Results 1 to 2 of 2

Thread: audit login fail and restrict number of atempt

  1. 10-14-2003, 08:01 AM #1
    alex
    alex is offline Registered User
    Join Date
    Sep 2002
    Posts
    159

    audit login fail and restrict number of atempt

    Hi everybody,
    I found 100 entries with milisecond
    difference in error log
    "Login failed for user 'sa'"

    does it look like attack ?

    1. Can I restrict number of failed login ?
    2. What events to trace in order to get
    ip address for for station that trying to login as sa and fail?

    Thank you

    Alex
    Reply With Quote Reply With Quote
  2. 10-14-2003, 09:48 AM #2
    skhanal
    skhanal is offline Experts
    Join Date
    Nov 2002
    Location
    New Jersey, USA
    Posts
    3,932
    1. With Sql server login you can't restrict number of attempts, this is one the reasons to go Windows Authentication.

    2. You may have to use a network monitoring tool.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules