Leech Protection interface allows you to detect unusual levels of activity in password-restricted directories. After you set the maximum number of logins within a two-hour period, the system redirects or suspends users who exceed it. This is useful if, for example, someone posts a user’s login credentials on a public site.
To enable Leech Protection or a directory, access cPanel >> Home >> Security >> Leech Protection and perform the following steps:
- The Leech Protection window will appear. Select which of the four main directories you wish to view in the file window:
- Home Directory (
/home/user) - Web Root (
/public_html/www) - Public FTP Root (
/public_ftp) - Document Root (
/public_html)
- Home Directory (
- Select the directory that you wish to protect.
- Click the appropriate folder icon () to navigate to a different folder.
- Click the desired folder’s name to select it.
- Enter the maximum number of logins that you wish to allow each user within a two-hour period.
- To redirect users who exceed the maximum number of logins within a two-hour period, enter a URL to which you wish to redirect them.
- To configure the system to send an email alert when Leech Protect activates, select the Send Email Alert To check box. Then, enter the email address to alert.
- To disable an account that exceeds the maximum number of logins, select the Disable Compromised Accounts check box.
- Click Enable.
To disable leech protection, perform the following steps:
- The Leech Protection window will appear. Select which of the four main directories you wish to view in the file window:
- Home Directory(
/home/user) - Web Root (
/public_html/www) - Public FTP Root (
/public_ftp) - Document Root (
/public_html)
- Home Directory(
- Select the directory that you wish to protect.
- Click the appropriate folder icon ()to navigate to a different folder.
- Click the desired folder’s name to select it.
- Click Disable.