On every server I set up, it always ends within a few days that an indeterminable number of foreign servers have pounded enough on the server login to lock-out the "root" login account (and several others), and continue to do so such that the accounts stay locked indefinitely. Essentially this turns cphulkd into a DDoS assistance toolkit.
I don't mind the idea of blacklisting IP addresses -- there's nothing wrong there. But I need to be able to disable the per-account lockout functionality. I though that setting "Maximum Failures By Account" to "0" would do this. But it apparently does not -- it instead locks out accounts after the first login failure.
Is there a way to disable the account lockout function? Or do we just have to throw away cphulk completely?
Also, for the love of all that's holy, don't suggest whitelists. It doesn't solve the problem, just pushes it around a little.
disable cphulk per-account blacklists
Cpanel Blog Directing http to https May,2012
Rabu, 06 Juni 2012
[Cpanel Blog] disable cphulk per-account blacklists June,2012
Diposting oleh Bimo Hery Prabowo di 07.32
Langganan:
Posting Komentar (Atom)
0 komentar:
Posting Komentar