VPS & Dedicated Hosting: cPHulk Brute Force Protection
This article will cover the use of cPHulk. cPHulk is software designed to protect your server from brute force login attempts. It does this by blacklisting IP addresses that have too many failed login attempts within a short period.
To enable cPHulk, you will need to be logged into WHM. If you have not done this before, please see Log in to WHM. Once logged in:
- Look for the Security Center section in the category list and click on cPHulk Brute Force Protection.
Alternatively, you can manually locate and expand the Security Center in the Tools section below the WHM home page and click on cPHulk Brute Force Protection.
- Toggle OFF to ON beside cPHulk is Disabled.
- The status should say cPHulk is Enabled.
These steps will explain how-to whitelist an IP address. Whitelisted IP addresses will never be blocked by cPHulk.
- Click the Whitelist Management tab.
- Enter your IP address in the New Whitelist Records entry field and click Add.
If you have been blocked from WHM or any other login on your server, you may still login to your Bluehost cPanel and whitelist your IP address.
- Log in to your Bluehost cPanel
- If you are not already on the hosting page, click the hosting link at the top.
- Click the performance link underneath the hosting tab.
- Click the system console link.
- Log in with root as your username and your root password.
- Once you are logged into the console, run enter this command:
- Next, run this command:
mysql cphulkd -e "delete from brutes where ip='YOUR-IP'"
- Your IP address should now be whitelisted. Finally, enter this command to close the console.
- Click the Blacklist Management tab.
- Enter the IP address into the Blacklist (Rejected IP list) entry field and click Quick Add.