This paper considers the phenomenon where a single probe to a target generates multiple, sometimes numerous, packets in response -- which we term "blowback". Understanding blowback is important because attackers can leverage it to launch amplified denial of service attacks by redirecting blowback towards a victim. Blowback also has serious implications for Internet researchers since their experimental setups must cope with bursts of blowback traffic. We find that tens of thousands, and in some protocols, hundreds of thousands, of hosts generate blowback, with orders of magnitude amplification on average. In fact, some prolific blowback generators produce millions of response packets in the aftermath of a single probe. We also find that blowback generators are fairly stable over periods of weeks, so once identified, many of these hosts can be exploited by attackers for a long time.

翻译：本文研究了一种现象：对某个目标的单次探测会引发多个（有时是大量的）数据包响应——我们将其称为“回弹”。理解回弹至关重要，因为攻击者可借此将回弹流量重定向至受害者，从而发起放大的拒绝服务攻击。此外，回弹对互联网研究者也有严重影响，因为他们的实验设置必须应对回弹流量的突发冲击。我们发现，数以万计（在某些协议中甚至高达数十万）的主机都会产生回弹，其平均放大倍数达到数量级。事实上，某些高产生成器在一次探测后会生成数百万个响应数据包。我们还发现，回弹生成器在数周内保持相对稳定，因此一旦被识别，攻击者便可在较长时间内利用这些主机。