Failed Login Attempts-Non Existent Accounts
From: JM_Metal (JMMetal_at_discussions.microsoft.com)
Date: 03/24/05
- Previous message: Tech LA: "Upgrade Certificate Authority"
- Next in thread: Steven L Umbach: "Re: Failed Login Attempts-Non Existent Accounts"
- Reply: Steven L Umbach: "Re: Failed Login Attempts-Non Existent Accounts"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 24 Mar 2005 13:01:03 -0800
Hi All,
We have a W2K3 server getting hit with login attempts to acounts that do not
exist (ex: admin) on the server (brute force DOS attempts maybe). I can deny
access when I see the IP address of the offender, but performance is
degrading during the attack. Is there a util that will report via e-mail or
pager when an login attempt hits a pre-defined threshold, or shut them out
immediatly?
I have policies in place to limit failed login attempts for legit accounts.
I could not find any native windows functions for this. Any help is greatly
apprciated.
Thanks,
Jeff
- Previous message: Tech LA: "Upgrade Certificate Authority"
- Next in thread: Steven L Umbach: "Re: Failed Login Attempts-Non Existent Accounts"
- Reply: Steven L Umbach: "Re: Failed Login Attempts-Non Existent Accounts"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
