PL  |  NL  |  FR  |  ES  |  PT  |  IT  |  DE  |  DK  |  NO  |  SE  |  FI  |  GR  |  JP  |  CN  |  KR  |  RU  |  AE

  Report this article

More information

Common Misconceptions about IPv6

When to switch to IPv6

AAA Overview

Enterprise Security Models for IPv6

PPP Overview

ADSL Overview

The ISDN Layer Protocols

NAT Operation

TELNET Protocol Risks in LINUX/UNIX

ISDN Overview

Dial on demand routing (DDR)

How Do I Prevent IP Spoofing Attacks

In order to protect data, one has to be aware of the possible threats. People often focus solely on malicious attacks from foreign networks. A comprehensive security concept needs to consider many other aspects. Following is a list of possible points of weakness:

• Insufficient or nonexistent IT security concepts and corresponding provisions

• Nonobservance or insufficient control of IT security provisions

• Usurping of rights (password theft)

• Incorrect use or faulty administration of IT systems

• Abuse of rights

• Weaknesses in software (buffer/heap overflows in conjunction with applications running with superuser rights)

• Manipulation, theft, or destruction of IT devices, software, or data (physical security)

• Network eavesdropping (sniffing wired or wireless networks) or replaying of messages

• Trojan horses, viruses, and worms

• Security attacks such as masquerading, IP spoofing, Denial of Service (DoS) attacks, or man-in-the-middle attacks

• Routing misuse

There are many statistics showing that malicious attacks from the outside are only a smaller fraction of all the possible risks. Many threats come from within the internal network and can in many cases be related to human misconduct or faulty administration. Many of these risks cannot be controlled by technical mechanisms.