amanzoor
asked on
Which DNS authority to report to
Hi there,
Running server 2008 domain. Running TS Webaccess so that my users can work on a couple of databases. A couple of users try to abuse the system. I know the IP addresses. What should be done at this point. What is the best option for me. Which DNS authority to report to?
Imagining that thir ISP is doing nothing. Any help in this regard would be appreciated.
Thanks
Running server 2008 domain. Running TS Webaccess so that my users can work on a couple of databases. A couple of users try to abuse the system. I know the IP addresses. What should be done at this point. What is the best option for me. Which DNS authority to report to?
Imagining that thir ISP is doing nothing. Any help in this regard would be appreciated.
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks Guys:
I really appreciate your time, I like the idea of blocking onto the firewall and using ssl.
THanks once again.
I really appreciate your time, I like the idea of blocking onto the firewall and using ssl.
THanks once again.
move TS to a port above 5000 - most attackers try only "common" ports, and this will reduce your attack profile almost instantly.
make sure you are using ssl certificates for your RDP - again, makes it harder for the attacker, and many will either move on, or not recognise the TS is there.