M
Michael Salmons
Hello,
I'm interested in shutting down someone who is attempting a lot of
unauthorized access to our servers. I've tried net viewing them at
times when they are active and it always comes back as unknown.
Perhaps they have shut down all connections with a local firewall? Or
perhaps a scanning program they are using is spoofing the information.
Either way, the only way I can think of to get a lead is to log the IP
address of machines from which connection attempts, successful or
unsuccessful, are made. Does anyone know of a script or program that
achieves this?
Thanks,
Michael Salmons
(e-mail address removed)
I'm interested in shutting down someone who is attempting a lot of
unauthorized access to our servers. I've tried net viewing them at
times when they are active and it always comes back as unknown.
Perhaps they have shut down all connections with a local firewall? Or
perhaps a scanning program they are using is spoofing the information.
Either way, the only way I can think of to get a lead is to log the IP
address of machines from which connection attempts, successful or
unsuccessful, are made. Does anyone know of a script or program that
achieves this?
Thanks,
Michael Salmons
(e-mail address removed)