wolstech

Unsolved. Let's see if Krydos can do something about this.

Sub accounts cannot log into cpanel. They're for FTP accounts only, and should access the server using plain unencrypted ftp on port 21. Unblocked.

I have used eu.org some time back. At that time, it was necessary to have name servers configured for the domain prior to making a domain request. However, they seem to be allowing registration without pre-configured domain servers now. Good to know they did away with that. The practice was nonstandard and was incompatible with just about every cpanel-based host out there, which is probably why they changed. Now if only registro.br would do this...(they're the one we usually hear about when this issue comes up).

Correct. We do not use or support HSTS. If the website needs to force SSL, you must add an exception for the .well-known folder in the .htaccess file. This folder must be accessible over unsecured http or the certs will not issue. WHM is for root admins only. That will never work for you and would only serve to get your IP address blocked for failed logins. Also, be aware that certificates take up to 24 hours to issue after a domain is added and configured correctly.

Sent.

You can't create additional cpanel accounts. Those are for FTP only, and they need to access their account using plain FTP on port 21 (SFTP will not work for sub accounts).

Correct.

If you haven’t already received it from another admin, I can send this later tonight when I’m home.

That's odd... Lets see if Krydos knows.

The block does expire on its own already when the IP falls off the bottom of the block list. Right now that takes just over a week. The next one to expire is from 5/25, so 9 days. Whether we could make these expire sooner is a good question.

Forgot about that. Yeah, it definitely helps in that scenario. CF will stand there and take abuse all day long...our servers just fall over. I personally use it since I have domains that need more some of the more advanced DNS types than what cP offers.

What happens when you just add it as an alias or an addon domain? Is there an error you are getting?

The first time you deploy a war with a new file name, it takes until the next Apache restart to actually start working, and shows a 404 until then. Have you waited a few hours after deploying?

Yep, someone hiding behind CF is hammering away at cPanel. Its worth noting that CF offers app hosting too, so it could be malware that someone made and is using CF to run. Similarly, it could be someone beating on cPanel through a domain that’s protected by CF. Every domain hosted on a server can access cPanel via port 2083, so its a matter of flooding such a domain with POST requests (actually trying to view cP through such a domain should redirect to the server domain). TL;DR: someone is causing CF’s servers to send us bad login attempts. It could even be multiple people considering the limit is only 5 tries in an hour...

It just shows them as Failed cPanel Login, which means someone connected to a site through CF is entering bad usernames and passwords. It could be anybody that region of thje world, accessing any site that has CF on it. Doesn't even need to be your account being hit since all the traffic comes from the same source in our eyes. At the end of the day, CF basically amounts to a really large distributed caching reverse proxy...the firewall is so basic that it has no understanding of such things and thinks its just seeing a user from the internet at large, not a network with hundreds of thousands of users that ultimately share an IP address when it comes to visiting your site.

I unblocked the UK, France, and Poland data centers again (same ones that were blocked last time). They're getting blocked for bad passwords against cPanel. I'm not sure why, but it's always these 3 data centers. Most blocks are from the 162.158.0.0/15 range. You're on Tommy anyway, is there a reason you need CF? The performance should be just fine without it. Johnny and Ricky users are the ones who really benefit most from using CF...

Done. You should now be able to log in and your website should start working within 12 hours.

Done. You should now be able to log in and your website should start working within 12 hours.

The account ayoub99 does not exist.

The username isn't available because your forum account already has it. I'd need to rename the forum account, then you need to delete your hosting account and sign up again to change it if you really wanted that back. As for the domain, it should be available. I don't see it attached to any account and there's no DNS records for it.

The suspended page will go away when Apache next restarts. When an account is unsuspended, the website doesn't always immediately work again...

See https://www.helionet.org/index/topic/29275-tommy-signup/?do=findComment&comment=148873

Sent. Thank you for the donation.

English: That's a new one... Please check your email for a new password. I've reset it manually for you.

Your account was suspended for causing high server load. I have unsuspended your account, but please try to limit the load you put on our servers as it slows down not only your site, but the sites of all other HelioHost users sharing your server. If you still see the suspended page, please clear your cache. If you need help figuring out why your site is causing such high load let us know and we can try to help. If the high load is simply because your site is getting a lot of traffic you might consider trying paid hosting from our partner starting at only a cent for the first month. https://www.heliohost.org/partners/hostgator