I've noticed some "undesirables" trying to login to my ISP machine via FTP, and after 3 attempts him (or her?) gets locked out. Question: 1) How long does it block the same IP from re-attempts? Can it be set? 2) Is there a way to add failed login attempt IP's to the firewall automatically? 3) Where can I set # login attempts for proftpd - seems to be somewhere in other database or config files? Thanks PS. I now have successfully got ISPConfig on perfect Hardy Heron working, with about 5 web sites with external DNS names. I've retired my IIS server and put Linux online. Not bad for a newbie lol... only took me 3 weeks All this thanks mostly from help in this forum...keep up the good work guys.