cPanel & WHM Version 98 has been released, and brings a slew of great updates. Take a look at what is included, and then upgrade today!

Target IP Shown in Hulk report Email

Drake shared this idea 7 years ago
Completed

Hello cPanel. I'd like to suggest a minor enhancement of the Hulk report emails to also include the IP and/or Hostname of the asset that is being attacked. Currently it shows (system) or (mail), and the offender's IP + R-dns lookup, but what IP of a couple hundred on a server is the target? Though it can be located by pouring through log files, it would be really convenient to have that target IP at a glance of the Hulk email.

Thanks. Drake P. NJ, USA

Best Answer
photo

This is now available in 11.48+

We plan on adding this in 11.48 with internal case 138749

Replies (2)

photo
1

I wrote too soon before I thought of a couple of other details that might well be included in my suggestion along with the brute Target IP being included in the warning email.


If cPanel accepts my suggestion, please consider also adding the Target :port # and the protocol utilized (eg. http / telnet /ssh / ftp / and so on) . The protocol would be helpful as well because you can telnet or ssh on any port to any port as well as ftp, http, etc.


The more brute diagnostic info that is viewable at a quick glance of the email warnings, the better and easier to spot an emerging pattern (or) a an area of services that a sys-admin might want to harden a bit more.


Thanks again.


Drake P.

photo
1

This is now available in 11.48+

We plan on adding this in 11.48 with internal case 138749

Replies have been locked on this page!