The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

cPHulk Brute Force blocked root because of server IP

Discussion in 'General Discussion' started by martynh, Dec 29, 2009.

  1. martynh

    martynh Active Member

    Joined:
    Oct 6, 2009
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    6
    Hi all never had this before but I have just received an email letting me know root has been blocked because of a cPHulk Brute Force detection... I have had a few of these in the past but it seems to be from the servers main IP address

    10 failed login attempts to account root (system) -- Large number of attempts from this IP: XX.XX.XX.XX

    Why would this be the servers IP doing this, is this an internal attack or something

    sorry bit new to cpanel

    thanks
    martyn
     
  2. PCZero

    PCZero Well-Known Member

    Joined:
    Dec 13, 2003
    Messages:
    526
    Likes Received:
    34
    Trophy Points:
    28
    Location:
    Earth
    This has been happening to a lot of users. You need to SSH to your server and stop the CPHulk process. You may have to put in a support ticket to have your server provider to do this. To have it completely resolve, I had to run the cpanel update again and use the force option. After that I was able to restrat CPHulk in WHM and all was well.
     
Loading...

Share This Page