I am getting numerous login attempts against my SQL server every hour. My event logs are showing about 100 attempts an hour using the SA password.
To counter this I have been blocking the IP's that show up via netstat that I do not recognize however every hour it starts up with another IP address. Is there any suggestions or articles that I can read up on to stop these sort of attacks?
Currently running Windows server 2003, SQL server 2000. Using IPSEC policies to block IP's currently.