Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

cPHulk Protection Explanation

Discussion in 'General Discussion' started by Zardiw, Oct 9, 2017.

Tags:
  1. Zardiw

    Zardiw Active Member

    Joined:
    Sep 22, 2017
    Messages:
    26
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Palm Springs
    cPanel Access Level:
    Root Administrator
    What exactly do the options mean? Whoever wrote this completely missed the mark when explaining/documenting the whole thing.

    Why aren't there any explanations that define Exactly what these options are?

    For instance, what is Brute Protection Period? This might have been obvious to whoever programmed it, but it is a complete Mystery to anyone who is coming upon it for the first time.....

    What does it mean to apply protection to local addresses only vs remote addresses.

    What are commands to run. Are there any samples/explanations?

    Why can one only block for ONE DAY? Why not a WEEK, Month, YEAR or INFINITY?
    Obviously if someone tries to hack the system 50 freaking times, you want to block them forever!

    WTH is this: Duration for Retaining Failed Logins (in minutes)

    z
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,170
    Likes Received:
    370
    Trophy Points:
    583
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. chengkinhung

    chengkinhung Registered

    Joined:
    Jun 15, 2007
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    51
    The cpanel document in this part indeed write terribly simple, I still can not figure out what the "Apply protection to local addresses only" and "Apply protection to local and remote addresses" mean, the document: cPHulk Brute Force Protection - Version 68 Documentation - cPanel Documentation said:

    Apply protection to local addresses only:
    Whether to limit username-based protection to trigger only on requests that originate from the local system. This ensures that a user cannot brute force other accounts on the same server.

    Apply protection to local and remote addresses:
    Whether to allow username-based protection to trigger for all requests, regardless of their origin.

    However, what is "requests that originate from the local system" means ? does it mean login from "localhost" or 127.0.0.1 ?
     
  4. Zardiw

    Zardiw Active Member

    Joined:
    Sep 22, 2017
    Messages:
    26
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Palm Springs
    cPanel Access Level:
    Root Administrator
    You know what would be nice?............If there was a way to block based on 404 errors.

    Go look at your error logs and see how many attempts there are to get into your system with hot links.......it's freaking INSANE.......

    Anybody that tries to go to a file that isn't there should be banned......

    And I would REALLY like to ban those aholes forever......


    z
     
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    43,711
    Likes Received:
    1,794
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    Yes, "local system" indicates requests coming from localhost or from IP addresses associated with the same cPanel server.

    Could you open a separate thread with some more information about this specific scenario?

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice