Syspeace for Windows 2003 and 2012 due for release today

Syspeace Version 2 with support for Windows Server 2003 , 2008. 2008 R2 and 2012 is due for release this evening. Http://www.syspeace.com

More info on improvements and features to come.
Stay tuned.


Posted with WordPress for Android.
Juha Jurvanen
Senior IT consultant in backup, server operations, security and cloud
http://www.jufcorp.com

How Syspeace licensing works

Syspeace licensing – a walkthrough

The licensing model for Syspeace is very flexible and easy to use and has been to designed to keep your administrative tasks to a minimum.

First of all, if you haven’t already, download a free trial and install it. Your servers are protected from brute force and dictionary attacks within minutes.

Regsiter your account with a valid email address and a license number will be emailed to you.

If you decide to continue using Syspeace for protecting your Windows servers, Exchange Servers OWA, Citrix, Terminal Server, CRM, RDWEB, Sharepoint and so on then ..

Simply login to the Syspeace licensing site with the mail address you used upon registration, buy your license and the trial license you’ve used earlier will be automatically converted into live license the next time your Syspeace client validates the license or the service is restarted.

So, there is no need to change the license number , you’ve already got it .

A main feature of the Syspeace licensing model is the flexibility – rethinking application licensing models

Instead of having to buy licenses for instance a 1 year licens at a tme per server (which is not uncommon) or having to buy a new license / upgrade license when a major release is up , you buy licenses based on computer days and for how many servers you want.

As an example. If you’ve got a server today and you want to get a ”classic” one year licese for it (everyone tends to think in terms of one year licenses I guess) , you login to the site, get your license and you’re good to go.

Two months later, you buy another server and of course you want that server also to be protected from brute force and dictionary attacks.

Ususally this would get you into the situation where you’d have two different license renewal-dates to remember and that’s just a hazzle for everyone.

With Syspeace though, you simply login and extend your existing license for 10 months and to two servers, thus enabling you to align your license renewal dates to tha same date and therefore simplifying your administration.

With Syspeace minor and major upgrades and even all new versions and patches are included in the license.
Should we release new features or a new major version, it’s already included.
No need to buy a license for version 1 thinking all is good and when version 2 comes along , you realize you’ll have to get an upgrade license to use all the new features.

Moving Syspeace licenses between servers

Also another feature that makes you life easier.

Within the licensing section of Syspeace, there is a ”Reset license” button. Simply press that and the license is reset from the local server and the server is removed from the central database along with its affilation to the license number.

Next step is to install Syspeace on the new server where you want it, activate your license key and you’re good to go.

Brute force protection for Windows Server 2003 and Windows Server 2012

Syspeace for Windows Server 2003 and Windows Server 2012

A happy announcment from the Syspeace team:

We are currently in the final testing phases for Windows 2003 Server support and things are going according to plan.

If all goes well, we’ll also announce the Windows Server 2012 support with the next release.

Our goal is to release the 2.0 version within Q1 2013 and some of the new features will be an improved and even faster engine, new GUI and extended platform support to Windows Server 2003 and Windows 2012.

Keep an eye on the Syspeace website for new downloads.

Syspeace - brute force protection for Windows
Syspeace – bruteforce prevention for Windows servers

Am I under attack for a brute force or dictionary attack on my Windows server?

Finding a brute force attack or dictionary attack on Windows servers

Actually, it’s fairly easy to find out your Windowsservers is being hit with an attack.

Simply enable auditing of Logon Events in your Security Policy and look at the eventviewer and see what pops up.

Open your eventviewer and search for logon events named 4625 n Windows 7, Vista, 2008 , 2008 R2 or 529 on Windows server 2003.

Open up these events and look at the username used, the network source address and see if they are legitimate login attempts or not.
You could use for instance WHOIS to find out where the attack came from or traceroute or nslookup.

If you’re under attack you’ll be seing hundreds or thousand of failed logon attenpts, somteimes from a single IP address or in a more serious scenario, from hundreds or even thousands IP addresses at once. In some cases, such an attack is also just a way to hide the real purpose behind the attack which is to find out what securiy measures you have in place and to search for any vulnerabilities you may have in place that can be use to hack you later on. The attacker tries to ”hide in the noise” so to speak.

If it’s a single IP address it’s fairly easy just to block the attacker in your external firewall completely or in the local Windows firewall (assuming you’re awake and have seen the attack ) but, if it’s hundreds or thousands at once it becomes more or less impossible if you can’t automate it.

This is where Syspeace comes into play.

Syspeace automatically monitors, traces, blocks and reports failed logon events if they reach the criterias you’ve set up, for example ”If an attacker fails to login 10 times during 30 minutes, I want the attackers IP address to be blocked completely on all ports for 2 hours” or even ”If an IP address fails to login more than 10 times during 7 days, I want the attacker to be blocked ..”

If you’re under attack, the fastest and easiest way is to download the free trial of Syspeace, install it and simply start the Syspeace service and the attack will be blocked automatically within minutes.

At the moment, Syspeace supports Windows 2003, 2008, 2008 R2, 2008 SBS 2012 , SQL Server, Exchange Server, Citrix and more.
Out of the box.
And there’s a fully functional, free 30 day trial on the website.