|
| | | Forum Newbie
Group: Forum Members
Last Login: 6/4/2008 7:58:08 PM
Posts: 7, Visits: 12 |
| kevin r gillis (4/16/2008)
hello all, excellent feature request. the ability to auto block IP addresses is tentatively set for the next major server released. this work is already completed and feature complete. the system admin can now populate a white or black list and auto populate the blacklist based on x consecutive failed logins after x mins or hours from the same IP address. the offending IP Address will be automatically added to the blacklist for a settable period of time (hours, days, months, forever). we'll be releasing this to the TPP in the coming 1-2 months. I'll add the request to be able to manually add offending IP addresses (versus automatic population of offending IP addresses). hope this helps. bye for now, Kevin, we've been waiting years for this! I hope this will also qualify as an event so an email can be sent with this event and that the ip address and the hostname are also variables that can be included in the emails! Remember this? there may a few possibilities here for new features. 1. in the error message, include the user id or ip address or both. Failed Login - Fri Feb 03 14:16:17 2006 *** There has been an excessive number of failed login attempts for the userid kevin@abc.com at ip address 123.123.123.12 - on host abc.com 2. In FTP Server 5, there currently is a rule for Failed Logins which can then kick-off an email/sms/pager/external applicatoin to notify you of a user reaching the failed login limit. i will check into whether we can include the IP address in the notification that is fired off. 3. after x failed logins from same ip address, then automatically put the ip addy on the blocked list until the admin pulls it off or for a settable # of days (e.g. 30 days).
-johnniewalker |
| |
| | | Supreme Being
Group: Administrators
Last Login: 2 days ago @ 7:49:00 PM
Posts: 118, Visits: 197 |
| | Hello All, regarding this request (ability to easily and manually add banned IP addresses), you can do this via the Access Control list in Server 6.1. The automatic blocking is scheduled for the next major release. Are there any more details on "easily input" that you can share (e.g. such as importing from a csv, being able to enter a starting and ending range or wildcards, etc.)? harmia (4/16/2008) - Same boat here, I wish there was to easily input banned IP address using know IP blocks from specific countries. bye for now,
Kevin R Gillis
Ipswitch, Inc. |
| |
|
|