Portal Home > Knowledgebase > Articles Database > what is the best way not to block clients (CSF)
what is the best way not to block clients (CSF)
| Posted by accesspoint, 10-09-2014, 04:28 AM |
| Holah
I have always have a problem with my CSF configurations, when i get new clients for shared hosting , every time they always get themselves blocked by CSF for accessing emails using the wrong password (Its set to block at 10 failed logins)
So usually when they attempt to set it up for the first time (its rare for them to get it right the first time no matter how detailed the knowledgeable is)
So, is it a wise option to disable this feature and rely on strong passwords with a password strength higher than 80 ? (thats what its set to)
|
| Posted by MasterIP, 10-09-2014, 05:04 AM |
| Hi accesspoint,
We had the same issue and after long discussion we disabled this option in CSF config, nothing went wrong and everything seems to be working well, what I mean is that we have lowered the amount of tickets for this issue
|
| Posted by Kailash12, 10-09-2014, 06:11 AM |
| If you disable this option, it will stop blocking your clients' IPs as well as the attackers. Though you have set strong password length, if you disable this, the attack will continue until the attackers stop them.
|
| Posted by accesspoint, 10-09-2014, 07:22 AM |
| That is what i was worried about ...
|
| Posted by my247webhosting, 10-09-2014, 03:00 PM |
| You can set a limit to 15 for cpanel or 15 which is fair enough
Even if your clients fail then they need to correct it as by disabling csf you would inviting brute force attack on server
|
| Posted by Andei, 10-09-2014, 03:07 PM |
| I wouldn't disable this to be honest... how many tickets do you have that you can't handle regarding this issue? If you have staff available 24/7 it shouldn't really be an issue since unblocking an IP takes no more than 30 seconds.
Alternatively you could install a WHMCS plugin such as this one:
http://www.whmcs.com/appstore/1354/W...F-Manager.html
So your clients can basically unblock themselves.
|
| Posted by Kailash12, 10-10-2014, 05:42 AM |
| Another option is, you can prepare few articles to configure email account and include the links in your login details so that they can avoid misconfiguration.
|
| Posted by Host1Plus, 10-10-2014, 05:47 AM |
| Kailash12, I guess the automation of the process is much better than few articles, since in most of the cases misconfiguration comes first and after review of these few articles but in any case few articles is better than nothing.
|
| Posted by BeZazz, 10-10-2014, 07:46 AM |
| That is what I do.
Allowing brute force attempts is asking for trouble IMO
|
| Posted by kpmedia, 10-10-2014, 08:00 AM |
| Educate the client. Don't make yourself unsafe because they keep doing something stupid.
|
| Posted by Srv24x7, 10-10-2014, 10:27 AM |
| Hi,
I would suggest relaxing the mail login attempts that CSF is configured to. Increase the password strength and set password age policies too.
Enable the loggings too and keep a track for few days.
|
Add to Favourites 
Print this Article
Also Read
