Security

Leech Protection

Updated: 20 February 2024
cPanel Version: 118

What is Leech Protection?

The Leech Protection feature helps you notice when there's too much logging in happening in areas that need a password to enter. You can choose the highest number of times someone can log in over two hours. If someone tries to log in more times than allowed, the system can either block them or send them somewhere else.

Accessing Leech Protection in cPanel

  1. First, log in to your cPanel account.
  2. Scroll down to the Security section.
  3. Click on the icon labeled Leech Protection.

Setting up Leech Protection

  1. After clicking on the Leech Protection icon, you'll be directed to a new page where you can see a directory selection.
  2. Select the directory you want to protect by clicking on its name. If you want to navigate to a subdirectory, click on the folder icon.
  3. Once you've found the directory you want to protect, click on the Edit Button. This will bring up the Setup Leech Protection page.
  4. On this page, you can configure Leech Protection settings:
    • Number of logins per username in a 2 hour period: Define how many times a user can log in within a two-hour period. If this limit is exceeded, the system considers the user as a leech.
    • URL to redirect Leech users to: Define a URL to which users will be redirected if they are detected as a leech.
    • Email alert to you (leave blank for no email): Enter an email address if you want to receive alerts when a leech is detected. Leave this field blank if you don't wish to receive alerts.
    • Disable Compromised Accounts: Check this box if you want to automatically disable accounts that are found to be compromised.
  5. After configuring these settings, click on the Enable button to activate Leech Protection for the selected directory.

Remember

Leech Protection can be a powerful tool, but like any security measure, it isn't foolproof. Always maintain good security habits, such as regularly changing passwords and only giving access to trusted individuals.

Disabling Leech Protection

If you wish to disable Leech Protection for a directory:

  1. Go back to the Leech Protection page.
  2. Click on the name of the directory for which you want to disable Leech Protection.
  3. On the Setup Leech Protection page, click on the Disable button.

Caution

Before disabling Leech Protection, ensure that you understand the potential security risks. If you have doubts, consult with a cybersecurity expert or your hosting provider.


External links

Leech Protection - cPanel Documentation