Brute force login prevention on custom port

simba

Verified User
Joined
Oct 13, 2012
Messages
54
Hello, i can't find if brute force login prevention works when directadmin port is changed.

http://help.directadmin.com/item.php?id=404 states:
This feature only applies to port 2222. It only blocks IPs on this port. It does not block IPs from other ports.

Is 2222 port hardcoded or it works with custom set port in directadmin.conf ?

When doing testing it does not seem to work on custom port.

Thanks
 
I can't answer your question. But why do you (want to) change Directadmins port?
 
I always change it for security reasons.
I have port scan prevention enabled, so i am able to prevent brute force attacks before they can happen and it's harder to find out what software is on server.
 
If I had to guess I would say it would block on a different port also and that it is wrote down like that to make it clear it only blocks DA logins. You could also just try it out I guess.
 
Original poster says he's already tested and it appears to not work. Hopefully John from DirectAdmin will reply and let us know.

Jeff
 
Hello,

The DA blocker (not the BFM, but the DA login blocker) doesn't touch any firewall. It simply manages a ip_blacklist file... and when a connection is made to DA (on any port that DA runs on).. if the IP is on the blacklist, DA dumps out
Code:
Your IP is blacklisted\n<br><a href='http://help.directadmin.com/item.php?id=306'>http://help.directadmin.com/item.php?id=306</a>\n
So the DA port itself isn't actually blocked, but rather, no harm can be done by the attacker as nothing is processed.

John
 
Back
Top