Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 448
  • Last Modified:

How to stop spam login attempts on website.

HI,
We are getting some spam login attempts on my website for example User Name :“ ssff989879755@gmail.com” Password : “llkkiuuu” our server is not letting it go because of wrong user Name and password it is not exist in my database ,  but it is generating  useless traffic on application server  I want to stop this traffic reaching on application server  please give me suggestion how can I  stop them, my main goal is safe my application server’s resource .

Environment
OS =  Windows 2003
Webserver : IIS
Application Server : Weblogic 10
0
xeondxb
Asked:
xeondxb
  • 2
  • 2
3 Solutions
 
ienaxxxCommented:
Filter max tries by source IP address and constitute a Greylist and a Blacklist.

HTH,
bye
0
 
xeondxbAuthor Commented:
@ienaxxx

thanks for reply for blocking ip means if that software doing ip spoofing and using  ip which  belong to good and big organization it means i'll stop whole organization traffic
0
 
ienaxxxCommented:
IP SPOOFING ON THE INTERNET?
If they're able to do that, let them enter:
Better to keep them as friends than enemies.


Anyway: Greylisting is the way.
You add IPs in a blacklist temporarily.

Anyway2: What about let the police know the source IPs from where you're attacked? Perhaps it's a botnet, perhaps a simple stupid single host. Did you check?

HTH
Bye
0
 
xeondxbAuthor Commented:
@ienaxxx:

how can i block temporary IP in IIS i don't have any hardware access
0

Featured Post

The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now