. This increases the attack surface two fold. It could be easy to overlook flaws or vulnerabilities in one or the other. Wireshark was used to sniff the network for information of vulnerabilities around the 6to4 tunnel. When implementing 6to4, the 6to4 router may not be able to tell if the relay is legitimate or could be used as part of a DoS attack making the origin much harder to trace back. The data for DoS attacks inside and outside the tunnels both show
Image of page 3
Image of page 4
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern