Re: Hacking attempts?
- From: "Steve" <newsgroup@xxxxxxxxxx>
- Date: Wed, 9 May 2007 14:50:33 -0700
How are you determining that these are RWW login attempts? What is the
actual security event being logged?
"JEC" <thejohncarlson@xxxxxxxxxxxxxxxxxxx> wrote in message
news:9852BEC9-023D-48CE-BE82-5AC1744D3081@xxxxxxxxxxxxxxxx
I am a computer consultant who manages a dozen SBS 2003 networks. About a
week ago, I received my daily report and noticed there had been 1700 failed
login attempts on this server. Upon examining the security logs, I
discovered that there were 9 login attempts a second, trying to login to
the RWW with random user names. It did not appear that any were successful.
Yesterday afternoon, it happened to another one of my customers. 1100
login attempts to the RWW in a very short amount of time. All with random
user names. Again it appeared none were successful.
Has anyone else seen anything like this happening?
My servers are completely patched, and all users have very strong
passwords. Anyone else have any suggestions of steps I should take to
prevent this?
Is there a way to limit the number of login attempts to the RWW?
Any help is greatly appreciated.
.
- Follow-Ups:
- Re: Hacking attempts?
- From: JEC
- Re: Hacking attempts?
- Prev by Date: Re: SBS 2003, Linksys, Remote Access
- Next by Date: Re: Vista Laptop - Busines Upgrade (from Action Pack) SBS2003 cnx
- Previous by thread: Win XP standalones hang 100% CPU after Win update
- Next by thread: Re: Hacking attempts?
- Index(es):
Relevant Pages
|
