Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Host Access Control Irregularity?

Discussion in 'Security' started by cornishman33, Aug 3, 2017.

  1. cornishman33

    cornishman33 Member

    Joined:
    Jun 25, 2014
    Messages:
    8
    Likes Received:
    1
    Trophy Points:
    3
    cPanel Access Level:
    Root Administrator
    Hello. I have encountered a situation that I don't understand.
    I have denied Host Access Control to webmaild, imap, pop3 and smtp for "ALL" apart from five IP's.
    I applied the "Allowed" IP's first, then the "Deny's" so I believe they are entered correctly. We tested it by getting staff NOT in the whitelist to try to access those areas, and hey! they were blocked. Good so far.
    This morning, the cPHulk History reports were full of login attempts (about 40) to service "Mail" authentication service "Dovecot". Have I misunderstood it, or have I done something wrong?

    Any suggestions would be sincerely appreciated.
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,425
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    Could you provide an example of one of the cPHulk entries that was listed in the history reports? Ensure to replace real domain names and IP addresses with examples.

    Thank you.
     
  3. cornishman33

    cornishman33 Member

    Joined:
    Jun 25, 2014
    Messages:
    8
    Likes Received:
    1
    Trophy Points:
    3
    cPanel Access Level:
    Root Administrator
    Hello, here are a couple of the entries from the cPHulk log file.
    I now see that even though the IP's are recognised as blacklisted they still appear within the cPHulk history list.
    I had assumed that IP's that were not in the list would simply be blocked, without being added to the list, I was obviously wrong.
     
    #3 cornishman33, Aug 3, 2017
    Last edited by a moderator: Aug 3, 2017
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,425
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
  5. cornishman33

    cornishman33 Member

    Joined:
    Jun 25, 2014
    Messages:
    8
    Likes Received:
    1
    Trophy Points:
    3
    cPanel Access Level:
    Root Administrator
    ... and very many thanks for your time.
     
Loading...

Share This Page