Cantech Knowledge Base

Your Go-To Hosting Resource

  1. WHM
  2. How to Configure cPHulk Brute Force Protection in WHM?

How to Configure cPHulk Brute Force Protection in WHM?

Hackers often use automated scripts that attempt to crack your server passwords. This form of attack is known as a brute-force attempt. cPHulk is an in-built tool in WHM that blocks the IP addresses of the attackers to prevent such attacks.

This application monitors the attempts to log in to services like SSH, FTP, and the cPanel interface. It secures your server against intruders and protects your data. You can manage this security feature easily from your administrator dashboard.

What is cPHulk Protection?

cPHulk is a firewall that logs unsuccessful logins on your server. In case a user or an IP address does not log in on several occasions, the system blocks the address. This prevents hackers who may be attempting to crack thousands of password combinations to gain access to your account.

It is possible to establish certain rules for the duration of the IP block. Whitelisting your office IP in the system can prevent the unintentional lockouts as well. Cantech offers a high-level of security hosting in which cPHulk works with other firewalls to offer maximum security.

Steps to Turn On cPHulk in WHM

This security service requires root administrator access. These are the steps to follow to enable the protection of your server.

  • Log in to WHM: Access your control panel with your root username and password.
  • Go to Security Center: Locate the Security Center in the left-hand navigation menu. This category includes a number of tools for your server security.
  • Click on cPHulk Brute Force Protection: Click on the cPHulk Brute Force Protection link. See the current condition of the service on the following page.
  • Toggle the Button to ON: The main toggle switch is located at the top of the page. With this button, change the status to ON and activate the protection.
  • Customize Your Settings: A number of configuration and management tabs will now become active. Here you can adjust the number of allowed failed attempts. We recommend using the default values to have the optimal balance of security.
  • Save the Configuration: Go to the bottom of the page in case you made any changes manually. Click the Save button to configure your new settings on the server.

Conclusion

cPHulk is an essential defense mechanism for all WHM server owners. It operates in the background to prevent the success of password-guessing bots. This feature is one of the simplest to enable your overall server safety.

Frequently Asked Questions

What happens if I forget my password and get blocked?

cPHulk will block your IP address after a few unsuccessful attempts. You are able to sign in using another internet connection or IP to unblock the original address. Alternatively, the Cantech support team can clear the block via the backend.

Does cPHulk secure my email accounts as well?

Yes, the system defends against brute force attacks on IMAP, POP3, and SMTP services. This ensures that your individual email users are not at risk from hackers who may be attempting to crack their email passwords. It provides a comprehensive shield for all login-based services.

Can I whitelist my own IP address?

Yes, it is possible to visit the Whitelist Management tab within the cPHulk settings. Add your public IP address there and click the Add button. The system will not block your IP, no matter the number of times you fail to log in.

Will cPHulk slow down my server logins?

cPHulk is an extremely lightweight service, and it has no impact on your server performance. It will only process data when a login attempt is done into the system. You will not find a delay in your daily routine job.

May 19, 2026