cphulk brute force protection
I get flooded from time to time with emails alerting me to cphulk brute force protection events.
Brute Force attempt against "support@ch[redacted by poster in this forum]m".
A device at the "193.53.83.205" IP address has made a large number of invalid login attempts against the account "support@ch[redacted by poster in this forum]m". This brute force attempt has exceeded the maximum number of failed login attempts that the system allows. For security purposes, the system has temporarily blocked this IP address in order to prevent further attempts.
Now, the hacker simply moves on to somebody else's server and keeps trying. It is also a pain in the neck to keep clicking the links to block the IP addresses permanently, and blocking large numbers of IP addresses means people there cannot visit the websites.
What cPanel people need to do is offer the option to block the IP address, (in such a way that only cPanel could do it) from all servers using cPanel, for perhaps two hours. The owner of the internet cafe would soon realize that everybody gets locked out of large numbers of websites every time that guy comes in. Let other webmasters (such as big search engines) have access to the alerts as well, so they can lock out that IP address. When you're on vacation in Azerbaijan you would have to go to whatismyip.com and learn the IP address where you are, and then whitelist that before you begin working on your own website.
-
Hello :) Please open feature requests on our official feature request page at: Submit A Feature Request This is the best way to get visibility from our developers and receive feedback from other users. Thank you. 0
Please sign in to leave a comment.
Comments
1 comment