Get Paid to Participate - up to $1 per post!     Twitter     Facebook     Google+
Hosting Discussion
 

forgot password?



Reply


Old
  Post #1 (permalink)   07-19-2011, 08:21 AM
HD Newbie
 
Join Date: Jul 2011
Posts: 1

Status: fundyhosting is offline
Does anybody know of any kind of centralized firewall software that can be installed on a regular hosting account.
I manage several Joomla accounts with RSFirewall component installed and Iím constantly getting notifications that people are trying to guess user names and passwords to the admin section of the site.
I would like to be able to log into one location and add the offending IP address and have it propagate out to all my hosting accounts.
I am currently updating my .HTACCESS file on all my hosting accounts and this is very time consuming.
If anybody has any suggestions paid or free it would be much appreciated.
Thanks
 
 


Old
  Post #2 (permalink)   11-09-2011, 10:06 AM
HD Amateur
 
Join Date: Nov 2011
Posts: 82

Status: webhostingcs is offline
Hello,

Usually this is block by the hosting account that you have... If you have your own hosting you can try to use appliance based firewalls, or used software based like in linux iptables or in bsd pfsense.

Thanks!
__________________
Website - https://inext.ph
Facebook - https://www.facebook.com/inext.ph
Twitter - https://twitter.com/inextph
 
 
 


Old
  Post #3 (permalink)   11-30-2011, 05:10 PM
HD Newbie
 
Join Date: Jan 2004
Posts: 21
Send a message via ICQ to 2WDH.com Send a message via AIM to 2WDH.com Send a message via MSN to 2WDH.com Send a message via Yahoo to 2WDH.com Send a message via Skype™ to 2WDH.com

Status: 2WDH.com is offline
If you have no access to the server firewall, then you could write a small script (PHP for example) to automatically add the blocked IPs to .htaccess file and propagate it to the other accounts you have.
__________________
2WDH.com .:. Professional Hosting since 2003
 
 
 


Old
  Post #4 (permalink)   12-01-2011, 10:21 AM
HD Wizard
 
Join Date: Mar 2005
Location: Atlanta, GA
Posts: 2,264

Status: handsonhosting is offline
Depending how your web hosting is setup, this might be possible inside your hosting account.

On our hosting accounts we use ConfigServer Security & Firewall (CSF). We have the tollerences set pretty low - 5 wrong guesses, and you're blocked in the firewall for a specified amount of time. Do it again, you're blocked in the firewall on a permanent level leaving only our system admins to remove the block (if needed).

If you use cPanel, and your host allows it, you can block specific IPs from inside your cPanel. If not, you can always modify using .htaccess files and the "DENY" IP lines. This will not stop proxy attempts when they pick up a new IP.

Next in line would be using a PHP script to monitor login attempts and floods - then block the IP based on that. I'd put in a flood detection and if there's more than 2 login attempts within 10 seconds, block connections for 60 seconds or something. That's usually enough to make a script move on to another account.

I've not really worked much with Joomla, but most CMS systems have a separate admin login area. I'd password protect the entire admin folder - that'll stop anyone from getting to the admin area to guess the password in the first place. Go one step further, use .htaccess to only allow from your IP number - that'll really block anyone (but can cripple you should you need to access the admin area from another location and not have access to modify the .htaccess file).
__________________
Emerson Nogueira
http://www.HandsOnWebHosting.com
cPanel Web Hosting, Domain Registration, Managed VPS Servers
 
 
Reply

Thread Tools

New Post New Post   Old Post Old Post
Posting Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Sponsored By: