Overview
JSCAPE MFT Server provides connection settings that help thwart brute force password attacks. It can be configured to block further insistent attacks coming from the same IP address and to disable the user account being used in the attack.
Configure IP Address Blocking and Account Disabling Due to Failed Login Attempts
Open JSCAPE MFT Server Manager and click on “Connections” under the domain you want to manage.
Disable account after X invalid password attempts in Y min for Z min – Disables an account for a certain period of time when the number of failed login attempts within a given period of time is reached.
Block IP after X invalid password attempts in Y min for Z min – Blocks an IP address from further access for a certain period of time when then number of failed login attempts coming from that IP address within a given period of time is reached.
Summary
Private servers perhaps like most JSCAPE MFT Server installations more often than not are put online over the Internet and even though they are meant to be accessed by private users authorized to use them they are nonetheless exposed to anyone connected to the Internet. Such exposure could bring with it attempts at unauthorized access. Most of these attempts would be crude, brute force attempts at guessing user passwords. The JSCAPE MFT Server connection settings makes it easy to thwart such insistent, unauthorized attempts but at the same time leave room for valid users experiencing temporary mental lapses during login attempts to retry.
References
Comments