Denial-of-Service Attack Tracking?

ericf

13 years ago
updated 13 years ago
Answered

Can WebLog Expert track denial of service attacks? My organization, as part of its security requirements for out-facing SSL sites, needs to be able to track whether someone is making numerous invalid login attempts against valid user accounts. The tool seems to show 401 "Unauthorized" errors but it does not appear to show a graph that has the user accounts that are tied to those errors. Is there any customization that we can make to show this?

Replies 2

Oldest first
Newest first Oldest first

WebLog Expert Support

13 years ago

You can make custom tables in the Professional and Enterprise editions. E.g. if you wish to show number of 401 errors per authenticated user, you need to do the following:

1. Open Options > Report > Tables.

2. Create a new table with any name/category you wish and choose "User name" as main data. You can choose the Hits column as well as other columns you need.

3. When you create the table, create an include "Status code" filter with value 401 in the table properties to show 401 error statistics for the users only.

If you wish you can also create a graph in this table.

Reply Link

That works. Thanks!