Loading...

Knowledge Base
Up to 75% off on hosting for WordPress websites and online stores

VPS & Dedicated Hosting: cPHulk Brute Force Protection

Have you heard of cPHulk Brute Force Protection? It's a lifesaver for your VPS or dedicated server. cPHulk is software designed to protect your server from brute force login attempts. It does this by blacklisting IP addresses that have too many failed login attempts within a short period. In this guide, we'll walk you through the steps to set it up and protect your server from those pesky brute-force attacks.

Warning: When enabling cPHulk, you must whitelist your IP address so that you do not block yourself from your server. If you believe you have been blocked from your server, please refer to the Whitelisting in cPanel section.

Note: If you need your IP address, it can be found at Bluehost/ip



Enable cPhulk

To enable cPHulk, you will need to be logged into WHM. If you have not done this before, please see Log in to WHM. Once logged in:

  1. Look for the Security Center section in the category list and click on cPHulk Brute Force Protection.
    WHM Search Security Center
    Alternatively, you can manually locate and expand the Security Center in the Tools section below the WHM home page and click on cPHulk Brute Force Protection.
    WHM Search Security Center
  2. Toggle OFF to ON beside cPHulk is Disabled.
    WHM Search Security Center Enable cPHulk
  3. The status should say cPHulk is Enabled.
    WHM Search Security Center Enable cPHulk

Whitelisting your IP address

These steps will explain how-to whitelist an IP address. Whitelisted IP addresses will never be blocked by cPHulk.

  1. Click the Whitelist Management tab.
    WHM Whitelist Management tab
  2. Enter your IP address in the New Whitelist Records entry field and click Add.
    WHM Whitelist Management add IP

Whitelisting in cPanel

If you have been blocked from WHM or any other login on your server, you may still login to your Bluehost cPanel and whitelist your IP address.

Important: If you need your IP address, it can be found at www.Bluehost.com/ip

  1. Log in to your Bluehost cPanel
  2. If you are not already on the hosting page, click the hosting link at the top.
  3. Click the performance link underneath the hosting tab.
  4. Click the system console link.
  5. Log in with root as your username and your root password.

    Note: If you aren't sure of the root password, please see: Setting your Root password.
    When typing in the password, the console will not act as if anything is being entered. This is done purposefully for security. Type your password carefully and hit enter as normal.

  6. Once you are logged into the console, run enter this command:
              /scripts/cphulkdwhitelist YOUR-IP

    Note: Please replace YOUR-IP with your actual IP address.

  7. Next, run this command:
              mysql cphulkd -e "delete from brutes where ip='YOUR-IP'"

    Note: Please replace YOUR-IP with your actual IP address.

  8. Your IP address should now be whitelisted. Finally, enter this command to close the console.
              exit

Blacklisting IP Addresses

  1. Click the Blacklist Management tab.
    WHM Black Management tab
  2. Enter the IP address into the Blacklist (Rejected IP list) entry field and click Quick Add.
    WHM Black Management Blacklist IP

Summary

cPhulk Brute Force Protection is one of the most important tools that prevent unauthorized login attempts to your server. To do this, you will have to log in to WHM and access the Security Center to activate cPHulk. Make sure you whitelist your IP address so you are not blocked. Use the WHM Blacklist Management tab to blacklist. It's that simple, and with these easy steps, your VPS or dedicated server will be well-protected from brute-force attacks.

If you need further assistance, feel free to contact us via Chat or Phone:

  • Chat Support - While on our website, you should see a CHAT bubble in the bottom right-hand corner of the page. Click anywhere on the bubble to begin a chat session.
  • Phone Support -
    • US: 888-401-4678
    • International: +1 801-765-9400

You may also refer to our Knowledge Base articles to help answer common questions and guide you through various setup, configuration, and troubleshooting steps.

Did you find this article helpful?

 
* Your feedback is too short

Loading...