Confirm Successful Logins by ROOT

Stephan Pringle Wednesday, June 24, 2015

How can you confirm successful logins by ROOT? It is simple as using the “last” utility from the root.

grep "root" /usr/local/cpanel/logs/access_log

Using the command above will be very helpful to see if an account may have been compromised and at what time. Do you travel frequently? For a instant email report, navigate to WHM Home >> Security Center >> cPHulk Brute Force Protection and choose to send a notification upon successful root login when the IP address is not on the whitelist option then save. If someone does guess the credentials, you will be notified so that you can try to take action.

Stephan Pringle

About The Author: Stephan Pringle is an Information Technology Support Specialist. He covers hardware and software and provides tips for you to troubleshoot and repair issues on your own. In his spare time, he writes articles about the State of New York on his Hackintosh and HackBook and that has helped him to become the top contributor of the New York City section of Yahoo! Answers.

Monday	08:00 am – 10:00 pm (EDT)
Tuesday	08:00 am – 10:00 pm (EDT)
Wednesday	08:00 am – 10:00 pm (EDT)
Thursday	08:00 am – 10:00 pm (EDT)
Friday	08:00 am – 10:00 pm (EDT)
Saturday	Appointments Only
Sunday	Deliveries Only

Confirm Successful Logins by ROOT

Related posts:

Stephan Pringle

Related Posts

Spam from mnbdaa.com

Apple iPad Pro with a Stylus

Your Margins Are Pretty Small

DocuSign