> Isn’t any kind of attack where a little bit of effort from the attacker causes a lot of work for the victim an amplification attack?
That is technically any HTTP request that requires processing to satisfy. For example if I find a page on your site that executes an expensive database query.
Amplification attacks are generally defined as packets that can be sent with a spoofed source address that result in a larger number of packets being returned to the spoofed victim.
That is technically any HTTP request that requires processing to satisfy. For example if I find a page on your site that executes an expensive database query.
Amplification attacks are generally defined as packets that can be sent with a spoofed source address that result in a larger number of packets being returned to the spoofed victim.