Bruteforcing error in cPanel

cPanel has a daemon that checks for unsuccessful logins (like lastb on a shell), it is called hulk.

When a user’s user (a customer’s client who bought access to the server) has an error regarding bruteforcing and denying access it’s because someone was bruteforcing his way in using that user’s username.

To make sure of this, log into the server via ssh then:

1.Run mysql

mysql

2.Connect to hulk’s DB

connect cphulkd

3.Check the times and tries that are logged

select IP, BRUTETIME from brutes order by BRUTETIME;
select IP, LOGINTIME from logins order by LOGINTIME;

Both will show the bruteforcing dates and ips that tried to access the server.

The solution is to change the user’s username to something different, try to avoid disabling the bruteforcing protection.

  • 105 Users Found This Useful
Was this answer helpful?

Related Articles

Direct emailing

Direct email delivery is disabled on the network for server packaged ordered after 5/15/2012....

Check and open ports in CentOS / Fedora / Redhat

  If you want to open or close a port for a Linux firewall you have to edit the rules in the...

Get started with your Control Panel (Webmin/cPanel)

  Webmin: Webmin is disabled by default, you will have to enable it: - Access the server via...

Run File System Check in Linux

  # fsck fsck is used to check and optionally repair one or more Linux file systems....

How to restart Webmin

Here is a little helper if your Webmin does not respond. Just run this command from the...