The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

CPHulk account locking on root

Discussion in 'Security' started by barkermn01, Jan 17, 2015.

  1. barkermn01

    barkermn01 Member

    Joined:
    Mar 17, 2010
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    1
    Hi i have a cPanel server and over the past 3 days i have had people trying to break the root password using ssh however i have white listed my IP's my root account is getting locked out from all logins including my whitelisted IP

    I tried to install ConfigServer Firewall however all this did was break all conections to my server and there does not seem to be an ideal Setup Tutorial for cPanel as it was last time i tried running it, CSF stoped my server doing a license check with the cPanel License server and blocked me logging in completely.

    So first think why they hell is my root account being locked out with the IP's attacking my server and how do i get a firewall application that will prevent this crap so i can prevent the constant attacks on my server, thats locking me out of managing my server.
     
  2. popeye

    popeye Well-Known Member

    Joined:
    May 23, 2013
    Messages:
    313
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Texas
    cPanel Access Level:
    Root Administrator
    ConfigServer Firewall is really good did you set this up correct
     
  3. barkermn01

    barkermn01 Member

    Joined:
    Mar 17, 2010
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    1
    No That was the problem as i don't know the correct set-up for cPanel, left everything the default apart from the TESTING = 1 to 0 and it locked out outbound to cPanel Licencing Server
     
  4. keat63

    keat63 Well-Known Member

    Joined:
    Nov 20, 2014
    Messages:
    765
    Likes Received:
    20
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Start by making sure that the deny rules you have in host access control are at the bottom of the list.
    Ensure your allow rules are at the top.
    Add your IP address and or any other you wish to give access to.
    In the Deamon, add

    ALL, Your IP, Allow
    ALL, Your second IP, Allow
    ALL, ALL, DENY

    This last line should block everyone else from everything....... hopefully.
    This is a good starting block, ready for fine tuning.

    Add your IP or IP's to the whitelist in CPHULK.
    Install CSF and under Firewall Profiles, Choose the high option.
     
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,773
    Likes Received:
    663
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    The default firewall rules with CSF should not block outgoing connections to the cPanel license verification server. I suggest installing it again in order to see if the issue persists. Their support forums may also help if you encounter issues with their software.

    Thank you.
     
Loading...

Share This Page