How to block Incorrect authentication data?

aboyz

• August 23, 2018 10:46

Anyone know how to auto block 535 Incorrect authentication data from the exim_mainlog? I see IP coming in and trying to login as the user email address. Is there a way to set it so if login failed from a source IP > 5, BAN that IP. is there a way to do that? thanks

• 

  sysnishit

  • August 24, 2018 06:26

  Hello, Install Config security firewall and configure to block, if login failed from sources IP > 5. Setting for pop3 : If login failed > 5 block source IP. Same setting available for IMAP as well. LF_POP3D = 5 LF_POP3D_PERM = 1 LF_SMTPAUTH = 5 LF_SMTPAUTH_PERM = 1

  0
• 

  cPanelLauren

  • August 24, 2018 19:18

  Hi @aboyz You can also try cPHulk Brute Force Protection which is built into cPanel. You can read the documentation here cPHulk Brute Force Protection - Version 74 Documentation - cPanel Documentation

  0

Please sign in to leave a comment.