2 Replies Latest reply: Apr 14, 2013 1:37 PM by UptimeJeff
Gerard Dirks Level 1 Level 1 (30 points)

Hello

 

We have an OS X 10.6.8 Server. Whe normaly connect to the Network over L2TP. As BackDoor we have an ARD Forward vor 3282, 5900 & 5988.

 

Now we recognised a attack to login to our Server to VNC. This is failed.

 

09.04.13 18:43:57/System/Library/CoreServices/RemoteManagement/AppleVNCServer.bundle/Contents/Mac OS/AppleVNCServer[218]Authentication: FAILED :: User Name: N/A :: Viewer Address: 1xx.1xx.2xx.2xx :: Type: VNC DES

 

Is it possible to disable to VNC Login after e.g. 5 attemps for anotther 1 hour.

 

In the GUI I can't find this option. Is their a way to do this with an CLI-Command

 

Who is able to help me

Regards