The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Brute Force

Discussion in 'General Discussion' started by Meerkat, Jan 31, 2012.

  1. Meerkat

    Meerkat Member

    Joined:
    Dec 1, 2011
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    I've just tried to login to WHM and I get shown this:
    This account is currently locked out because a brute force attempt was detected. Please wait a few minutes and try again. Attempting to login again will only increase this delay. If you frequently experience this problem, we recommend having your username changed to something less generic.

    I'm using the correct info, well to my knowledge, I just tried to login via SSH and it says access denied. So I logged in to Kloxo to change the root password but it still says it's denied and I can't login via WHM as the same thing is shown.

    What can I do from here?
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,463
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Contacting your Hosting Provider would be the next stop.

    GL!
     
  3. Meerkat

    Meerkat Member

    Joined:
    Dec 1, 2011
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Okay I disabled cphulk via the command line and managed to get in to SSH too, I've checked the cphulk reports and blacklisted and dropped the ip that was attempting to brute force. How can I restart cphulk now?
     
  4. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,463
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    You should add your own IP to the whitelist. How is it that someone else's IP got you locked out?

    Do you have access to WHM? There's a button to enable cPhulk.

    I believe this would work as well:
    /usr/local/cpanel/etc/init/startcphulkd
     
  5. Meerkat

    Meerkat Member

    Joined:
    Dec 1, 2011
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    I've whitelisted it, but it's dynamic so my msot recent IP wasn't whitelisted. And I got locked out due to the account having so many incorrect logins.

    I've now started cphulkd again, and I couldn't find anything to indicate someone actually breached the server. They were just attempting to. They're IP's have now been dropped.

    Thanks for your help.
     
  6. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,463
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Sure thing, good luck.
     
Loading...

Share This Page