Testbook Logo
Exams SuperCoaching Test Series Skill Academy
More

Question

Download Solution PDF

The DoS attack, in which the attacker establishes a large number of half-open or fully open TCP connections at the target host is __________. 

This question was previously asked in
NIELIT Scientific Assistant CS 5 Dec 2021 Official Paper
Download PDF Attempt Online
View all NIELIT Scientific Assistant Papers >
  1. Vulnerability attack
  2. Bandwidth flooding
  3. Connection flooding
  4. UDP flooding

Answer (Detailed Solution Below)

Option 3 : Connection flooding
Free Tests
View all Free tests >
Free
NIELIT Scientific Assistant Quantitative Aptitude Mock Test
0.6 K Users
20 Questions 20 Marks 30 Mins
Start Now

Detailed Solution

Download Solution PDF

The correct answer is Connection flooding.

key-point-image Key Points

  • Connection flooding is a type of Denial of Service (DoS) attack where the attacker establishes a large number of half-open or fully open TCP connections at the target host.
  • This type of attack exploits the TCP handshake process by initiating multiple connections but never completing them, or by maintaining a large number of open connections.
  • The target host's resources become overwhelmed with the high number of connections, leading to legitimate users being unable to establish a connection.
  • Connection flooding can exhaust the target's available connections and memory, causing server performance degradation or complete unavailability.
  • Commonly used tools for connection flooding include Low Orbit Ion Cannon (LOIC) and High Orbit Ion Cannon (HOIC).

additional-information-image Additional Information

  • Mitigation techniques for connection flooding attacks include implementing connection rate limiting, using firewalls, and employing Intrusion Detection Systems (IDS).
  • Network administrators can monitor network traffic for unusual patterns that may indicate a connection flooding attack.
  • Using SYN cookies can help protect against SYN flood attacks, a form of connection flooding.
  • Organizations should regularly update and patch their systems to protect against known vulnerabilities that could be exploited for connection flooding attacks.
Download Solution PDF
Latest NIELIT Scientific Assistant Updates

Last updated on Jun 12, 2025

-> NIELIT Scientific Assistant city intimation slip 2025 has been released at the official website.

-> NIELIT Scientific Assistant exam 2025 is scheduled to be conducted on June 28. 

-> A total number of 113 revised vacancies have been announced for the post of Scientific Assistant in Computer Science (CS), Information Technology (IT), and Electronics & Communication (EC) streams.

-> Online application form, last date has been extended up to from 17th April 2025.

->The NIELT has revised the Essential Qualifications for the post of Scientific Assistant. Candidates must possess (M.Sc.)/ (MS)/ (MCA) / (B.E.)/ (B.Tech) in relevant disciplines.

 

-> The NIELIT Scientific Assistant 2025 Notification has been released by the National Institute of Electronics and Information Technology (NIELIT).

‹‹ Previous Ques
Next Ques ››

More TCP Questions

Q1.The DMA sends DACK - acknowledgement signal to the peripheral when _______.
Q2.The DoS attack, in which the attacker establishes a large number of half-open or fully open TCP connections at the target host is __________. 
Q3.Which of the following is not a field in TCP header ? 
Q4.Consider two hosts P and Q that are connected through a router R. The maximum transfer unit (MTU) value of the link between P and R is 1500 bytes and between R and Q is 820 bytes. A TCP segment of size 1400 bytes is transferred from P to Q through R with IP identification value of 0x1234. Assume that IP header size is 20 bytes. Further the pcaket is allowed to be fragmented that is Don't fragment (DF) flag in the IP Header is not set by P. Which of the following statement/s is/are true? A. Two fragments are created at R and IP datagram size carrying the second fragment is 620 bytes B. If the second fragment is lost, then R resends the fragment with IP identification value of 0x1234 C. If the second fragment lost, then P requires to resend the entire TCP segment. D. TCP destination port can be determined by analyzing the second fragment only. Choose the correct answer from the options given below: 
Q5.A TCP server application is programmed to listen on port P on host S. A TCP client is connected to the TCP server over the network, Consider that while TCP connection is active the server is crashed and rebooted. Assume that the client does not use TCP keepalive timer. Which of the following behaviour/s is/are possible? Statement I: The TCP application server on S can listen on P after reboot. Statement II: If client sends a packet after the server reboot, it will receive the RST segment. In the light of the above statements, choose the correct answer from the options given below. 
Q6.A TCP Server application is programmed to listen on port P on Host S. A TCP Client is connected to the TCP Server over the network. Considered that while TCP Connection is active the server is crashed and rebooted. Assume that the client does not use TCP keepalive timer. Which of the following behaviours is/are possible? Statement I: If client is waiting to receive a packet, it may wait indefinitely Statement II: If the client sends a packet after the server reboot, it will receive the FIN segment In the light of the above statements, choose the correct answer from the options given below
Q7.Consider two hosts P and Q are connected through a router R. The maximum transfer unit (MTU) value of the link between P and R is 1500 bytes and between R and Q is 820 bytes. A TCP segment of size of 1400 bytes is transferred from P to Q through R with IP identification value of 0x1234. Assume that IP header size is 20 bytes. Further the packet is allowed to be fragmented that is Don't Fragment (DF) flag in the IP Header is not set by P. which of the following statement is/are true A. Two fragments are created at R and IP datagram size carrying the second fragment is 620 bytes B. If the second fragment is lost then R resend the fragment with IP Identification value of 0x1234 C. If the second fragment lost then P required to resend the entire TCP segment D. TCP destination port can be determined by analyzing the second fragment only Choose the correct answer from the options given below: 
Q8.A Computer on a 10 Mbps network is regulated by a token bucket. The token bucket is filled at a rate of 2 Mbps. It is initially filled to capacity with 16 megabits. What is the maximum duration for which the computer can transmit at the full 10 Mbps?
Q9.Match List I with List II: List I List II (A) BIND (I) Block the caller until a connection attempt arrives (B) LISTEN (II) Give a local address to a socket (C) ACCEPT (III) Show willingness to accept connections (D) SOCKET (IV) Create a new point Choose the correct answer from the options given below:
Q10.Why TCP traffic is elastic traffic?

More TCP/UDP and Sockets, Congestion Control Questions

Q1.The DMA sends DACK - acknowledgement signal to the peripheral when _______.
Q2.The DoS attack, in which the attacker establishes a large number of half-open or fully open TCP connections at the target host is __________. 
Q3.Which of the following is not a field in TCP header ? 
Q4.Consider two hosts P and Q that are connected through a router R. The maximum transfer unit (MTU) value of the link between P and R is 1500 bytes and between R and Q is 820 bytes. A TCP segment of size 1400 bytes is transferred from P to Q through R with IP identification value of 0x1234. Assume that IP header size is 20 bytes. Further the pcaket is allowed to be fragmented that is Don't fragment (DF) flag in the IP Header is not set by P. Which of the following statement/s is/are true? A. Two fragments are created at R and IP datagram size carrying the second fragment is 620 bytes B. If the second fragment is lost, then R resends the fragment with IP identification value of 0x1234 C. If the second fragment lost, then P requires to resend the entire TCP segment. D. TCP destination port can be determined by analyzing the second fragment only. Choose the correct answer from the options given below: 
Q5.A TCP server application is programmed to listen on port P on host S. A TCP client is connected to the TCP server over the network, Consider that while TCP connection is active the server is crashed and rebooted. Assume that the client does not use TCP keepalive timer. Which of the following behaviour/s is/are possible? Statement I: The TCP application server on S can listen on P after reboot. Statement II: If client sends a packet after the server reboot, it will receive the RST segment. In the light of the above statements, choose the correct answer from the options given below. 
Q6.A TCP Server application is programmed to listen on port P on Host S. A TCP Client is connected to the TCP Server over the network. Considered that while TCP Connection is active the server is crashed and rebooted. Assume that the client does not use TCP keepalive timer. Which of the following behaviours is/are possible? Statement I: If client is waiting to receive a packet, it may wait indefinitely Statement II: If the client sends a packet after the server reboot, it will receive the FIN segment In the light of the above statements, choose the correct answer from the options given below
Q7.Consider two hosts P and Q are connected through a router R. The maximum transfer unit (MTU) value of the link between P and R is 1500 bytes and between R and Q is 820 bytes. A TCP segment of size of 1400 bytes is transferred from P to Q through R with IP identification value of 0x1234. Assume that IP header size is 20 bytes. Further the packet is allowed to be fragmented that is Don't Fragment (DF) flag in the IP Header is not set by P. which of the following statement is/are true A. Two fragments are created at R and IP datagram size carrying the second fragment is 620 bytes B. If the second fragment is lost then R resend the fragment with IP Identification value of 0x1234 C. If the second fragment lost then P required to resend the entire TCP segment D. TCP destination port can be determined by analyzing the second fragment only Choose the correct answer from the options given below: 
Q8.A Computer on a 10 Mbps network is regulated by a token bucket. The token bucket is filled at a rate of 2 Mbps. It is initially filled to capacity with 16 megabits. What is the maximum duration for which the computer can transmit at the full 10 Mbps?
Q9.Which one is a connectionless transport - layer protocol that belongs to the Internet protocol family?
Q10.Match List I with List II: List I List II (A) BIND (I) Block the caller until a connection attempt arrives (B) LISTEN (II) Give a local address to a socket (C) ACCEPT (III) Show willingness to accept connections (D) SOCKET (IV) Create a new point Choose the correct answer from the options given below:
Suggested Test Series
View All >
NIELIT Scientific Assistant Mock Test 2025
83 Total Tests with 3 Free Tests
Start Free Test

More Computer Networks Questions

Q1.The DMA sends DACK - acknowledgement signal to the peripheral when _______.
Q2.How does the SNMP Agent communicate with the SNMP Manager?
Q3.In which topology does a failure in one node NOT affect the entire network?
Q4.What is a key difference between a modem and a network interface card (NIC)?
Q5.Which topology is most suitable for small networks or temporary setups?
Q6.Which SNMP component resides on the network device being monitored?
Q7.Which of the following devices operates at the Data Link Layer of the OSI model?
Q8.Which of the following switching techniques breaks data into small packets that are transmitted independently over the network?
Q9.Which of the following is the main purpose of SNMP?
Q10.In circuit switching, a dedicated communication path is established between the sender and the receiver. This technique is primarily used in which of the following networks?
Exams
Test Series
SuperCoaching
Previous Year Papers
Latest Updates
MCQ Questions
Testbook Products & Resources for Students
Testbook USA
Books
Testbook Edu Solutions Pvt. Ltd.
1st & 2nd Floor, Zion Building,
Plot No. 273, Sector 10, Kharghar,
Navi Mumbai - 410210
[email protected]
Toll Free:1800 833 0800
Office Hours: 10 AM to 7 PM (all 7 days)
Company
About usCareers We are hiringTeach Online on TestbookPartnersMediaSitemap
Products
Test SeriesTestbook PassOnline CoursesOnline VideosPracticeBlogRefer & EarnBooks
Our Apps
Follow us on
Copyright © 2014-2022 Testbook Edu Solutions Pvt. Ltd.: All rights reserved
User PolicyTermsPrivacy
Get Free Access Now
Hot Links: teen patti yes teen patti star teen patti bonus