cPanel & WHM Version 94 has been released, and brings a slew of great updates. Take a look at what is included, and then upgrade today!

Add ability to automatically clear cphulkd on password resets

Matt Sheldon shared this idea 6 years ago
Completed

A common instance that occurs is someone forgets a password (a cPanel user/reseller) and requests a password reset, but has already gotten blocked by cpHulkd by the time they ask for the reset. When the password is reset, it doesn't clear the associated failed logins, so the user still can't login which leads to additional wasted support time for whatever administrator or reseller is handling the reset request.

There are a few ways of handling this:

1) The simplest but dirtiest is to just clear all cphulk blocks for a user when resetting that user's password via WHM. This is easy to implement, but is a little less security conscious since it at least temporarily allows actual bad IPs from previous blocks to attempt bruting again. An option for this could be to only do the clear for blocks that occurred in the last [X hours or days] as deemed appropriate.

2) A more complicated but nicer way would be to add a list of blocked IPs that shows up when a user is selected on the password modification form, allowing the admin to check off certain ones to be removed during the reset ... some sort of 'The following IPs have been blocked recently for incorrect logins for this account' type advisory that comes up below or next to the password entry section.

Best Answer
photo

This is scheduled for 11.52: We will remove the list of blocked ips / failed logins for the user when root reset's the user's password or they use the password or password reset tool

Comments (1)

photo
1

This is scheduled for 11.52: We will remove the list of blocked ips / failed logins for the user when root reset's the user's password or they use the password or password reset tool

Replies have been locked on this page!