<qbern...@hotmail.com.discuss> wrote:
> I think the best is to rename the administrator account. of coz this won't=

> prevent the attack as the attackers will keep trying to send all sort of
> usernames to gain access.
>
> You can implement account locked out policy, but that may really cause the=

> real account being locked out.
>
> if you know where the client connections, then you can use IP restriction =
to
> block unknown addressess access. however if this is public then this optio=
n
> is not feasible.
>
> alternately you can try this. some folks wrote the scripts for auto bannin=
g
> the bad ip address.http://msmvps.com/blogs/bernard/archive/2007/01/11/how-=
to-prevent-iis...
>
> --
> Regards,
> Bernard Cheahhttp://www.iis.net/http://msmvps.com/blogs/bernard/
>
> <zabutima...@gmail.com> wrote in message
>
> news:57818c3e-ea27-4199-993d-57a98d33583e@x35g2000hsb.googlegroups.com...
>
>
>
> > Hi,
>
> > I have FTP server and I see that "bad guys" all the time trying to
> > break it with "Administrator" user.
> > What are recommended options to secure it (disable Administrator
> > account is not acceptable)?
>
> > Is there a way completely prevent for "Administrator" account to login
> > through FTP?
> > Or at least maybe there is any security policy that can configure a
> > kind of pause (15-20 min) between login failures retries?
>
> > Thanks,
> > Maxim.- Hide quoted text -
>
> - Show quoted text -

<zabutimaxim@gmail.com> wrote in message
news:57818c3e-ea27-4199-993d-57a98d33583e@x35g2000hsb.googlegroups.com...
> Hi,
>
> I have FTP server and I see that "bad guys" all the time trying to
> break it with "Administrator" user.
> What are recommended options to secure it (disable Administrator
> account is not acceptable)?
>
> Is there a way completely prevent for "Administrator" account to login
> through FTP?
> Or at least maybe there is any security policy that can configure a
> kind of pause (15-20 min) between login failures retries?
>
> Thanks,
> Maxim.