Any administrator of a public facing Windows web server will notice that their server is continiously attacked by bots looking for an easy target. ![]() ![]() The first defense is to implement a good account lockout policy but that does not solve the entire problem. If the system never locks out the account then time is the only barrier to eventually getting you password and logging in. Brute force is a fancy way of saying trying all possible passwords. Theoretically on a system that does not have an account lockout policy in place, which by the way is not a system default, the RDP protocol can be used to get the administrator password with brute force. Since this port is both well known and can be used to attack accounts, it is low hanging fruit for script kiddies and bots looking for an easy target. If your system has Remote Desktop enabled, it is listening for connections on port 3389. ![]() Port 3389 is the home of the remote desktop protocol that powers Remote Desktop Services on all modern versions of Windows.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |