1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

Does Plesk admin login block brute force attacks, or do i need fail2ban

Discussion in 'Plesk 9.x for Linux Issues, Fixes, How-To' started by Dan Mikkelsen, Dec 22, 2010.

  1. Dan Mikkelsen

    Dan Mikkelsen Basic Pleskian

    21
     
    Joined:
    Oct 13, 2010
    Messages:
    50
    Likes Received:
    0
    Hi

    I have installed fail2ban and it is successfully blocking bruteforce attacks on SSH, but what about bruteforce attempts on the plesk admin login? Does plesk take some precautions on this? (if not, that might be a suggestion). Or should 3rd party applications be used for this, because i have no idea on how to set up fail2ban for this (not a linux pro unfortunately), but it seems to be the application of choice for this.
     
  2. IgorG

    IgorG Forums Analyst Staff Member

    49
    24%
    Joined:
    Oct 27, 2009
    Messages:
    24,557
    Likes Received:
    1,242
    Location:
    Novosibirsk, Russia
    Look at Settings -> Restrict Administrative Access
     
  3. Dan Mikkelsen

    Dan Mikkelsen Basic Pleskian

    21
     
    Joined:
    Oct 13, 2010
    Messages:
    50
    Likes Received:
    0
    Thanks, but this just let me block specific IP addresses. What I was concerned about was if Plesk automatically blocks attempts for some minutes or so when you have entered the wrong information enough times. Or can a person keep trying until I block him myself after checking logfiles (which isn't often).
     
  4. IgorG

    IgorG Forums Analyst Staff Member

    49
    24%
    Joined:
    Oct 27, 2009
    Messages:
    24,557
    Likes Received:
    1,242
    Location:
    Novosibirsk, Russia
    Only 5 attempts of login is allowed.
     
  5. Dan Mikkelsen

    Dan Mikkelsen Basic Pleskian

    21
     
    Joined:
    Oct 13, 2010
    Messages:
    50
    Likes Received:
    0
    Thanks!

    Now i can rest easy again :)
     
  6. Amin Taheri

    Amin Taheri Golden Pleskian Plesk Certified Professional

    33
     
    Joined:
    Jul 5, 2007
    Messages:
    1,398
    Likes Received:
    1
    Location:
    Seattle Area
    You should still look into using something like denyhosts, mod_evasive, fail2ban or something like that - otherwise an attacker could just keep trying once they get unlocked, or worse, keep trying for every and the admin account will always be locked in that you cant get in anymore.
     
  7. Dan Mikkelsen

    Dan Mikkelsen Basic Pleskian

    21
     
    Joined:
    Oct 13, 2010
    Messages:
    50
    Likes Received:
    0
    If have fail2ban installed, but i don't know how to connect it to PLESK.

    I can't sem to find any info on this.
     
  8. Amin Taheri

    Amin Taheri Golden Pleskian Plesk Certified Professional

    33
     
    Joined:
    Jul 5, 2007
    Messages:
    1,398
    Likes Received:
    1
    Location:
    Seattle Area
    hvae it look at the logs, I think the acces_log or error_log should log failed login attempts
     
Loading...