Tarpits as a DefenseTarpitting describes a defensive technique used to defend servers under attack. WanderWare implements a form of tarpitting to conserve resources if it recognises a series of connections as being incorrect. In these circumstances, suspect connections are simply dropped without reply. This serves to dramatically reduce the speed and effectiveness of the attack because the attacker(s) must wait for network replies which will never arrive. This serves to conserve both bandwidth and system resources for legitimate connections. It is especially suited to defending the server from denial of service attacks. Having such a defense at the ready could make the difference between keeping a www service available and apologising for service outages. Additionally, expensive bandwidth spikes that could cripple the financial stability of a service are prevented from occurring.
Self Tuning Memory Management Session Bandwidth, Connection and Time Limits table of contents full printable document |
copyright(c) 2003
all rights reserved
sitemap
design - eggworx.com