Re: FPT security
- From: "Bernard Cheah [MVP]" <qbernard@xxxxxxxxxxxxxxxxxxx>
- Date: Thu, 11 Jan 2007 16:21:14 +0800
Not IIS FTP feature, you can try this.
http://msmvps.com/blogs/bernard/archive/2007/01/11/how-to-prevent-iis-ftp-attacks.aspx
--
Regards,
Bernard Cheah
http://www.iis.net/
http://www.iis-resources.com/
http://msmvps.com/blogs/bernard/
"Rusty" <Rusty@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:12ADC2CF-95EF-4CFA-9CCE-4196A67AC020@xxxxxxxxxxxxxxxx
I've noticed recently that someone (in china) has been using a brute force
program to try and guess their way onto my FTP server. They have not
been
successful as of yet, but I noticed that they tried around 30,000 times in
one day to guess the administrator password. You can imagine this is a
strain I don't want on my server.
That said, is there a way to have IIS automatically block a person after a
specific number of failed login attempts? I don't care if the block was
temporary or permanant. Nor if its by IP address or user. I just want to
know if that's possible.
Are there any other security tips you'd recommend?
Thanks,
Rusty
.
- Prev by Date: Re: FTP will not accept password from a batch file
- Next by Date: Re: FTP on SBS2003 R2/IIS V6.0/ISA Server 2004
- Previous by thread: Non-technical staff to download website pages securely
- Next by thread: Re: FPT security
- Index(es):
