Understanding TCP Connection Basics.

Posted on October 20, 2008 by Vaibhav Pandey

During a TCP connection, their are 6 TCP flags which are set in the packets which are transported to the target computer from the source computer. These flags indicate the state of the packet.

Valid values for the flags are

SYN -- Initial Request, sent by the source.
ACK -- Acknowledgement to the initial request. Sent by the target confirming the receipt of SYN.

FIN -- Finish Request.

URG -- Urgent Request.

PSH -- Push Request.

RST -- Reset. 

The combination of these above mentioned flags sets the control connection session at various times.

The real implementation of these flags starts from the very time a source computer tries to establish a session with a target computer.

The process flow for the same goes as mentioned below

1.) Source Computer sends a SYN request.

2.) Target computer, upon the receipt of a SYN request, sends back a SYN-ACK request/response. 

3.) Source computer again sends back an ACK message to the target computer. This confirms the connection.

TCP-Connection basics

TCP-Connection basics

The above mentioned process is known as a 3-Way handshake process for TCP connections. 

Now, while at this topic, lets also take up the importance of these flags and the TCP communication basics to see if an alteration in the flag setting can lead to a Denial of Service (DoS) for the Web application. 

Lets assume a scenario where in a malicious machine is only sending SYN packets for the connections and has been configured to not send any ACK flag. 

1.) Source computer sends a SYN request to the target computer. 

2.) Target computer responds back with a SYN-ACK. 

3.) Source computer instead of sending ACK, sends back a SYN request. 

Understanding How modifying TCP flags can lead to DoS attack

Understanding How modifying TCP flags can lead to DoS attack

The above process leads to the scenario wherein the target computer always opens up a new connection upon the receipt of SYN request, allocates specific memory for the connection and keeps the memory allocated till the connection times out. This may lead to a situation wherein the target computer runs out of the memory pool and denies any further connections. This is called Denial of Service.

Also read: Understanding NULL Session Attacks

Filed under: hacking, Tutorials | Tagged: , , , , , , , , , | 2 Comments »

[How-To] Convert your File System to NTFS from FAT

Posted on October 14, 2008 by Vaibhav Pandey

With the release of Windows VISTA, the older FAT and FAT32 drive formats have become obsolete. The new installations of Vista use the more secure and powerful NTFS format by default. 

If you wish to convert your existing FAT/FAT32 drives to NTFS, follow the steps mentioned below. 

1.) Backup all your important data. Backing up your applications is an important step and usually helps in case of an adversity. if you have an automated data backup setup, you are already good to go.

2.) Press the keys in the pattern mentioned below

               Start –> Run –> Type cmd –> press Enter

3.) At the command prompt, remember to replace <drive_name> with the name of the drive volume you wish to convert.

              CONVERT <drive_name>/FS:NTFS 

Convert to NTFS from FAT

Convert to NTFS from FAT

4.) To get more help on CONVERT, at the command prompt type 

              CONVERT/?

What is important to note here is, that, Once you convert a drive or partition to NTFS, you cannot simply convert it back to FAT or FAT32. You will need to reformat the drive or partition which will erase all data, including programs and personal files, on the partition.

Also read: Turn off Windows Messenger and improve your PC Performance

[How-To] Copying data from a corrupted User Profile to a New Profile in Windows XP

Google C++ Testing Framework Launched

[How-To] Automating data backup in Windows

 

You can follow me on Twitter at http://twitter.com/vaibhav1981

Do stay tuned to Technofriends for more, one of the best ways of doing so is by subscribing to our feeds. You can subscribe to Technofriends feed by clicking here.

Cheers

Vaibhav

Filed under: Windows | Tagged: , , , , , , , , , , | Leave a comment »