CyberLS Systems / IndSoft
Please Login or Register

Knowledgebase

cPHulk Brute Force Protection

cPHulk protects your vital services by disabling authentication to those services after a brute force attack is detected. It protects: cPanel, WHM, SSH, FTP, IMAP, and POP3 from brute force authentication attacks. cPHulk will remain transparent to the attacker whose authentication attempts will feel normal, even while authentication is disabled. Thus, you can get substantial information about the attack. You can even customize authentication thresholds and lock out times!

 

Login to WHM and select cPHulk brute force protection option from the left menu

  1. Click Enable.
  2. Select the Configuration Settings tab.
  3. In the first field, define the number of minutes you would like to lock out a remote IP when it reaches the failure limit.
  4. In the second field, define the number of minutes you would like to lock an account when it reaches the failure limit.
    • Use caution when setting this limit as its net effect is to prevent anyone from accessing that account, even the user to whom it belongs.
  5. Define the failure limit for accounts in the third field.
  6. Define the failure limit for suspected attacker IP addresses in the fourth field.
  7. Define the failure limit before the IP is blocked for a 2-week period in the fifth field.
  8. Use the checkboxes to determine:
    • Whether you will receive notifications upon successful root login when the IP is not whitelisted.
    • Whether to extend lockout time for each additional failure past the limit.
    • Whether you will receive notifications when a brute force attack is detected.
  9. Click Save.


Was this answer helpful?

Add to Favourites Add to Favourites

Print this Article Print this Article

Also Read
WHM: Transfers (Views: 1088)
WHM: Resellers (Views: 1044)
WHM: Packages (Views: 1022)

Powered by WHMCompleteSolution

Quick Navigation

Live Help

Live Help

Client Login

Email

Password

Remember Me

Search



Follow Us on Twitter