What kind of nefarious deeds can IP address Spoofing be used for?

Question

Possible Duplicate:
What security risks does IP spoofing bring?

I found this article, which seems pretty good but was written in 2003 so I'm not sure how up to date it is.

Can IP address spoofing still be used for:

Denial of Service attacks
Man in the middle attacks

Are there other types of attacks this can be used for?

rook · Accepted Answer · 2011-07-12T21:38:07.493

2

IP Spoofing with TCP over the open internet is impossible because of the three-way-handshake. So you are limited to ICMP/UDP services or attacks on services available over the local LAN. The local lan is an issue if you are able to sniff the network. So this is a problem if you are on a broadcast network or using ARP poisoning on a switched network. ARP poising is also a spoofed attack.

A good example of a spoofed icmp attack is the Smurf DoS Attack. The UDP variant of this DoS attack is called the Fraggle attack. (Who names these!?!??) Also it should be noted that these attacks are old its unlikely that you'll find a vulnerable network.

So in conclusion IP spoofing has a very limited scope. Because Its an attack that has been taken into consideration and its easy to prevent.

edited Jul 12 '11 at 21:38

answered Jul 12 '11 at 17:24

rook

47,004
10
94
182

1

Ha, find me a network vulnerable to a smurf attack nowadays and i'll give you a cookie. – k to the z Jul 12 '11 at 17:47
@k to the z yeah to be honest this is a very limited attack pattern. I was hard pressed to find anything. – rook Jul 12 '11 at 19:02
don't take it to heart. You tried. – k to the z Jul 12 '11 at 19:12
@Rook,could you please take a look at this:http://security.stackexchange.com/q/49487/35462 – user1369975 Feb 04 '14 at 12:01

What kind of nefarious deeds can IP address Spoofing be used for?

1 Answers1