cPanel - Leech Protection

Leech Protect allows you to prevent your users from giving out or publicly posting their passwords to a restricted area of your site. This feature will redirect accounts which have been compromised to a URL of your choice (and suspend them, if you choose).

Leech protection is currently disabled on “/home/example”.

Set up Leech Protection

Number of Logins Per Username Allowed in a 2-Hour Period

Four is recommended, as setting the number lower than four can cause suspension of legitimate users who have disconnected from, then reconnected to, their ISPs. If users are reconnecting from the same network subnet, their accounts will not be disabled.

URL to Redirect Leech Users to

You must choose a URL outside of the leech-protected area, or the leech users will get an internal server error message.

Send Email Alert To

The system will send an email to this address when leech protection redirects users from the site. NOTE: If you do not disable leech accounts, you may receive a large number of these emails.

Disable Compromised Accounts cPanel will disable the passwords of users who trigger leech protection, suspending them. To reactivate their accounts, reset their passwords.

Disable Protection

Manage Users

If you are using third-party software to add or remove users, you should have it use the password file: /home/example/.htpasswds//home/example/passwd

Go Back