Re: Security issue
- From: "Dave Nickason [SBS MVP]" <gwdibble@xxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 14 Aug 2006 15:37:56 -0400
I've never tried this so YMMV. By the way, if anyone has, it'd be great to
hear your results.
How to configure remote access client account lockout in Windows Server 2003
http://support.microsoft.com/default.aspx?scid=kb;en-us;816118
"Damaru" <Damaru@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:E6B649BE-38C3-4C9F-A1E0-49A2D6FF3AEB@xxxxxxxxxxxxxxxx
Hi there,
I pasted a event record at the end of this message, in short is says that
someone tryed to login with administrator right 9,798 times and got
rejected.
I guess I pass the test as far as password strenght goes. The only thing
is
that I feel that there should be a rule to block such a thing, like if I
try
10 time a username and password (Mostly if it's administrator) then the
remote access should be blocked. Is there somewhere I can create that rule
??
Thank you
Source Event ID Last Occurrence Total Occurrences
Security 529 8/13/2006 3:47 PM 9,798 *
Logon Failure:
Reason: Unknown user name or bad password
User Name: Administrator
Domain: prananet
Logon Type: 8
Logon Process: IIS
Authentication Package: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
Workstation Name: PRANA
Caller User Name: PRANA$
Caller Domain: prananet
Caller Logon ID: (0x0,0x3E7)
Caller Process ID: 1496
Transited Services: -
Source Network Address: -
Source Port: -
.
- Prev by Date: Re: HrESEBackupSetup() error in Backup
- Next by Date: Re: Client Firewall and Outlook
- Previous by thread: Re: HrESEBackupSetup() error in Backup
- Next by thread: Made a big mistake in setting up for Exchange
- Index(es):
Relevant Pages
|
