Terminal Service Plus

The best Citrix / RDS Alternative for Remote Desktop and Web Access
https://forum.tsplus.net/forum/

Homeland protection don't work for web access

https://forum.tsplus.net/forum/viewtopic.php?f=8&t=4747

Page 1 of 1

Homeland protection don't work for web access

Posted: Tue Jul 28, 2020 2:30 pm
by SaleCar
Hello,

We have a problem with Russian hackers who attacks TSPlus web server on port 80 and slow down RDP service. Other client cannot connect because of that. In homeland protection, Russia is not on the allowed list but it still passing. How to solve that?

log.jpg
log2.jpg

Re: Homeland protection don't work for web access

Posted: Tue Aug 04, 2020 4:39 pm
by nbatocanin
Is there a chance to solve this problem?
The attack was repeated several days and will probably happen again. We have blocked the IP addresses from which they attacked, but they are constantly changing. I think this is a bug in RDS Knight.

- We set Homeland protection and this is ok for RDP connections
- RDS Knight is set to watch html server, (settings -> Homeland -> Waathched Process: HTML5service.exe)
- but this is NOT work. The web attacker reach our server and tries a large number of user / pass combinations. Each of these attempts internally creates a rdp connection to 127.0.0.1, which completely blocks the server so other users cannot log in.

We use old RDS Knight, maybe this has been fixed in newer versions?
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited