Hey all,
I'm running a webserver on Windows Server 2003, (no firewall yet, but looking at them). Problem is, I get hit regularly with people trying to login with the default Administrator account (which I've changed to another name) and other names (spanish in origion, but they don't exist on the server).
While none have gotten in, is there a way to block these attacks? I understand that it's harming the attacker more than I when they run scans and don't get any results, but it is also using resources on my server (to try and verify the accounts), not to mention the log files filing quickly and having to backup and empty them almost daily.
Any advice would be appreciated. If you need more info, please ask.
Running Windows Server 2003
IIS 6
~60 different sites with different IP's
Thanks for the help.
I'm running a webserver on Windows Server 2003, (no firewall yet, but looking at them). Problem is, I get hit regularly with people trying to login with the default Administrator account (which I've changed to another name) and other names (spanish in origion, but they don't exist on the server).
While none have gotten in, is there a way to block these attacks? I understand that it's harming the attacker more than I when they run scans and don't get any results, but it is also using resources on my server (to try and verify the accounts), not to mention the log files filing quickly and having to backup and empty them almost daily.
Any advice would be appreciated. If you need more info, please ask.
Running Windows Server 2003
IIS 6
~60 different sites with different IP's
Thanks for the help.
![[cheers]](/data/assets/smilies/cheers.gif "[cheers] [cheers]")