Results 1 to 7 of 7
  1. #1

    Thumbs up brute force security help


    I have a dedicated server running red hat, I have noticed in the WHM panel that there is a brute force software that only works for all the logins linked to the server cpanel/WHM.
    In my future website in PHP I will have 5 different types of logins, do you know a free software my web developers could link to each logins in order to protect them against password crakers/brute force attacks? Something easy to install.

    Many Thanks,


  2. #2
    Join Date
    May 2009

    CPHulk shoud be able to do it for various services:

  3. #3
    Thanx mate,

    I am going to have a look at it now



  4. #4
    Join Date
    Mar 2005
    Costa Rica
    CPHulk works perfecly for us.

  5. #5
    Do you know anywhere a good tutorial in order to install CPhulk in a php website rather than in wmh or cpanel?

    Many Thanks,


  6. #6
    Brute force never worked for us for the application you describe.

  7. #7
    ok I got a little trick from the server provider
    Some guys from the server support told me to password protect the page I wanted to secure, not the full directory but only a single file by adding a .htpasswd file with md5 encrypted code and this code on the .htaccess:
    <FilesMatch "index.php">
    order deny,allow
    #deny from all
    allow from 333.333.333.333
    allow from 111.222.333.333
    AuthName "Please Login"
    AuthType Basic
    AuthUserFile /home/mysite/public_html/.htpasswd
    Require valid-user

    By having this, I and my programmers(living in a different country) can access the site admin panel, now by password protecting the site this way,apparently a log will be created each time a user logs in, the brute force software then anaylise all the server logs every(whatever time it is set at), if it sees an ip trying to access this protected page many time,the brute force will then kick this ip out.

    This is a great method to protect your admin site page apparently.

    so now I have to login page, one password protected by the .htpasswd and then my own admin login page, if the guys can pass through both then he is a kind of god......

Similar Threads

  1. Someone is trying to brute force my FTP!
    By Tomdarkness in forum Hosting Security and Technology
    Replies: 1
    Last Post: 11-07-2006, 03:20 PM
  2. Brute Force
    By Dave W in forum Hosting Security and Technology
    Replies: 2
    Last Post: 09-14-2006, 01:54 PM
  3. Brute force on FTP
    By bdmorrison in forum VPS Hosting
    Replies: 6
    Last Post: 07-03-2006, 02:49 PM
  4. brute force
    By Ten X in forum Hosting Security and Technology
    Replies: 1
    Last Post: 01-27-2005, 02:26 PM
  5. Protecting against brute force
    By ewhost in forum Hosting Security and Technology
    Replies: 13
    Last Post: 08-17-2004, 12:27 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts