MSSQL 2005 IP block after n failed login attempts

Is there a way to have MSSQL 2005 block an IP address if someone tries to login to the SQL server with some sort of brute force password cracker? In going through our logs I see that there are several ip addresses hammering our sql server trying to login as SA or Root etc…

Hi!

I don’t think so. Use long passphrase (25+ characters) instead of shorter complex password to secure admin accounts. Change passwords regulary. It’s not very likely that very long password will be successfully bruteforced with an online attack. Patch your servers regulary, it’s more likely that you will be attacked by exploiting vulnerabilty on your system.

Toni
Not what you’re looking for? Ask an Expert.

I do not believe an option you want exists as part of SQL.
Where is the origin of the attack? Is there a firewall/IDS device in front of the sql server?