Tarpits as a Defense

Tarpitting describes a defensive technique used to defend servers under attack.

WanderWare implements a form of tarpitting to conserve resources if it recognises a series of connections as being incorrect. In these circumstances, suspect connections are simply dropped without reply. This serves to dramatically reduce the speed and effectiveness of the attack because the attacker(s) must wait for network replies which will never arrive. This serves to conserve both bandwidth and system resources for legitimate connections. It is especially suited to defending the server from denial of service attacks.

Having such a defense at the ready could make the difference between keeping a www service available and apologising for service outages. Additionally, expensive bandwidth spikes that could cripple the financial stability of a service are prevented from occurring.


Self Tuning Memory Management
Session Bandwidth, Connection and Time Limits
table of contents
full printable document





password protection ...
... industrial strength
distributed password protection
iis basic authentication
iis digest authentication

copyright(c) 2003
all rights reserved

design - eggworx.com