limit FTP connection attempts in IIS 5?

Discussion in 'OT Technology' started by AVengeance, Jan 25, 2006.

  1. AVengeance

    AVengeance Active Member

    Joined:
    Aug 17, 2004
    Messages:
    22,615
    Likes Received:
    0
    Location:
    In my bunker Position:Hunkering
    Hey all,

    I'm noticing an increasing number of brute-force attacks on our FTP server. We use complex passwords, uncommon login names (no "ADMIN" or "TEST" usernames, etc.), but there are alot of attempts at loggin in with common names.

    Can I limit the number of times a given IP address tries and fails to log on via FTP?

    Thx.

    The machine is Win2k Server, and we're running IIS 5
     
  2. malken00

    malken00 I'm here. Sorta.

    Joined:
    Jun 13, 2005
    Messages:
    107
    Likes Received:
    0
    Microsoft's built in FTP server doesn't have much functionality for attack control. It is a pretty basic program. If you would like that functionality, I would look into a more advanced FTP Server.
     
  3. chips

    chips ...

    Joined:
    May 2, 2004
    Messages:
    3,755
    Likes Received:
    0
    Location:
    Phoenix, AZ
    i think you can under web connections under the website you want to limit it on and performace.


    2k may not have that, I looked on my 03 box for that. dont have a 2k laying around
     
  4. AVengeance

    AVengeance Active Member

    Joined:
    Aug 17, 2004
    Messages:
    22,615
    Likes Received:
    0
    Location:
    In my bunker Position:Hunkering
    Is there a program that I could have running that could just keep reading the log file? I do have failed login attempts logged, so I can see hack attempts. If I could use or create another program that could read the log file, I could at least send me an email, or perform some other action.
     

Share This Page