I seem to be getting an FTP attack every now and then. Basically a person would write a script and try to hack into one of our user accounts multiple times. Sometimes the user name changes, for example, last night there was an attack from the same IP address, where for about 5 minutes, this script tried to log in to a number of different usernames (about 20 times each username) with different passwords (I assume). The average login rate was 2 or 3 per second.
I know that a temporary ban is possible, but is there a way to automise this if an attack happens? Say if a person tries to log in at least 10 times in 10 seconds, could the IP be placed on ban automatically?
Thanks in advance