Advertisement

08.29.2007 at 08:03AM PDT, ID: 22794538
[x]
Attachment Details

FTP logs show numerous failed login attempts

Asked by fletchwj in Microsoft IIS Web Server, Miscellaneous Security, Windows 2003 Server

Tags: ftp, login, show, attempt, fail

Does anyone know of a way to automatically prevent further access to an FTP service from any IP address that has failed to login correctly more than a certain number of times in a row?

In the past, I've set up security in IIS on this Windows 2003 Server to prevent all access to FTP except for the list I've provided, but that method is not practical in this case.

I've also tried to maintain a list of IP addresses that are NOT allowed access using the logs in \system32\LogFiles\MSFTPSVC1, but many new addresses crop up every day and maintenance is a pain.

I was hoping someone knew of some kind of monitoring device or something that could detect numerous failed attempts within a certain amount of time, then prevent that IP from any further access.Start Free Trial
[+][-]08.29.2007 at 08:32AM PDT, ID: 19792271

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: Microsoft IIS Web Server, Miscellaneous Security, Windows 2003 Server
Tags: ftp, login, show, attempt, fail
Sign Up Now!
Solution Provided By: lazarus98
Participating Experts: 1
Solution Grade: A
 
 
[+][-]08.29.2007 at 09:00AM PDT, ID: 19792596

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]08.29.2007 at 09:14AM PDT, ID: 19792724

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_1_20070628