Results 1 to 2 of 2
Thread: Brute Force Attack?
2005-08-04, 12:35 #1
- Join Date
- Apr 2002
- Thanked 0 Times in 0 Posts
Brute Force Attack?
I have a number of Windows 2000 servers in an NT4 domain.
This morning I was informed that another server (same company, different domain, another country) was subject to a brute force attack from one of my Windows 2000 servers and that I should investigate the issue.
I know various ways to harden a server against attack and I've done some research on it but I am unable to establish a method for figuring if or how a server can carry such an attack or exactly what to do to prevent it doing so.
How do I tell if one of my servers is PERFORMING a brute force attack on another system? Maybe it has malicious software on it, maybe it is just doing something else?
2005-08-04, 13:22 #2
- Join Date
- Jan 2001
- Quedgeley, Gloucester, England
- Thanked 1 Time in 1 Post
Re: Brute Force Attack?
Presumably you have swept the allegedly-offending server for spyware and viruses?
I cannot imagine that your company's hardware firewall is allowing YOU to mount a brute force attack on another domain!
Have they given you any details of what this brute force attack is supposed to consist of? Traces on ports, etc? Have they heard of spoofing?!
John<font face="Script MT Bold"><font color=blue><big><big>John</big></big></font color=blue></font face=script>
Ita, esto, quidcumque...