Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

howto prevent outgoing brute-force attacks

Discussion in 'Security' started by wgalafassijr, Nov 23, 2016.

  1. wgalafassijr

    wgalafassijr Active Member

    Joined:
    Jun 23, 2005
    Messages:
    25
    Likes Received:
    0
    Trophy Points:
    151
    Hi,

    Recently i have 2 security incidents caused by outdated software used by our customers (shared server).
    In both cases an outdated joomla installation permit code execution and my server was been used to try brute-force attacks to others servers wordpress.
    Something like this: Detecting WordPress Outbound Bruteforce attack
    My question is how is possible to prevent and detect this. What is the best way to deal with this because i can't force all customers to have updated software and i believe that exist a way to sniff periodicly the traffic or check the outgoing traffic, etc...
    I'm looking for some security tool for that. Some ideas?

    Thanks for advice,
    Wilson
     
  2. SysSachin

    SysSachin Well-Known Member

    Joined:
    Aug 23, 2015
    Messages:
    568
    Likes Received:
    40
    Trophy Points:
    28
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,
    You have to scan all accounts data with maldet and calmscan regularly. For that you have to set cron.
     
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,425
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
Loading...

Share This Page