Sacrificial Host

What Does Sacrificial Host Mean?

A sacrificial host is a computer server that is intentionally positioned outside an organization’s Internet firewall in order to provide a service that could otherwise compromise the local network’s security if placed within the firewall.

Advertisements

Sacrificial hosts also are associated with bastion hosts, as they are implemented in the same way. Bastion hosts are designed specifically for attacks from outside intruders.

Techopedia Explains Sacrificial Host

A sacrificial host can be considered more like bait than something that actually performs an important role within a network. It is positioned just like a bastion host in the network topology. However, with multiple security protocols and software, it is simply there to lure in an attacker, rather than trying to withstand attacks. The sacrificial host serves to delay and even try to track and obtain the attacker’s identity. In short, a sacrificial host is simply a type of bastion host used as an active bait to lure potential attackers and learn, or possibly track and find, them.

For example, an FTP server is a typical bastion host that can be used as a sacrificial host. This occurs when network security personnel, such as a system administrator, finds that a system is under constant attack. The sacrificial host is set up to bait the intruder into accessing the sacrificial host. Once accessed, the host can provide a time delay, allowing the administrator enough time to get information about the intruder’s identity for possible capture. Other servers that can be made into sacrificial hosts are web, mail and DNS servers.

Advertisements

Related Terms

Latest Cybersecurity Terms

Related Reading

Margaret Rouse

Margaret Rouse is an award-winning technical writer and teacher known for her ability to explain complex technical subjects to a non-technical, business audience. Over the past twenty years her explanations have appeared on TechTarget websites and she's been cited as an authority in articles by the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine and Discovery Magazine.Margaret's idea of a fun day is helping IT and business professionals learn to speak each other’s highly specialized languages. If you have a suggestion for a new definition or how to improve a technical explanation, please email Margaret or contact her…