Securing whm (dns-only)

**ManuelT** · 06-09-2009 07:27 PM

just trying to properly secure a new installation of cpanel DNS only and wanted to check.

1. Is stopping the external mySQL port 3306 ok via adding skip-networking to /etc/my.cnf as I couldn't find much about it.
2. how can i stop people logging on over insecure ports :2086

Many thanks in advance.

**chinmay** · 06-09-2009 07:46 PM

Originally Posted by ManuelT

just trying to properly secure a new installation of cpanel DNS only and wanted to check.

1. Is stopping the external mySQL port 3306 ok via adding skip-networking to /etc/my.cnf as I couldn't find much about it.
2. how can i stop people logging on over insecure ports :2086

Many thanks in advance.

If you do not want the ports 2086 and 3306 accessible, you can block the ports in the server firewall (preferably csf).

**ManuelT** · 06-10-2009 01:16 AM

Why would I want to firewall a service that I can switch off. Firewalls are great but they shouldn't be used as a replacement for good systems admin.

As i said i already had switched 3306 off by using skip-networking
How do i disable port 2086 without using a firewall

**PlatinumServerM** · 06-10-2009 07:07 AM

Specifically regarding port 2086, that is standard and hardcoded into whm. There is no separate way to shut off the port for whm. Blocking it in the firewall should be sufficient and would block all accesses to that port.

**chinmay** · 06-10-2009 08:03 AM

yep.. firewall's are the best options to block the ports which are standard and hardcoded.

LinkBack

Thread Tools

Securing whm (dns-only)

cPanel DNS Cluster & Slow WHM DNS Pages

Securing cPanel - WHM

DNS Securing Help!

WHM - Account/DNS Issue (Invisible DNS Entries??)

Securing DNS zones