How to defend against a sync flood attack

Nick Lewis explains how to protect your organization from sync flood attacks.

Nick Lewis

What are some ways to protect against sync flood attacks?

A Sync flood attack, better known as a SYN attack, has its origins as one of the original types of distributed denial-of-service (DDoS) attacks and have not been significant threats to enterprises today. Most CERT advice from 1996 still applies to modern systems, but obviously many improvements have been made in the last 15 years.

A SYN attack is one where an attacker makes an initial connection to a victim computer and the victim computer waits for the completion of the connection. The attack is exploiting part of the three-way handshake in TCP for establishing reliable connections. When the initial connection is left open, it consumes resources on the victim computer until it runs out of connections or has other issues.

To protect against sync flood attacks, you have several options. The attacks can be detected by standard intrusion detection systems (IDS) and could also be blocked or minimized by built-in features in firewalls and other devices. Further protections could include lowering timeouts for how long a system waits for another system to complete the three-way handshake or having your ISP block the attacks.

This was last published in May 2010

Dig Deeper on DDoS attack detection and prevention

All
News
Get Started
Evaluate
Manage
Problem Solve

Related Q&A from Nick Lewis

What are the top enterprise email security best practices?

Enterprises have many options for email security best practices, ranging from deploying email security protocols to educating end users on the ... Continue Reading

What is a port scan attack?

Cyberattacks often begin with a port scan attack, which attackers use to find exploitable vulnerabilities on targeted systems. Learn how they work ... Continue Reading

How can I detect fileless malware attacks?

Monitoring process memory is one way to combat fileless malware attacks. Here's what you can do to protect your network against these campaigns. Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Information Security experts

View all Information Security questions and answers

SearchCloudSecurity

What you need to know for effective zero-trust in the cloud

A zero-trust security strategy means something completely different in cloud environments than it does on premises. Learn how to ...

Protect your enterprise against shadow IT in the cloud

More technologies than ever are available to people now that the cloud is so pervasive, and, as a result, shadow IT has become a ...

Container security awareness, planning required as threats persist

As container security vulnerabilities continue to emerge, companies should plan ahead and have strategies ready to defend against...

SearchNetworking

Review the benefits of network performance monitoring strategies

This compilation delves into five points regarding the benefits of network performance monitoring, as well as various monitoring ...

IT directors share SD-WAN advantages and advice

Enhanced access to internet applications, streamlined network connectivity and faster deployments at new offices are just some ...

IoT device monitoring added to Nyansa Voyance

Nyansa has added IoT traffic analytics to its network monitoring software. The latest version of Nyansa Voyance monitors the ...

SearchCIO

Problems with blockchain and how they're being solved

Do you know about the blockchain trilemma? David Petersson looks at some of the problems with blockchain and how cutting-edge ...

High-performance computing use cases and benefits in business

High-performance computing has moved from the rarified realm of research and government and into the enterprise. Learn how ...

How to achieve digital transformation -- with CIO as linchpin

Companies achieve digital transformation along two dimensions -- through operational efficiency and offering a great customer ...

SearchEnterpriseDesktop

Latest Windows 10 update issues cause more freezing problems

This news brief details the additional issues around the April 9 Windows 10 update as well as provides a look at Microsoft's Edge...

4 use cases for Macs in the enterprise

Microsoft Windows is typically regarded as the go-to enterprise desktop, but IT shouldn't rule out macOS. Consider four reasons ...

G Suite update aimed squarely at the enterprise

Google aims to make G Suite more secure and easier to use in its latest update. One expert sees the added capabilities as Google ...

SearchCloudComputing

Steep Google Anthos pricing geared toward large enterprises

Google Anthos is the company's multi-cloud management play, but customers and prospects should mull the full picture when it ...

7 cloud computing job roles to advance your career

The cloud rapidly evolves, so cloud jobs must adapt accordingly. Job openings are going fast, so review these positions and their...

Latest hybrid cloud services put public cloud into the data center

AWS, Google and Microsoft provide businesses with more deployment choices with cloud-extension services. See how these offerings ...

ComputerWeekly.com

Related Resources

Dig Deeper on DDoS attack detection and prevention

Related Q&A from Nick Lewis

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.