Checking the Plesk control panel log

Requests for RPMS, or new coding projects related to server administration, Plesk, security, or anything else you can think of.
biggles
Forum Regular
Forum Regular
Posts: 806
Joined: Tue Jul 15, 2008 2:38 pm
Location: Sweden
Contact:

Checking the Plesk control panel log

Unread post by biggles »

I have recently seen an increased activity trying to brute force the Plesk Control panel. What do you think about a tool that scans the log file and blocks intruders?
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:

Unread post by scott »

We totally had something for that, and then they changed the daemon to lighttpd :P
biggles
Forum Regular
Forum Regular
Posts: 806
Joined: Tue Jul 15, 2008 2:38 pm
Location: Sweden
Contact:

Unread post by biggles »

Damn those pleskers... :wink:
User avatar
mikeshinn
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 4149
Joined: Thu Feb 07, 2008 7:49 pm
Location: Chantilly, VA

Unread post by mikeshinn »

We're working on an alternative though. Either proxy on the plesk server so its no longer exposed to the broader Internet and run it through apache so we can control all access to it or ossec to catch the event and shun. In the short term, you could do that now manually as we're not quite ready to open the flood gates on that one.

Realistically we'll eventually have to do both to protect the plesk service with modsec rules.
Post Reply