The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Password Recovery Files Directory Question

Discussion in 'Security' started by drumbsd, Apr 29, 2016.

  1. drumbsd

    drumbsd Registered

    Joined:
    Apr 28, 2016
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Florence
    cPanel Access Level:
    Root Administrator
    Hello I'd like to know how the files located in /var/cpanel/passreset/ can affect the recovery password by email and what happens if they Will be modified by hand. Furthermore is it possible to know where, if they are present, temporary blocked IP address are saved? Cpanel 54 on cloudlinux 6.6 many thanks in advance
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    648
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello,

    A file that matches the username of the account is generated within /var/cpanel/passreset/ when a user enters their username for the first time at the interface presented when clicking on "Reset Password" on the cPanel login interface. Removing this file before the user enters the security code provided in the email notification (assuming the user enters the correct contact email address) will require the user to begin the password reset process again.

    Could you specify which particular application you are referring to that blocks the IP addresses?

    Thank you.
     
Loading...

Share This Page