P29 SYN cookies were discussed in Section 3.5.6.
a. Why is it necessary for the server to use a special initial sequence number in SYNACK?
b. Suppose an attacker knows that a target host uses SYN cookies. Can the attacker create half-open or fully open connections by simply sending an ACK packet to the target? Why or why not?
c. Suppose an attacker collects large amount of initial sequence numbers sent by the server. Can the attacker cause the server to create many fully open connections by sending ACKs with those initial sequence numbers? Why?
Text book-----Jim Kurose and Keith Ross,"Computer Networking - A Top-Down Approach", Addison-Wesley, Seventh Edition, 2017. ISBN-13: 978-0-13-359414-0