sdg's questions -server

sdg

Asked: 2012-11-30 11:01:53 +0800 CST

How to prevent a password-locking denial of service for a Windows Service Account

For a fairly standard, internal facing, web app of an IIS layer talking to an MS SQL back end, we are using a service account for the IIS to talk to SQL.

We also have in our Active Directory setup a password lockout set, so that too many guesses lock the account.

Following on from Is account lockout a denial of service attack waiting to happen? scenario - does setting the Deny Logon Locally for the service account user impact this lockout feature in any way?

Alternatively (additionally?) is this the kind of scenario that Managed Service Accounts are supposed to help fix?

sdg

Asked: 2011-06-03 11:55:00 +0800 CST

Veritas Cluster Server for HA for regular user processes

In the past I have used Veritas Cluster Server for HA clusters of Sybase and other databases at large financial institutions.

Now I am going to have locally written processes that could benefit from some similar behavior. e.g. "fail onto this machine if this process fails"

We will have VCS in the environment for various databases, so the overall skill set is not an issue; but this specific aspect.

Have you used VCS for custom application deployments? Was it worth it? Did it buy you much?

How to prevent a password-locking denial of service for a Windows Service Account

Veritas Cluster Server for HA for regular user processes

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?