for example: the contents of a packet (bits) may change from 0 to 1 or 1 to 0 during transmission, but how to find whether the changes were not natural but intentionally done by some cracker etc.
2007-02-01 05:41:22 · 3 answers · asked by Ather Q 1 in Computers & Internet ➔ Security
You'd have to be AT&T or the NSA to do what you want, but I'm not really sure you need to do that anyway. (In theory they could capture data before and after it went through a given router, and compare)
What would someone gain by capturing packets headed to your site and flipping bits? They'd have to go through quite a bit of trouble to get 'in between' you and the client sending traffic to you.
It would be a lot easier to send you bad packets directly or through a proxy. Flipping random bits on TCP packets won't get you much, unless they're flipping the right ones (ACK, SYN, etc). Tools like hping can send all kinds of crazy packets. This is more likely what you're seeing.
I think there's an IPv4 checksum in the packet, so if that doesn't compute correctly (ethereral will tell you), somebody may be hitting your side with weird packets to test your firewall(s).
Also check out snort, it is a free Intrusion Detection System (IDS), meaning it will monitor traffic for you and tell you when somebody's doing a portscan (or worse) on your site.
2007-02-01 06:10:52 · answer #1 · answered by fixedinseattle 4 · 0⤊ 0⤋
The broker will in basic terms enable you be attentive to what to do to lead them to money. Take it to a trans keep. errors codes, or DTC's, is purely letting you be attentive to there's a concern. does not continually propose this is a large concern inspite of the shown fact that. He might have the trans rebuilt by potential of a trans keep for plenty extra affordable than what a broker will do to you if it got here to it. My final motor vehicle had a provider engine quickly mild by using fact i did no longer tighten the gasoline cap all the way so it gave me a DTC for the evap device. at present's autos are especially intelligent. stay removed from the broker till you have a guaranty.
2016-12-16 18:44:44 · answer #2 · answered by andie 4 · 0⤊ 0⤋
there are no way of knowing TCP is connection oriented, UDP is connectionless...so depending on what hit you on your firewall or router that would let you know where you are and who did what. A lot of things float on the internet...bounce therefore there is sometimes no definitive source..
2007-02-01 05:50:09 · answer #3 · answered by evilbender2005 2 · 0⤊ 0⤋