I've verified that the password that /etc/cron.hourly/modsecparse.pl has the sameword as the db.
mysql> select password from user where user='modsec';
+-------------------------------------------+
| password |
+-------------------------------------------+
| *0A3EBB...........2D47 |
+-------------------------------------------+
1 row in set (0.00 sec)
mysql> select password('B..........b');
+-------------------------------------------+
| password('B..........b') |
+-------------------------------------------+
| *0A3EBB..........2D47 |
+-------------------------------------------+
1 row in set (0.00 sec)
Does the WHM interface use a different password?
mysql> select password from user where user='modsec';
+-------------------------------------------+
| password |
+-------------------------------------------+
| *0A3EBB...........2D47 |
+-------------------------------------------+
1 row in set (0.00 sec)
mysql> select password('B..........b');
+-------------------------------------------+
| password('B..........b') |
+-------------------------------------------+
| *0A3EBB..........2D47 |
+-------------------------------------------+
1 row in set (0.00 sec)
Does the WHM interface use a different password?