What is Land?

Information about Land

A LAND attack is a DoS (Denial of Service) attack that consists of sending a special poison spoofed packet to a computer, causing it to lock up. The security flaw was actually first discovered in 1997 by someone using the alias "m3lt", and has resurfaced many years later in operating systems such as Windows Server 2003 and Windows XP SP2.

How it works

The attack involves sending a spoofed TCP SYN packet (connection initiation) with the target host's IP address and an open port as both source and destination.

The reason a LAND attack works is because it causes the machine to reply to itself continuously.

Definition: "A LAND attack involves IP packets where the source and destination address are set to address the same device."

Other land attacks have since been found in services like SNMP and Windows 88/tcp (kerberos/global services) which were caused by design flaws where the devices accepted requests on the wire appearing to be from themselves and causing replies repeatedly.

Vulnerable systems

Below is a list of vulnerable operating systems (discovered by testing on various machines):
  • AIX 3.0
  • AmigaOS AmiTCP 4.2 (Kickstart 3.0)
  • BeOS Preview release 2 PowerMac
  • BSDi 2.0 and 2.1
  • Digital VMS
  • FreeBSD 2.2.5-RELEASE and 3.0 (Fixed after required updates)
  • HP External JetDirect Print Servers
  • IBM AS/400 OS7400 3.7
  • Irix 5.2 and 5.3
  • Mac OS MacTCP, 7.6.1 OpenTransport 1.1.2 and 8.0
  • NetApp NFS server 4.1d and 4.3
  • NetBSD 1.1 to 1.3 (Fixed after required updates)
  • NeXTSTEP 3.0 and 3.1
  • Novell 4.11
  • OpenVMS 7.1 with UCX 4.1-7
  • QNX 4.24
  • Rhapsody Developer Release
  • SCO OpenServer 5.0.2 SMP, 5.0.4
  • SCO Unixware 2.1.1 and 2.1.2
  • SunOS 4.1.3 and 4.1.4
  • Windows 95, NT and XP SP2, Vista

How to avoid being attacked

Most firewalls should intercept the poison packet thus protecting the host from this attack. Some operating systems released updates fixing this security hole.

External links





Land may refer to: A synonym for a region belonging to a people: In law: In economics:
  • Land (economics), a factor of production comprising all naturally occurring resources
  • Land economy, the study of land usage and development
  • Land grant, a gift of land made by the government for public projects
  • Land reform, the redistribution of land
Other:
  • Land Camera, the first "instant camera"
  • Land Institute, a non-profit agricultural study center Kansas USA
  • LAND, a DoS (Denial of Service) attack used in the Internet
  • A landing
  • Lands, the raised helical grooves in rifled gun barrels

See also

In the context of network security, a spoofing attack is a situation in which one person or program successfully masquerades as another by falsifying data and thereby gaining an illegitimate advantage.
..... Read more.

..... Read more.
An operating system (OS) is the software that manages the sharing of the resources of a computer. An operating system processes system data and user input, and responds by allocating and managing tasks and internal system resources as a service to users and programs of the
..... Read more.
Windows Server 2003
(Part of the Microsoft Windows family)
Screenshot

Screenshot of Windows Server 2003 Enterprise Edition
Developer
Microsoft
Web site: www.microsoft.
..... Read more.
Windows XP
(Part of the Microsoft Windows family)
Screenshot

Screenshot of Windows XP Service Pack 2
Developer
Microsoft
Web site: Windows XP: Homepage
Release information
Release date:
..... Read more.
The Transmission Control Protocol (TCP) is one of the core protocols of the Internet protocol suite. TCP provides reliable, in-order delivery of a stream of bytes, making it suitable for applications like file transfer and e-mail.
..... Read more.
The Transmission Control Protocol (TCP) is one of the core protocols of the Internet protocol suite. TCP provides reliable, in-order delivery of a stream of bytes, making it suitable for applications like file transfer and e-mail.
..... Read more.
An IP address (Internet Protocol address) is a unique address that certain electronic devices use in order to identify and communicate with each other on a computer network utilizing the Internet Protocol standard (IP)—in simpler terms, a computer address.
..... Read more.
AmigaOS is the default native operating system of the Amiga personal computer. It was developed first by Commodore International, and initially introduced in 1985 with the Amiga 1000.
..... Read more.
BeOS

A screenshot of BeOS R4.5
Company/developer: Be Inc.
OS family: BeOS
Source model: Closed source
Stable release: BeOS R5.0.
..... Read more.
BSD/OS (originally called BSD/386 and sometimes known as BSDi) was a proprietary version of the BSD Unix operating system developed by Berkeley Software Design, Inc. (BSDi).
..... Read more.
FreeBSD is a Unix-like free operating system descended from AT&T UNIX via the Berkeley Software Distribution (BSD) branch through the 386BSD and 4.4BSD operating systems.
..... Read more.
HP is a common abbreviation for Hewlett-Packard, a computer company, and featured as part of their corporate logo.

HP may also refer to:

Technology

  • Horsepower (hp), a unit of power

Organizations


..... Read more.
International Business Machines Corporation

Public (NYSE:  IBM )
Founded 1889, incorporated 1911
Headquarters Armonk, New York, USA

Key people Samuel J.
..... Read more.
IRIX is a computer operating system developed by Silicon Graphics, Inc. (SGI) to run natively on their 32- and 64-bit MIPS architecture workstations and servers. Based on UNIX System V with BSD extensions, it is capable of extremely long uptimes, and its XFS file system is
..... Read more.
This article relates to both the original "Classic" Mac OS as well as Mac OS X, Apple's more recent operating system. See the Mac OS X article for information directly relating to this current Macintosh operating system.

..... Read more.
This article or section is written like an .
Please help [ rewrite this article] from a neutral point of view.
Mark blatant advertising for , using .
Network Appliance, Inc.
..... Read more.
NetBSD is a freely redistributable, open source version of the Unix-derivative BSD computer operating system. It was the second open source BSD variant to be formally released, after 386BSD, and continues to be actively developed.
..... Read more.
Nextstep was the original object-oriented, multitasking operating system that NeXT Computer developed to run on its proprietary NeXT computers ("black boxes"). Nextstep 1.0 was released on September 18, 1989 after several previews starting in 1986. The last version, 3.
..... Read more.
Novell Inc.

Public (NASDAQ:  NOVL )
Founded Provo, Utah (1983)
Headquarters Waltham, MA, USA

Key people Ron Hovsepian, CEO and President
John Dragoon, Senior Vice President, CMO
Dana Russell, Senior Vice President, CFO
Industry Software
..... Read more.
OpenVMS[1] (Open Virtual Memory System or just VMS) is the name of a high-end computer server operating system that runs on the VAX[2] and Alpha[3]
..... Read more.
QNX (pronounced either Q-N-X or Q-nix) is a commercial POSIX-compliant Unix-like real-time operating system, aimed primarily at the embedded systems market. As of the 12th of September 2007, the source of the QNX kernel has been released for non-commercial use.
..... Read more.
Rhapsody was the code name given to Apple Computer's next-generation operating system during the period of its development between Apple's purchase of NeXT in late 1996 and the announcement of Mac OS X in 1998.
..... Read more.
SunOS is a version of the Unix operating system developed by Sun Microsystems for their workstation and server computer systems. The SunOS name is usually only used to refer to versions 1.0 to 4.1.4 of SunOS. These versions were based on BSD Unix, while SunOS version 5.
..... Read more.
Microsoft Windows

Screenshot of Windows Vista Ultimate, the latest version of Microsoft Windows.
Company/developer: Microsoft Corporation
OS family: MS-DOS/9x-based, Windows CE, Windows NT
Source model: Closed source

..... Read more.
firewall is a hardware or software device which is configured to permit, deny, or proxy data through a computer network which has different levels of trust.

Function


..... Read more.
EARTH was a short-lived Japanese vocal trio which released 6 singles and 1 album between 2000 and 2001. Their greatest hit, their debut single "time after time", peaked at #13 in the Oricon singles chart.
..... Read more.
A landform comprises a geomorphological unit, and is largely defined by its surface form and location in the landscape, as part of the terrain, and as such, is typically an element of topography.
..... Read more.
landscape comprises the visible features of an area of land, including physical elements such as landforms, living elements of flora and fauna, abstract elements such as lighting and weather conditions, and human elements, for instance human activity or the built environment.
..... Read more.
A land bridge, in biogeography, is an isthmus or other land connection between what at other times are separate areas which allows animals and plants to cross and colonise new lands.
..... Read more.