Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Access denied "GET /xml-api/listaccts"

Discussion in 'General Discussion' started by kernow, Sep 29, 2013.

  1. kernow

    kernow Well-Known Member

    Joined:
    Jul 23, 2004
    Messages:
    920
    Likes Received:
    13
    Trophy Points:
    168
    cPanel Access Level:
    Root Administrator
    One of our servers in our cluster is suddenly reporting login attempt errors from one of our servers:
    The cluster is set up only for DNS so what script would be requesting login for list accounts / reseller stats?
    (its odd that access would be denied anyway as the DNS cluster is working OK)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 kernow, Sep 29, 2013
    Last edited: Sep 29, 2013
  2. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,803
    Likes Received:
    1,897
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello :)

    Do you have cPHulk brute force detection enabled on the DNS-Only machine? If so, check to see if the hosting server has been locked out by cPhulkd.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. kernow

    kernow Well-Known Member

    Joined:
    Jul 23, 2004
    Messages:
    920
    Likes Received:
    13
    Trophy Points:
    168
    cPanel Access Level:
    Root Administrator
    Hi,
    Sorry, I didn't explain properly, there is no DNS only machine, I mean't that the cluster is only for syncing DNS records between servers, as we understand it there is no other purpose for the cluster is there?. The cluster is working OK. No, we don't use cPHulk.
    The errors are coming from CSF log and the server attempting login isn't locked out despite the connection refused message. What I don't understand is what script on the server would request info on resellerstats on a remote server?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,803
    Likes Received:
    1,897
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Do you have any third-party applications (e.g. billing) on the cPanel server that is making the connection which could be requesting the account list or to view reseller statistics?

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  5. kernow

    kernow Well-Known Member

    Joined:
    Jul 23, 2004
    Messages:
    920
    Likes Received:
    13
    Trophy Points:
    168
    cPanel Access Level:
    Root Administrator
    Hi,
    Thanks for the suggestion, yes it turned out to be WHMCS cron job. Haven't figured out why it gets connection refused yet, but we know where to look now. Thanks.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice