shut down FTP from IIS 6 after <X> failed login attempts

Posted by Justin C on Server Fault See other posts from Server Fault or by Justin C
Published on 2011-03-17T15:21:00Z Indexed on 2011/03/17 16:12 UTC
Read the original article Hit count: 251

Is there a setting in IIS 6 to turn an FTP site off after a specified number of failed login attempts? It has already been documented on this site that a Windows server sitting on a static IP address can record tens of thousands of failed login attempts a month.

One server I maintain has had tens of thousands of attempts made against the FTP port. I have solid passwords in place, so I am not overly concerned. I rarely have to use the FTP, so for the most part I turn it on and off as I need it. Sometimes though I forget to turn it off when I am done, only to find the next day that my EventLog is full of audit failures.

I would want to set a high number, in case I just messed up the password. Something like if 50 failed login attempts happen, just turn off the FTP site. Then if I need it later I can just start it again.

© Server Fault or respective owner

Related posts about windows-server-2008

Related posts about iis