It is surprisingly high the number of RDP access attempts nowadays, regardless of the external port being used. Even more surprising is the fact that Microsoft systems do not have their own blocking feature for offending IPs, which would be appropriate
to be enabled by default.
Is there documentation that explains why Microsoft does not include this very important feature, crucial even to the company's own security reputation?
What server-side alternative solutions would you recommend to mitigate botnets and so many other online brute force and similar threats?
Is there documentation that explains why Microsoft does not include this very important feature, crucial even to the company's own security reputation?
What server-side alternative solutions would you recommend to mitigate botnets and so many other online brute force and similar threats?