Articles on: Direct Admin

How to Detect and Prevent Brute Force Login Attacks in Direct Admin

A common method of gaining access over a server is to use a technique called a brute force attack, or dictionary attack. What the attacker will do, is use a script to try and login to an account with every possible password combination. This tends to require tens of thousands of login attempts, but eventually, the right combination will be found, and they can login normally.

Source: http://help.DirectAdmin.com/item.php?id=404


To prevent this, we can use brute force login detection system.

Login to DirectAdmin as admin.


Select Administrator Settings under Extra Features.




Tick on Blacklist IPs for excessive DA login attempts and you can use 10-20 value for login attempts.



Make sure to tick on Prevent 127.0.0.1 from being Blacklisted. Select on Save.

Updated on: 12/11/2018

Was this article helpful?

Share your feedback

Cancel

Thank you!