Page 1 of 1

Not locking out

Posted: Wed Oct 14, 2020 12:54 pm
by borg357
So, I have some guy trying to log into my admin account, every 15mins, for 3 days..

How does someone do this, and not get locked out from the same IP?? I clearly have access protection on to block for 1 day if 5 attempts... but this guy is allowed to pound the door day and night for 3 days?

Are they spoofing or malformed the IP or something?

Thanks
-Richard

Re: Not locking out

Posted: Wed Oct 14, 2020 1:02 pm
by Moogle Stiltzkin
i'm guessing that your nas is exposed online, so people can keep trying their luck with you.

if you need remote access, use vpn



as for your question, if it's the same ip, and you set the access protection to trigger block for failed login attempts, it would block them for time x..

check your settings, it's under qts security, network access protection.

i still recommend you not make your nas exposed simply like that.....

even if they don't figure out your password, they can still attack you using known vulnerabilities (they will assume you don't update qts, which unfortunately a lot of people are guilty of lax management).

Or even worse, they may try a zero day attack (an unknown vulnerability, which was what happened for qsnatch as an example)


anyway report bugs to qnap
https://service.qnap.com/


not 100% sure, but by default it's set to allow access to all. perhaps that needs to switch to blacklist mode. so when they get flagged, their ip might be put into that blacklist. i'm not sure if this will work that way, but it's very likely.

Re: Not locking out

Posted: Fri Oct 16, 2020 11:37 am
by borg357
Thanks for the response..

I did and do have access protection on. It's set to 5 times.

So, my question still remains.. How are they able to get by the access protection, and try over and over again?

Thanks

-Richard