Christmas tree packet

Christmas tree packet

In information technology, a Christmas tree packet is a packet with every single option set for whatever protocol is in use. The term derives from a fanciful image of each little option bit in a header being represented by a different-colored light bulb, all turned on, as in, "the packet was lit up like a Christmas tree." It can also be known as a kamikaze packet, nastygram or a lamp test segment.

Christmas tree packets can be used as a method of divining the underlying nature of a TCP/IP stack by sending the packets and awaiting and analyzing the responses. When used as part of scanning a system, the TCP header of a Christmas tree packets has the flags SYN, FIN, URG and PSH set. Many operating systems implement their compliance with the Internet Protocol standard (RFC 791) in varying or incomplete ways. By observing how a host responds to an odd packet, such as a Christmas tree packet, assumptions can be made regarding the host's operating system. Versions of Microsoft Windows, BSD/OS, HP-UX, Cisco IOS, MVS, and IRIX display behaviors that differ from the RFC standard when queried with said packets.[citation needed]

Some stateless firewalls only check against security policy those packets which have the SYN flag set (that is, packets that initiate connection according to the standards). Since Christmas tree scan packets do not have the SYN flag turned on, they can pass through these simple systems and reach the target host.

A large number of Christmas tree packets can also be used to conduct a DoS attack by exploiting the fact that Christmas tree packets require much more processing by routers and end-hosts than the 'usual' packets do.

Christmas tree packets can be easily detected by intrusion-detection systems or more advanced firewalls. From a network security point of view, Christmas tree packets are always suspicious and indicate a high probability of network reconnaissance activities.

See also

External links


Wikimedia Foundation. 2010.

Игры ⚽ Нужно сделать НИР?

Look at other dictionaries:

  • Christmas tree (disambiguation) — A Christmas tree is a festive decoration. It may also refer to: The Christmas Tree (film), a 1996 TV Movie starring Julie Harris and Andrew McCarthy Christmas tree, a common name for the West Australian plant Nuytsia floribunda Christmas tree… …   Wikipedia

  • Martian packet — A Martian packet is an IP packet which specifies a source or destination address that is reserved for special use by Internet Assigned Numbers Authority (IANA) and cannot actually originate as claimed or be delivered.[1] Martian packets commonly… …   Wikipedia

  • Chernobyl packet — A Chernobyl packet is a network packet that induces a broadcast storm or some other kind of network meltdown . The term was named after the April 1986 nuclear accident at Chernobyl. The typical scenario involves an IP Ethernet datagram that… …   Wikipedia

  • The Quince Tree Press — is the imprint established in 1966 by J. L. Carr to publish his maps, pocket books and novels. Carr, J.L. (1987) An inventory and a history of the Quince Tree Press to mark its 21st year and the sale of its 500,000th small book. August 1987.… …   Wikipedia

  • Godzillagram — A Godzillagram is a network packet that, in theory, is broadcast to every system that is connected directly or indirectly to the Internet backbone.ee also* Christmas tree packet * Martian packet …   Wikipedia

  • Nastygram — The term nastygram may refer to: A cease and desist letter, often one received from a copyright holder A Christmas tree packet (networking) This disambiguation page lists articles associated with the same title. If an intern …   Wikipedia

  • Pingu episodes series 4 — This is an list of episodes with synopses for series 4 of the stop motion animated television series Pingu . =Series 1 (1986 1991)= =Series 2 (1991 1994)= =Series 3 (1994 1996)= =Series 4 (1998)= Pingu s DisadvantagePingu is out on his sledge. He …   Wikipedia

  • Lou and Andy — Infobox character colour = #CCCCFF name = Little Britain Characters Lou Todd Andy Pipkin caption = Andy (left) and Lou (right) I WANT THT 1 :P born = death = occupation = disabilities = title = family = spouse = children = relatives = episode =… …   Wikipedia

  • City of Halifax — Halifax Jipugtug Chebucto Halafacs (Gaelic)   Metropolitan area   …   Wikipedia

  • Chinese New Year — For other traditions of celebrating lunar new year, see Lunar New Year. Chinese New Year Chinatown, London around Chinese New Year Also called Lunar New Year, Spring Festival Observed by …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”