> ## Documentation Index
> Fetch the complete documentation index at: https://kb.hosting.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Configuring leech protection in cPanel

> Learn to use cPanel's Leech Protect to prevent public sharing of usernames and passwords.

This article describes how to use cPanel's Leech Protect feature to help prevent users from publicly posting their username and password.

## What is leech protection?

When users publicly post their username and password, unauthorized visitors can use their credentials to access secure areas of your web site. This practice is known as leeching.

cPanel provides protection against leeching by limiting the number of times that a user can access a secure area of your web site within a two-hour period. For example, you can limit users to four logins over a two-hour period. If users exceed the login limit, you can redirect them to another URL, send an alert e-mail, or even disable their account.

## Enabling leech protection for a directory

To enable leech protection for a directory, follow these steps:

1. Log in to cPanel.
   > 📘 Note
   >
   > If you do not know how to log in to your cPanel account, please see [this article](/docs/accessing-cpanel).

2. On the **Tools** page, in the **Security** section, click **Leech Protection**:\
   ![cPanel - Security - Leech Protection icon](https://static.hosting.com/kb/kb-cpanel-jupiter-security-leech-protection-icon.png)

3. Click the name of the directory that you want to protect.

   > 📘 Note
   >
   > You can click the folder icon next to the folder name to open the folder.

4. Click **Edit**.

5. Under **Set up Leech Protection**, type the number of logins allowed per username in a two-hour period.

6. Type a URL to redirect users to another web page when their account is compromised.

7. To receive an e-mail alert when an account is compromised, select the **Send Email Alert to** check box, and then type an e-mail address.

8. To disable accounts that are compromised, select the **Disable Compromised Accounts** check box.

9. Click **Enable**.

## Disabling leech protection for a directory

To disable leech protection for a directory, follow these steps:

1. Log in to cPanel.
   > 📘 Note
   >
   > If you do not know how to log in to your cPanel account, please see [this article](/docs/accessing-cpanel).

2. On the **Tools** page, in the **Security** section, click **Leech Protection**:\
   ![cPanel - Security - Leech Protection icon](https://static.hosting.com/kb/kb-cpanel-jupiter-security-leech-protection-icon.png)

3. Click the name of the directory for which you want to disable leech protection. Directories that have leech protection currently enabled have a small image of a shield next to them.

   > 📘 Note
   >
   > You can click the folder icon next to the folder name to open the folder.

4. Click **Edit**.

5. Under **Disable Protection**, click **Disable**.

## More information

* For more information about leeches in computing, please visit [http://en.wikipedia.org/wiki/Leech\_(computing)](https://en.wikipedia.org/wiki/Leech_\(computing\)).

* For more information about the blood-sucking worm, please visit [http://en.wikipedia.org/wiki/Leech](https://en.wikipedia.org/wiki/Leech).

## Related articles

* [Directory privacy](/docs/directory-privacy)

* [IP Blocker](/docs/ip-blocker)
