Click here to Skip to main content
11,412,111 members (67,874 online)

Welcome to the Lounge

   

For lazing about and discussing anything in a software developer's life that takes your fancy except programming questions.

Technical discussions are encouraged, but click here to ask your programming question.

The Lounge is rated PG. If you're about to post something you wouldn't want your kid sister to read then don't post it. No flame wars, no abusive conduct, no programming questions and please don't post ads.


 
GeneralRe: The Overprotected Kid PinmemberRoger Wright9-Apr-14 13:43 
GeneralRe: The Overprotected Kid PinprofessionalJörgen Andersson9-Apr-14 21:37 
GeneralRe: The Overprotected Kid PinsitebuilderPaul Watson9-Apr-14 14:15 
GeneralRe: The Overprotected Kid PinprofessionalJörgen Andersson9-Apr-14 21:42 
GeneralRe: The Overprotected Kid PinmemberMember 41945939-Apr-14 15:13 
GeneralRe: The Overprotected Kid PinmemberMember 798912210-Apr-14 2:26 
GeneralRe: The Overprotected Kid PinmemberMehGerbil10-Apr-14 3:15 
RantThey just keep on trying Pinmemberkmoorevs9-Apr-14 10:21 
Part of the daily routine (in between lounge sessions and coffee) has been looking in on my ftp server log files. It only takes a passing glance to see that the server has been attacked. I have seen dictionary attacks and brute force attacks on the Administrator account. This last episode which lasted for over almost two hours was the latter variety which always follows this pattern:
Administrator - 1243 attempts
Administrateur - 1243 attempts
Administrador - 1242 attempts
Administratore - 1244 attempts

The server is running Server 2008 and of course IIS 7.5. IIS 8.0 offers a dynamic blocking feature for FTP, but that really is the only compelling reason I have to upgrade to Server 2012. I have searched high and low for a free utility for dynamic blacklisting for the FTP service. I even found source code for a utility that worked with Server 2003 but found that it was not compatible with 2K8. Sigh | :sigh: On to plan B...get a list of all the IP address for a couple of countries and build a utility to import them into IIS. Plan B was a huge success, eliminating most of the attacks. Now, the ones that still get through are more an annoyance than anything. If it was still a major problem, I'd probably look into hosting the FTP service on nix, for which there is an open source lockdown utility available.

Anyway, the point of posting this was that I was thinking that it might be fun to create a sort of Pandora's Box by creating a fake Administrator account with the password of something like 'password'. The ftp account's home folder could contain some fun content. Question: What useful content might you leave for a theif hacker? Laugh | :laugh:
"Go forth into the source" - Neal Morse

GeneralRe: They just keep on trying PinprotectorOriginalGriff9-Apr-14 10:27 
GeneralRe: They just keep on trying PinprofessionalS Houghtelin9-Apr-14 10:31 
GeneralRe: They just keep on trying PinprotectorOriginalGriff9-Apr-14 11:18 
GeneralRe: They just keep on trying PinmemberPIEBALDconsult9-Apr-14 10:32 
GeneralRe: They just keep on trying Pinprofessionalcarlospc197010-Apr-14 4:16 
GeneralRe: They just keep on trying PinmemberPIEBALDconsult9-Apr-14 10:31 
GeneralRe: They just keep on trying [modified] PinprofessionalJörgen Andersson9-Apr-14 10:40 
GeneralRe: They just keep on trying Pinmemberkmoorevs9-Apr-14 11:07 
GeneralRe: They just keep on trying PinprofessionalJörgen Andersson9-Apr-14 11:19 
GeneralRe: They just keep on trying PinmemberAshish Tyagi 409-Apr-14 22:05 
GeneralRe: They just keep on trying PinmemberSimon O'Riordan from UK9-Apr-14 21:46 
GeneralRe: They just keep on trying PinmemberSortaCore10-Apr-14 0:56 
GeneralRe: They just keep on trying Pinmemberoliver.stockleyOpenGI10-Apr-14 2:32 
GeneralRe: They just keep on trying Pinmemberkmoorevs10-Apr-14 4:55 
GeneralRe: They just keep on trying PinmentorEspen Harlinn10-Apr-14 5:20 
GeneralRe: They just keep on trying PinmemberKellyKimble10-Apr-14 2:44 
GeneralRe: They just keep on trying Pinmemberpatbob10-Apr-14 6:55 

General General    News News    Suggestion Suggestion    Question Question    Bug Bug    Answer Answer    Joke Joke    Rant Rant    Admin Admin   

Use Ctrl+Left/Right to switch messages, Ctrl+Up/Down to switch threads, Ctrl+Shift+Left/Right to switch pages.


Advertise | Privacy | Mobile
Web04 | 2.8.150414.5 | Last Updated 26 Apr 2015
Copyright © CodeProject, 1999-2015
All Rights Reserved. Terms of Service
Layout: fixed | fluid