We get random IP addresses that port scan our network and attempt to get into the FTP accounts due to the open service. We were blocking the major offenders by IP on the firewall, but new one's come everyday.
My question is, what is the best standard when it comes to open services that need to be accessed by clients like this? Is relying on the FTP credentials enough?
Any suggestions would be helpful.