GoFuckYourself.com - Adult Webmaster Forum - View Single Post - BEWARE

shiraz9944 · 06-01-2017, 02:27 PM

Are you using a gmail email as your paxum email? Then get DUO or AUTHY and enable two factor that doesn't use your phone number sms. It's much more secure. Google supports is for gmail and all their services. Your email should be impossible to breach this way. Then setup the IP restrictions on Paxum. Done. If you use server email on your domains you host then also go into host access control in WHM and restrict imap/smtp or webmail to your specificed IP's also. That way even if someone got ahold of your domain email pass, they can't get it either. You should also have this enabled on your ssh/sftp into your server if you have one. I was getting 2000 brute force attempts cphulk alerted me to into ssh/sftp and imap, some to WHM login until I enabled IP restictions in HAC or your IPtables firewall. Now I see ZERO per day.

06-01-2017, 02:27 PM
shiraz9944 Confirmed User Join Date: Jan 2002 Posts: 567	Are you using a gmail email as your paxum email? Then get DUO or AUTHY and enable two factor that doesn't use your phone number sms. It's much more secure. Google supports is for gmail and all their services. Your email should be impossible to breach this way. Then setup the IP restrictions on Paxum. Done. If you use server email on your domains you host then also go into host access control in WHM and restrict imap/smtp or webmail to your specificed IP's also. That way even if someone got ahold of your domain email pass, they can't get it either. You should also have this enabled on your ssh/sftp into your server if you have one. I was getting 2000 brute force attempts cphulk alerted me to into ssh/sftp and imap, some to WHM login until I enabled IP restictions in HAC or your IPtables firewall. Now I see ZERO per day.