The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

cPHulk command to add IP to blacklist

Discussion in 'Security' started by HQ80, Jul 13, 2015.

  1. HQ80

    HQ80 Registered

    Joined:
    Jul 13, 2015
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    UK
    cPanel Access Level:
    Root Administrator
    I want to run a command that blacklists the IPs that trigger brute force protection. On the cPHulk configuration page there is a field titled "Command to Run When an IP Address Triggers Brute Force Protection" and in the documentation the description says "The full path to a command that you want the system to run when an IP address triggers brute force protection." Could somebody give me an example of a command that would add the offending IP to the blacklist?
     
  2. quizknows

    quizknows Well-Known Member

    Joined:
    Oct 20, 2009
    Messages:
    942
    Likes Received:
    57
    Trophy Points:
    28
    cPanel Access Level:
    DataCenter Provider
    The IP will automatically be blocked when it triggers brute force detection. The command field is there in case you wanted to do something else with that IP such as add it to your own list, send an email, run a custom script to notify the netblock owner, etc.

    You don't necessarily need to blacklist every IP that is ever "caught", a blacklist is just the IPs you know for sure you never would want to allow to login.
     
  3. keat63

    keat63 Well-Known Member

    Joined:
    Nov 20, 2014
    Messages:
    765
    Likes Received:
    20
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Hi HQ80

    If you havn't done so already, consider installing CSF.
    If offers more protection than CPHulk alone.
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,854
    Likes Received:
    675
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    Yes, as mentioned, the field is for an additional command. You can leave it blank and cPHulk will still block the offending IP address.

    Thank you.
     
Loading...

Share This Page