Repeated brute force attempts
Hi, my website has been a target of multiple brute force attempts for some reason. I always get an email to add the appropriate entry to the blacklist or whitelist. Does anyone know why this might be? Also, is there any way I can automatically have an IP address from multiple brute force attempts added to the blacklist? Thanks!
-
I get over 100 daily Email for brute force attempt on my servers, Earlier i was also concerned on this but now it's a usual thing to happen. What you need to do is Enable CPHULK brute force protection and configure setting a little. See these images for a sample configuration, you no need to keep these same like mine. i.imgur.com/XsgNbCd.jpg i.imgur.com/kPHrHXg.jpg Also install CSF firewall 0 -
Hello :) You can enable "Block IP addresses at the firewall level if they trigger brute force protection" via "WHM Home >> Security Center >> cPHulk Brute Force Protection" if you want to also block IP addresses in your firewall when they reach the maximum failure limit. In addition, a firewall management utility such as CSF may help to prevent these types of attacks. Thank you. 0
Please sign in to leave a comment.
Comments
2 comments