The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

cphulk protection

Discussion in 'General Discussion' started by k1k, Jun 18, 2008.

  1. k1k

    k1k Active Member

    Joined:
    Mar 24, 2006
    Messages:
    27
    Likes Received:
    0
    Trophy Points:
    1
    Hello,

    Many of our customers are attacked with cPanel login bruteforce attempts. Many of the "attackers" use simple wget for their attacks :(. However some of the attacks were successful .

    I know that the cPanel have a software for bruteforce attempts (cphulkd) and I was wondering if it is able to detect and block such attacks. I have enabled it on one of my machines and sent 10 wrong login attempts(the cphulk limit is 3 ) . However I saw the failed attempts in the log, but the cphulkd has note detected anything.
    Please let me know what should I do.
     
  2. Kent Brockman

    Kent Brockman Well-Known Member

    Joined:
    Jan 20, 2008
    Messages:
    1,130
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Buenos Aires, Argentina
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hi. If you have a bit of remaining operational me mory in your box, installing a firewall would be a good solution.

    I do use CSF and have everything under control. You can read more here:
    http://forums.cpanel.net/showthread.php?t=53511
     
  3. k1k

    k1k Active Member

    Joined:
    Mar 24, 2006
    Messages:
    27
    Likes Received:
    0
    Trophy Points:
    1
    :(

    Hello,

    Thanks for the idea but you can also see that there is no protection for cPanel login failures/bruteforce attacks. So I need another solution.I hope that a cPanel support representative could help us with that issue.
     
  4. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    csf does indeed include protection again brute-force attacks against cPanel/WHM and Webmail logins.
     
Loading...

Share This Page