100s of Audit Failures ( brute force attack )

N

nowva

New member
Joined
Mar 2, 2012
Messages
1
Hi i am very new to this, we have installed a server 2008 with RDP enabled we use the RDP from various places hotels, home, etc. my problem is that everyday i get 100s of attempts to guess the password on my server. i have setup a policy to lock accounts out on 3 bad password trys, i cant setup a firewall rule in the router to only allow from certain ip address because we connect from various places all with different ip addresses ( hotels etc ) is there any thing else i can do yo prevent this, i have searched the web for answers with no real success, please help !!

Thanks in advance Nowva
 
It's people fishing for open ftp accounts so they can upload to your server. I get these all the time. As long as the user accounts have strong passwords you'll be fine. Just make sure you don't actually have any guest or anonymous accounts and if you do make sure they have strong passwords.

Just do as I do and clear the logs. There is no way to stop them unless you unplug from the internet.
 

Similar threads

I
ARR authenticating itself to backend with client certificate on re-routing requests
Replies
0
Views
389
IIS
I
I
ARR as reverse-proxy authenticating itself to backend nodes with a Client Certificate
Replies
0
Views
329
IIS
I
I
ARR: change the hostname on re-routing to backend node the requests
Replies
0
Views
348
IIS
I
I
ARR to change the hostname on re-routing the requests to a backend node
Replies
0
Views
332
IIS
I
B
Windows 10 Windows 10 - Roaming profile operates without logging errors, but fails to synchronize files
Replies
0
Views
244
BBS-MW
B
Back
Top