The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

CPhulk - not very smart sometimes

Discussion in 'General Discussion' started by denisdekat09, Mar 31, 2009.

  1. denisdekat09

    denisdekat09 Well-Known Member

    Joined:
    Mar 2, 2002
    Messages:
    265
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    San Francisco
    Hi all,

    It turns out some IP form China is trying to get into one of my servers as root and now the account root is locked out of the WHM. Is there a way to configure CPhulk to only block IPs rather than to lock accounts? Seems a little dumb that someone failing as root should stop me from accessing the WHM when I put in the correct password.

    Thanks for any help on this :)
     
  2. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    Keep in mind that a coordinated attempted security breach can originate from many thousands of IP addresses, so locking out a single IP address can be useless in curbing such an forced entry.

    If this is happening for your root account, it is likely they found you running SSH on the standard SSH port and attempted entry that way. You may wish to move SSH to a non-standard port that is not otherwise being used by your server to curb these occurrences on your root account.

    You can also disable cPHulkD, but that may not be a good idea from a security perspective.
     
  3. denisdekat09

    denisdekat09 Well-Known Member

    Joined:
    Mar 2, 2002
    Messages:
    265
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    San Francisco
    I was hoping that I could configure it more ;)

    In any case, I know what it can do better now - thanks for your response.
     
  4. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    You can customize a variety of settings for cPHulkD including max tries per IP etc. by going to WHM -> Security -> Security Center -> cPHulkD Brute Force Protection.
     
  5. denisdekat09

    denisdekat09 Well-Known Member

    Joined:
    Mar 2, 2002
    Messages:
    265
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    San Francisco
Loading...

Share This Page