The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Cpanel: local brute force attack

Discussion in 'Security' started by fernandomm, Aug 17, 2011.

  1. fernandomm

    fernandomm Active Member

    Joined:
    Nov 25, 2009
    Messages:
    26
    Likes Received:
    0
    Trophy Points:
    1
    Hi,

    We had a brute force attack made from a local script to cpanel. Cphulk and csf didn't blocked because it was coming from the local ip.

    Is there a way to protect a server against these kind of attacks?

    The script was uploaded due to a security issue on Joomla and them attacker simply ran the script by accessing via browser

    Thanks..
     
  2. Bahram0110

    Bahram0110 Well-Known Member

    Joined:
    Dec 12, 2007
    Messages:
    45
    Likes Received:
    0
    Trophy Points:
    6
    Hi,
    This is a big problem.
    I'm searching for its solution too..
     
  3. nobodyk

    nobodyk Well-Known Member

    Joined:
    Aug 1, 2010
    Messages:
    90
    Likes Received:
    0
    Trophy Points:
    6
  4. SoftDux

    SoftDux Well-Known Member

    Joined:
    May 27, 2006
    Messages:
    983
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Johannesburg, South Africa
    cPanel Access Level:
    Root Administrator
  5. nobodyk

    nobodyk Well-Known Member

    Joined:
    Aug 1, 2010
    Messages:
    90
    Likes Received:
    0
    Trophy Points:
    6
    By local do you mean another server on the same network? If so, CSF does a nice job blocking those.
     
  6. cwalke32477

    cwalke32477 Well-Known Member

    Joined:
    Mar 2, 2010
    Messages:
    94
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Atlanta, Georgia
    cPanel Access Level:
    Root Administrator
    I beleive tho OP is stating that the brute came from within the server itself, since it's the local internal IP (127.0.0.1 most likely) it would circumvent CSF and built in Brute protection.
     
Loading...

Share This Page