Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Brute Force attacks trying to login to an email account

Discussion in 'E-mail Discussion' started by rebouy, Jun 20, 2011.

  1. rebouy

    rebouy Member PartnerNOC

    Sep 1, 2010
    Likes Received:
    Trophy Points:
    cphulk is detecting a massive attempt to access an email account (around 5 times per second, nonstop).
    The attack comes from IPs from neighbour countries, so we just cant block any range of IPs. They also use a roundrobin, with only 2 attacks per IP.

    The account is not in use anymore, but we cant just delete it (it still receives valid emails).

    Any idea what to do to stop this hammering?

    Martin R.
  2. cPanelTristan

    cPanelTristan Quality Assurance Analyst Staff Member

    Oct 2, 2010
    Likes Received:
    Trophy Points:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    If the account isn't in use anymore, why not delete the account and set a forward to another account. If the account doesn't exist, it can still receive forwards to an existing account. With the account no longer existing, it cannot be brute force attacked any longer then.
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice