tcp - How insecure is web? -
I have just started writing socket programs. To know that a single UDP packet has some MAC address representing the source port destination port and router. I wonder why no one can create a custom packet with fake information and send it over the Internet. I would like to know how safe our PC is. What should be done to protect it?
There are some different aspects to the answer.
One is that the web depends on TCP, not UDP. This means that it is connection-oriented. Your package will be rejected, as long as it is not part of any existing connection (which means, in addition to other things, this should also be the correct source IP and port, and it should fit in the correct sequence number. window). It can still be counterfeit without much trouble, of course. But you need to know something about packets sent to the original connection.
Another part is that whenever we need to ensure that the senders of the pack are those they claim, we use encryption :)
Most Packets do not really need this, it's not a big deal, if someone sends a request to Google which appears
Comments
Post a Comment