This SonicWALL IPS signature category consists of a group of signatures that provide administrators with information about network usage. The traffic detected by these signatures are not threats in and of themselves. They instead alert administrators to suspicious activity that may indicate that an attack is in progress.
The signatures in this category detect bad logins or blank passwords when users try to telnet to a computer or log into an FTP server. While this usually indicates that a user has forgotten or carelessly mistyped their password, a large number of successive attempts may indicate that an attacker is engaging in a brute force attack to try to log into a server or workstation on the network.
