How to defend against a sync flood attack

Nick Lewis explains how to protect your organization from sync flood attacks.

Nick Lewis

What are some ways to protect against sync flood attacks?

A Sync flood attack, better known as a SYN attack, has its origins as one of the original types of distributed denial-of-service (DDoS) attacks and have not been significant threats to enterprises today. Most CERT advice from 1996 still applies to modern systems, but obviously many improvements have been made in the last 15 years.

A SYN attack is one where an attacker makes an initial connection to a victim computer and the victim computer waits for the completion of the connection. The attack is exploiting part of the three-way handshake in TCP for establishing reliable connections. When the initial connection is left open, it consumes resources on the victim computer until it runs out of connections or has other issues.

To protect against sync flood attacks, you have several options. The attacks can be detected by standard intrusion detection systems (IDS) and could also be blocked or minimized by built-in features in firewalls and other devices. Further protections could include lowering timeouts for how long a system waits for another system to complete the three-way handshake or having your ISP block the attacks.

This was last published in May 2010

How to defend against a sync flood attack

Nick Lewis explains how to protect your organization from sync flood attacks.

Dig Deeper on DDoS attack detection and prevention

7 TCP/IP vulnerabilities and how to prevent them

denial-of-service attack

How hackers use idle scans in port scan attacks

Europe in the firing line of evolving DDoS attacks

Related Q&A from Nick Lewis

What are the benefits and challenges of cloud penetration testing?

What are the best criteria to use to evaluate cloud service providers?

What is the best way to write a cloud security policy?

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchCloudSecurity

Cloud security quiz: Application security best practices

The importance of security, data encryption for cloud

Cloud workload protection platform security benefits, features

SearchNetworking

5G for enterprises requires other tech to reap full benefits

What IT pros can expect from 5G core network architecture

5 edge computing basics you need to know

SearchCIO

How to hire a data scientist with AI skills during pandemic

Use of virtual digital assistants for enterprise applications

Why ISO 56000 Innovation Management matters to CIOs

SearchEnterpriseDesktop

Microsoft puts Universal Print in preview

How to fix a Windows 10 boot loop

Learn native Windows 10 virtual memory management methods

SearchCloudComputing

4 tips to pick the right cloud database service

Google, Microsoft add to their cloud migration toolkits

Public cloud vs. private cloud: Key benefits and differences

ComputerWeekly.com

Samsung and Microsoft extend Windows and Office 365 integration

Planning system to get digital overhaul

Coronavirus: IT contractors cite lack of government support during Covid-19 as source of stress