2 Replies Latest reply: Apr 14, 2013 1:37 PM by UptimeJeff
Gerard Dirks Level 1 (30 points)



We have an OS X 10.6.8 Server. Whe normaly connect to the Network over L2TP. As BackDoor we have an ARD Forward vor 3282, 5900 & 5988.


Now we recognised a attack to login to our Server to VNC. This is failed.


09.04.13 18:43:57/System/Library/CoreServices/RemoteManagement/AppleVNCServer.bundle/Contents/Mac OS/AppleVNCServer[218]Authentication: FAILED :: User Name: N/A :: Viewer Address: 1xx.1xx.2xx.2xx :: Type: VNC DES


Is it possible to disable to VNC Login after e.g. 5 attemps for anotther 1 hour.


In the GUI I can't find this option. Is their a way to do this with an CLI-Command


Who is able to help me