350-701 · Question #426
What is the intent of a basic SYN flood attack?
The correct answer is B. to exceed the threshold limit of the connection queue. The primary intent of a basic SYN flood attack is to exhaust a server's connection resources by filling its connection queue.
Question
What is the intent of a basic SYN flood attack?
Options
- Ato solicit DNS responses
- Bto exceed the threshold limit of the connection queue
- Cto flush the register stack to re-initiate the buffers
- Dto cause the buffer to overflow
How the community answered
(36 responses)- B92% (33)
- C6% (2)
- D3% (1)
Why each option
The primary intent of a basic SYN flood attack is to exhaust a server's connection resources by filling its connection queue.
Soliciting DNS responses is a characteristic of DNS-based attacks like amplification or cache poisoning, not a SYN flood.
A basic SYN flood attack exploits the TCP three-way handshake by sending numerous SYN requests without completing the final ACK, causing the target server to allocate resources for many half-open connections. The intent is to exceed the threshold limit of the server's connection queue, preventing legitimate incoming connections and resulting in a denial-of-service.
Flushing the register stack or re-initiating buffers describes low-level system operations and is not the direct objective of a SYN flood, which focuses on exhausting network connection resources.
Causing a buffer overflow is a distinct type of attack that exploits memory handling vulnerabilities, whereas a SYN flood targets connection state tables to achieve denial of service.
Concept tested: SYN flood attack mechanism
Source: https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/113337-asa-syn-attack.html
Topics
Community Discussion
No community discussion yet for this question.