How to defend against a sync flood attack

Nick Lewis explains how to protect your organization from sync flood attacks.

Nick Lewis
Published: 24 May 2010

What are some ways to protect against sync flood attacks?

A Sync flood attack, better known as a SYN attack, has its origins as one of the original types of distributed denial-of-service (DDoS) attacks and have not been significant threats to enterprises today. Most CERT advice from 1996 still applies to modern systems, but obviously many improvements have been made in the last 15 years.

A SYN attack is one where an attacker makes an initial connection to a victim computer and the victim computer waits for the completion of the connection. The attack is exploiting part of the three-way handshake in TCP for establishing reliable connections. When the initial connection is left open, it consumes resources on the victim computer until it runs out of connections or has other issues.

To protect against sync flood attacks, you have several options. The attacks can be detected by standard intrusion detection systems (IDS) and could also be blocked or minimized by built-in features in firewalls and other devices. Further protections could include lowering timeouts for how long a system waits for another system to complete the three-way handshake or having your ISP block the attacks.

Dig Deeper on DDoS attack detection and prevention

All
News
Get Started
Evaluate
Manage
Problem Solve

Related Q&A from Nick Lewis

What is the best way to write a cloud security policy?

Enterprises new to the cloud can write new security policies from scratch, but others with broad cloud usage may need an update. Consider these ... Continue Reading

What do the top cloud security providers offer in 2019?

Cloud security providers need to play catch-up with the evolving advancements in cloud technology. Find out what the top CSPs offer today and which ... Continue Reading

What are the top cloud security certifications for 2019?

Cloud security certifications serve to bolster security professionals' resumes and boost value to employers. Learn about the top certifications ... Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Information Security experts

View all Information Security questions and answers

SearchCloudSecurity

How to conduct proper AWS vulnerability scanning in 3 steps

Cloud vulnerability management can be complicated. Learn how to perform AWS vulnerability scans under the shared responsibility ...

Research shows cloud security vulnerabilities grow

Recent research shows the number of cloud security incidents are growing. Here are the biggest contributors to the complicated ...

4 necessary steps to evaluate public cloud security

The Capital One hack raised questions about public cloud security. Take these four steps to ensure your data is protected.

SearchNetworking

Cloud-native deployment isn't for every application

In this roundup of networking blogs, analysts evaluate cloud-native deployments, the increasing value of Wi-Fi and the emergence ...

IT favors open source networking over Cisco ACI, VMware NSX

Companies are turning to open source network automation tools as less expensive, good-enough alternatives to Cisco ACI and VMware...

What are network firewalls? Test your network security IQ

Network firewalls have been an essential part of network security since the internet began. This quiz covers what network ...

SearchCIO

How to deal with the lack of chatbot standards

A lack of standards around chatbot development has created a situation in which enterprises are building and rebuilding bots. But...

RPA journey: Schneider Electric's global plan taps Blue Prism, UiPath

Schneider Electric, a multinational energy management company, has embarked on a robotic process automation journey, establishing...

Blurring the lines between RPA platforms and APIs

RPA is quickly making itself known in the automation market, but the real game changer is utilizing the technology in an API-rich...

SearchEnterpriseDesktop

New Windows vulnerabilities reveal there is no rest for weary IT

The two latest Windows security vulnerabilities reiterate the importance for IT admins to stay diligent when updating and ...

7 questions to ensure UEM supports a Windows 10 migration

The right UEM platform will go a long way in streamlining a Windows 10 migration. Ask these questions to ensure your ...

How to automate Windows 10 imaging with Packer

Windows 10 imaging isn't easy, especially with Microsoft's continuous release model. Here's how IT can use Packer and MDT to ...

SearchCloudComputing

Public cloud services grow HPC market, but work remains

HPC applications need a lot of resources, but not all enterprises can meet those requirements. However, new cloud services are ...

Virtual Instruments expands portfolio with Metricly acquisition

Virtual Instruments added more offerings to its cloud migration and hybrid infrastructure management portfolio with an ...

Potential VMware-Pivotal deal raises opportunities, challenges

VMware is in talks to buy Pivotal for about $1.45 billion in a move that could benefit both companies but also require some ...

ComputerWeekly.com

Even fintech startups battling to meet cyber security challenges

A study shows that most fintech startups, like most banks, are failing to address vulnerabilities in the web and mobile ...

Best of VMworld Europe 2019 Awards nominations open until 11 October

Read the criteria for the Best of VMworld Europe User Awards and find out how to submit your nomination for this year’s awards

Myriota and Optus sign deal on IoT connectivity

Myriota and Optus Business will leverage each other’s connectivity and network footprint to help Australia’s industries connect ...

Dig Deeper on DDoS attack detection and prevention

Related Q&A from Nick Lewis

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.