I am in the process of installing an FTP server on a Windows 2000 machine. this machine is in a DMZ behind ASL 2.015 and I have been testing portscanning attacks and password hacks etc.
ASL has stood up to the attacks like a champion but the 2000 machine behind the firewall didn't perform so well - after about 1 hour of brute force password attacks I got into it with read/write/exec rights (NOT GOOD ). I was logging in with 10 logins per second and eventually got one right.
What I was wondering is how one can setup (either on Astaro or more likely the FTP server) a way of limiting bad login attempts either on a username or, even better, an IP address. Is there a piece of software available for Windows 2000 IIS that can give me this functionality?
Otherwise, what is another way of stopping brute force attacks?
Thanks for your help... GREAT PRODUCT ! [;)] !
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
