What is cPHulk Brute Force Protection and How to Enable it?

cPHulk is a security feature,protected from Brute Force attack and it found only on cPanel based Linux servers.
cPHulk locks down the cPanel and WHM logins, SSH (shell/root access) logins, FTP logins, and IMAP/POP3 (mail) logins. These primary services are closed down, Once a set number of failed login attempts has been reached. cPHulk will prevent any further login efforts from the IP address that had been trying them, for a set number of your time.
As your server is opened to the whole Internet, this allows for anyone to attempt to sign in to your various services such as cPanel, WHM, FTP. A common sort of attack to try to get access to the server is called a brute force attack,It consists of systematically checking all possible keys or passwords until the correct one is found.
It’s secure to blacklist whole blocks of IP details such as a certain country, without having to fear about customers from those IPs not being able to access your sites. They will be simply denied when try to access or login cPanel core services.
If you’ve unintentionally got locked out due to this security, you can check my post to fix cPHulk Brute Force Protection lock out.

How to Enable cPHlk brute force protection:

  • In order to enable cPHulk protection Login to WHM as a root user.
  • Type cPHulk in find box


  •  Simply click on Enable at the top.
  • You can modify the options in the Configuration Settings tab to adjust how cPHulk will work.