fragmentation
Click on the red underlined text to get to the source
... attackers have begun to exploit the more
subtle aspects of the Internet Protocol; fragmentation of IP packets,
an important feature in heterogeneous internetworks, poses several
...
... routers are designed with a user interface that
hides packet fragmentation from the administrator; conceptually, an
IP ...
...
The Internet Protocol allows fragmentation of packets into pieces so
small as to be impractical because of data and computational
overhead ...
... sneak otherwise disallowed packets past the filter. In normal
practice, such pathalogical fragmentation is never used, so it is
safe to drop these fragments without danger of preventing normal
...
... internet module must be able to forward a datagram of 68
octets without further fragmentation. This is because an internet
header ...
... As discussed in the section on overlapping fragments below,
however, this test does not block all fragmentation attacks,
and is in fact unnecessary when a more general technique is
...