SOLVED cphulkd much too agressive

Forgive me if I am way off base here, but I thought that cPHulk only triggered on failures

Even if you are using an IP dynamically assigned by your ISP to connect to you email accounts, I should have thought that successful connections would not count toward a cPHulk block.

Perhaps one, or more, of your clients is intermittently failing to authenticate for some reason ?

Also check that the issue is not being caused because your host has configured cPanel to require IMAP/POP and SMTP to use username and password authentication. You may find that the act of sending is what is triggering the failure.

Similarly, if you are relying on it, check that the host has not disabled 'Pop-before-SMTP' (Allow users to relay mail if they use an IP address through which someone has validated an IMAP or POP3 login within the last hour)

The only other consideration is that, since I believe that cPHulk blocks ALL logins to the account once triggered, I wonder if you are just getting caught up in a general brute force attack on the account ?

HTH

 

Hi,

It may not be cphulk. but the actual firewall that may be monitoring the connection to the port. If you have only a cPanel account, then I doubt that they will relax firewall settings for you, especially on a shared server.. You have to limit the number of connections you make if your host does relax settings for you..