G
Guest
I have installed IIS on Windows 2000 and configured and FTP site, which is
needed for a remote consulting company to upload data.
Since opening up FTP on the firewall, I've had repeated login attempts by
unauthorized user(s) who appear to be using some kind of utility to cycle
through passwords. The event viewer is full of "The server was unable to
logon the Windows NT account 'administrator' due to the following error:
Logon failure: unknown user name or bad password" errors.
My question is, does anyone know if there is a way to configure IIS so
that an FTP connection is closed after a set number of failed logon attempts?
It seems crazy to allow the hacker to just keep plugging away. Unfortunately,
the source address keeps changing, so blocking the address at the firewall is
no good. Additionally, the source address for the legitimate company is also
dynamic, so the preferred solution of locking everyone out except for the one
company also not feasible.
needed for a remote consulting company to upload data.
Since opening up FTP on the firewall, I've had repeated login attempts by
unauthorized user(s) who appear to be using some kind of utility to cycle
through passwords. The event viewer is full of "The server was unable to
logon the Windows NT account 'administrator' due to the following error:
Logon failure: unknown user name or bad password" errors.
My question is, does anyone know if there is a way to configure IIS so
that an FTP connection is closed after a set number of failed logon attempts?
It seems crazy to allow the hacker to just keep plugging away. Unfortunately,
the source address keeps changing, so blocking the address at the firewall is
no good. Additionally, the source address for the legitimate company is also
dynamic, so the preferred solution of locking everyone out except for the one
company also not feasible.