I looked into this awhile back, in the end I just use a really strong password for the sa account and a packet sniffer to detect who all is hacking from time to time... a packet sniffer will clearly show what IP Addresses are up to no good and then I can block them with my firewall. I'll be interested to see if anyone else has an answer to this that is an SQL Solution. What would be great is if SQL Server had a way to block IP Addresses automatically given the criteria of how many failed logins in a certain timeframe... would seem to be a feature it lacks at the moment.
>Is there a way within SQL Server 2000 to log Ip addresses of unsuccesful login attempts? Or does Sql Server do this automatically any where?
>
>Thanks,
>Mike