I am noticing many blog and forum posts around the internet where people enable Brute Force Protection on their cPanel&WHM server, never think to whitelist their own IP and then lock themselves out of their own server. Admittedly, changing one's root password when one gets a new server is common practice so it's understandable how sysadmins can lock themselves out of their own server.

I'm thinking maybe when someone goes to enable protection, as soon as protection is enabled, they should be prompted if they want to whitelist their own IP. If they do, a screen is shown with their current IP address so they can decide whether to enter just that specific IP or a CIDR range instead.

What do you guys think? Or is this just not a major problem and it's just a vocal minority experiencing this in the wild?