Skip to main content

lfd sshd bruteforce

Comments

4 comments

  • triantech
    Hey, Changing the SSH port to a custom one should reduce the number of brute-force attacks which you get. The above one which you posted is towards your mail-server. There is always these sort of attacks and the good thing is your LFD / CSF is blocking these sort of attacks ( as you can see from the above logs ). The IP which attempts to give in 5 login credentials in a row within a time-frame of 3600 seconds is blocked permanently. Just make sure you dont have accounts such as test@domain.com with weak passwords. Make sure your passwords are strong and complex enough. These sort of attacks happen everytime.
    0
  • 24x7ss
    Yes, logs shows that attack is on your mail server. Set complicated password for that account or if that email account is present on the server then disable it temporary.
    0
  • knight_dedy
    is there are other step for defends smto auth and imap? besides of make strong password for email?
    0
  • cPanelMichael
    Hello, The best options available to you are to use strong passwords, install a third-party firewall management tool such as CSF/LFD, and to enable cPHulk brute force protection. Thank you.
    0

Please sign in to leave a comment.