View Single Post
  #4  
Old 10-20-2005, 07:34 PM
ynyng ynyng is offline
Registered User
 
Join Date: Oct 2005
Posts: 6
Wow . . .

Nice response time. Thanks! We run Win2k3 servers in DMZ behind PIX 515E. Am also running VShell 2.3b1 on a Win2k3 x64 test server now. Regarding your other Q's:

1. This would be nice. Once used a product from Internet Security Systems that integrated manual and auto filters into one list (with different icons for easy differentiation). The system administrator had the ability to edit or delete items in either category on the list.

2. Absolutely.

3. If I understand the question, both, but not necessarily in the the context of your existing software design. A disconnection from the present VShell server for either (a) bad logon attempts or (b) an authentication timeout is not a deterent since the server does not prevent the hacker from reconnecting immediately. (My log today had 59MB of such attempts from Asia Pac). It would be nice if the software would auto-block an IP address using the connection filter under administratively set parameters: (Var A) # failed logon attempts from a single IP within (Var B) specific time period results in (Var C) IP blocking for a specific length of time. Does this make sense?

4. No, because of possible bandwidth issues. I'd rather they go away.

5. Yes.

Thanks for listening!

Last edited by ynyng; 10-20-2005 at 07:36 PM.