Re: can Windows 2000 Server lbe configured to og IP address in the event log?
- From: Bill <b@xxxxx>
- Date: Mon, 29 Jan 2007 14:36:15 GMT
Thanks for the response. I'm curious why a little chuck of code (to add the
connecting IP to the log) wasn't passed along in Windows 2000 Server update by
Microsoft.
On Sun, 28 Jan 2007 21:03:05 -0600, "Steven L Umbach"
<n9rou@xxxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
As far as I know there is no way to do this. What you may want to try is to
use a personal firewall that has good logging - something like Sygate [if
you still can find it]. You could even configure the firewall to not do any
filtering but just do the logging. I the attempts are coming from outside
your network check your firewall logs and correlate firewall log entries
with the timestamps of the logon failures and of course have the firewall
and computer to be in synch time wise to make it easier.
Steve
http://www.tucows.com/preview/213160
"Bill" <b@xxxxx> wrote in message
news:1runr2926lnes3585s8smt5pv31qmnt4n8@xxxxxxxxxx
Windows server experts:
I know that Windows 2003 Server will log the IP of a user trying to logon
with
a phony username or bad password. But, 2000 Server does not. Is there any
way
to get 2000 to do this?
II am trying to identify a hacked that repeatedly tries to logon.
TIA
Bill
.
- Follow-Ups:
- References:
- Prev by Date: Re: share Permissions problem
- Next by Date: User can't access the server
- Previous by thread: Re: can Windows 2000 Server lbe configured to og IP address in the event log?
- Next by thread: Re: can Windows 2000 Server lbe configured to og IP address in the event log?
- Index(es):
Relevant Pages
|
|
