Can't login to anything with the correct password?
I have this weird issue right now that even immediately after changing root password I can't login to the server. In fact I can't login to anything.
This has happened before to me months ago and the server kinds of restore itself to normal after a few hours.
But this shouldn't be happening.
Has anybody experienced this before?
-
Hello :) Is cPHulk enabled on this system? If so, it's possible the "root" user has been locked out due to a brute force attempt. You can try temporarily stopping the cphulkd service if you have shell access with this command: /usr/local/cpanel/etc/init/stopcphulkd
Thank you.0 -
[QUOTE]I have this weird issue right now that even immediately after changing root password I can't login to the server. In fact I can't login to anything. This has happened before to me months ago and the server kinds of restore itself to normal after a few hours. But this shouldn't be happening. Has anybody experienced this before?
This can be off different possibilities. 1. Your local ISP ip may be blocked at cpHulkBruteForce at your server - As cPanelMichael said, try stopping the cpHulkBruteForce temporary and recheck. To do so, try in console # /usr/local/cpanel/etc/init/stopcphulkd or through WHM as root => cpHulkBruteForce => Disable cpHulkBruteForce 2. Your local ISP ip might be blocked in your server's firewall. If you're using CSF as cPanel server's firewall, try stopping csf temporarily and check with your ip address in the csf firewall's deny list whether actually blocked ? 3. If you still can't login to the server from different ip address, then probably your server is under [COLOR="#FF0000">RED Alert !!! Suspect Hacked. Check with the Server administrator and remove the hacker and make your server more secure.0 -
I think the cPanel team must seek an alternative to cPHulk. Maybe reCaptcha or otherwise. From time to time I have had to disable cPHulk, as it constantly does not let me in WHM. And then my server is unprotected. The ips are dynamic in my country. I can never use the same ip. So I can not put my ip in the whitelist. So all the time I have problems with all my servers. And I can not enter. [quote="cPanelMichael, post: 1460311">Hello :) Is cPHulk enabled on this system? If so, it's possible the "root" user has been locked out due to a brute force attempt. You can try temporarily stopping the cphulkd service if you have shell access with this command: /usr/local/cpanel/etc/init/stopcphulkd
Thank you.
Right now I can not enter in a new VPS. And I have to ask the ISP to give me access. I try to access my account via SSH, to stop the cphulkd service, but I can get it, I also blocked there. cPanel for me is the best control panel. But this problem is already getting tired.0 -
Just disable cPhulk and use CSF/LFD or another functional brute force detection. cPhulk is a nuisance at best. 0 -
Thank you, quizknows. I will try install CSF/LFD. Greetings. 0
Please sign in to leave a comment.
Comments
5 comments