Brute-force attacks are a common way for malicious software to bypass security measures on web services. To protect against such attacks, most web servers, including those using cPanel/WHM, offer brute-force protection, also known as cPHulk. In this article, we will guide you through the process of enabling and disabling cPHulk Brute Force Protection.
Enabling cPHulk Brute Force Protection
To enable cPHulk, follow these steps:
- Log in to WHM using your server root password. You must have root access to enable or disable this feature.
- In the Security Center, look for "cPHulk Brute Force Protection."
- Click on the "cPHulk Brute Force Protection" tab and toggle the switch to enable it.
- Configure your cPHulk settings as desired and click the Save button at the bottom of the page.
Disabling cPHulk if Your cPanel Login is Being Denied
If you are unable to log in to cPanel due to cPHulk, you can disable the service by following these steps:
- Connect to your server using SSH or the Tilaa Dashboard's video display.
- Run the following commands to disable cPHulk:
SHELL Copy
whmapi1 configureservice service=cphulkd enabled=0 monitored=0 /usr/local/cpanel/etc/init/stopcphulkd /usr/local/cpanel/bin/cphulk_pam_ctl --disable - Once cPHulk is disabled, you should be able to log in to cPanel and re-enable the Brute Force Protection feature.
Preventing cPHulk from Blocking Your IP
To prevent cPHulk from blocking your IP address, you can whitelist it by following these steps:
- Open the White/Black List Management tab in Security Center > cPHulk Brute Force Protection.
- Enter your local IP address in the White List (Trusted IP List) field and click Quick Add.
By following these steps, you can effectively manage cPHulk Brute Force Protection and prevent unnecessary lockouts. Remember to always prioritize security when configuring your web server settings.