Page 1 of 1

Checking the Plesk control panel log

Posted: Sat Dec 20, 2008 4:33 pm
by biggles
I have recently seen an increased activity trying to brute force the Plesk Control panel. What do you think about a tool that scans the log file and blocks intruders?

Posted: Sun Dec 21, 2008 11:09 am
by scott
We totally had something for that, and then they changed the daemon to lighttpd :P

Posted: Sun Dec 21, 2008 2:22 pm
by biggles
Damn those pleskers... :wink:

Posted: Sun Dec 21, 2008 6:51 pm
by mikeshinn
We're working on an alternative though. Either proxy on the plesk server so its no longer exposed to the broader Internet and run it through apache so we can control all access to it or ossec to catch the event and shun. In the short term, you could do that now manually as we're not quite ready to open the flood gates on that one.

Realistically we'll eventually have to do both to protect the plesk service with modsec rules.