Editing Denial-of-service attack (section)

===Reflected attack===
A distributed denial-of-service attack may involve sending forged requests of some type to a very large number of computers that will reply to the requests. Using [[IP address spoofing|Internet Protocol address spoofing]], the source address is set to that of the targeted victim, which means all the replies will go to (and flood) the target. This reflected attack form is sometimes called a '''distributed reflective denial-of-service''' ('''DRDoS''') attack.<ref>{{cite web|url=http://www.internetsociety.org/sites/default/files/01_5.pdf|title=Amplification Hell: Revisiting Network Protocols for DDoS Abuse|first=Christian|last=Rossow|publisher=Internet Society|date=February 2014|access-date=4 February 2016|archive-url=https://web.archive.org/web/20160304015033/http://www.internetsociety.org/sites/default/files/01_5.pdf|archive-date=4 March 2016|url-status=dead}}</ref> [[ICMP echo request]] attacks ([[Smurf attack]]s) can be considered one form of reflected attack, as the flooding hosts send Echo Requests to the broadcast addresses of mis-configured networks, thereby enticing hosts to send Echo Reply packets to the victim. Some early DDoS programs implemented a distributed form of this attack.