SMTP request brute force password on Exchange 2010 (Full Version)

All Forums >> [Microsoft Exchange 2010] >> Secure Messaging



Message


maxmta -> SMTP request brute force password on Exchange 2010 (12.Nov.2014 2:12:17 AM)

Hi.
Our system running Exchange 2010. Few day ago, we detected brute force password some account mail using SMTP request that casu lockount account. We found on SMTP packet IP and computer name attacked to system as log bellow and block that IP but attacker change to another IP to attack.
Pls advice and hepl us reslove this issue

EHLO ylmf-pc
250-xxxxxx Hello [42.115.29.58]
250-SIZE
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-STARTTLS
250-X-ANONYMOUSTLS
250-AUTH NTLM LOGIN
250-X-EXPS GSSAPI NTLM
250-8BITMIME
250-BINARYMIME
250-CHUNKING
250-XEXCH50
250-XRDST
250 XSHADOW

I




Page: [1]