Thomas W Posted May 4 Share Posted May 4 I have the "Failed Login Attempt" emails setup to come to me given I want to see if someone is trying to hack in and try multiple passwords, etc. The problem is every time one of my users types their password in wrong I get an email and with only the detail being the IP it is hard to know if it was a typo or a attempt by someone else. If a reverse DNS and geolocation lookup could be done and added into the email it would avoid me having to do it manually. Obviously that info isn't perfect given hackers use VPNs etc but it would help. Most of the time I just do a reverse DNS lookup and it is clearly a local ISP and not a VPN endpoint. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now