1. cPanelTabby

    cPanel TSR-2021-0004 Full Disclosure

    cPanel TSR-2021-0004 Full Disclosure cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPanel...
  2. I

    WP-Toolkit: Security keys were not fully applied

    Hi, I've been getting this error when the toolkit tries to run the smart update on one of my sites. Smart Update could not be completed automatically. Please try running the update manually. Details: Failed to clone the installation: 'Security keys were not fully applied.' I'm not sure how to...
  3. 000

    exist some difference (in level of security) if I connect over IPv6 vs IPv4 ?

    hello, I believe the target of IP6 is transfer video and streaming. But... I can connect SERVER_USERS to PHP_LOGIN and then send requests from SERVER_USERS to SERVER_with_ip6, get ANSWER from SERVER_with_ip6 then send this to SERVER_USERS for this context, is the same if I connect over IP6 or...
  4. AndyX

    The security token is missing from your request.

    Please eliminate this erroneous message: In Firefox I have my preference set to delete all cookies when I exit Firefox. So the "The security token is missing from your request" will always show no matter what I do. I don't think the message serves any useful purpose and should be eliminated...
  5. T

    Help improving security

    Hello, I have a security red score on as you can see here : WebPageTest Test Result - Paris - EC2 - - 05/28/21 05:27:25. In order to improve security, a developer has asked me to do the follwowing : 1- Enable HSTS in Apache OR : Add the following code...
  6. A

    Origin of a root access

    Few days ago, I saw this in `bash_history` while looking for something else: 539 being MY last action on the server, connected as root by private key, and 554 being ConfigServer installing their stuff and making configurations. From where I'm standing, first the hacker couldn't get his hand...
  7. cPanelTabby

    cPanel TSR-2021-0003 Announcement

    cPanel TSR-2021-0003 Announcement cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPanel has rated...
  8. T

    Cookieless domain warning

    Is it possible to disable cookies using WHM and achieve a cookieless domain warning? As I understand it can be created an Amazon bucket and connect cookies warning inside a new domain An example: <?php define("WP_CONTENT_URL", "")...
  9. C

    root password and security policy

    Just tried to log into whm, get the following screen (attached) I cant do anything till I change my root pw - however I dont wish to do this - any way in ssh (I have access via ssh keys) to manual edit this so I can get into whm and not have to change my password ?
  10. R

    Security advisor strange results

    Hello, The cPanel/Whm "security advisor" feature tells me : Important add kernelcare's free symlink protection Information Use kernelcare to automate kernel security updates without reboots I have imunify360 so the last message is strange as kernelcare is included and i did have that symlink...
  11. R

    Strange Virus in Cpanel

    Hi! I have got contacted by one of my Freelancer client. He was have virus issue in wordpress website. I have tried to clean virus from site. I was have marked that some files was getting automatically added again. Now I have backup my public_html folder and deleted all files from public_html...
  12. S

    Shell Fork Bomb Protection Disabled

    We are configuring a new server with a client with cPanel 94, CloudLinux and CSF on CentOS 7. The CSF Server Service Check script suggests that Shell Fork Bomb Protection should be enabled , but pressing the 'Enable Protection' button doesn't change the status from disabled. `/etc/profile` was a...
  13. DDSameera

    SOLVED *** SECURITY information for ***

    There are 20 cPanels in my WHM panel. so i want to "composer update" for all cPanel account. So I run this command "composer update" using shell script . then I run following code cd /customscript/github && bash shell script run successfully on cPanel account 1 to 10 , 10-20 its...
  14. R

    AutoSSL? End User Getting: "invalid security certificate"

    Hey Friends, I always thought the idea here with AutoSSL was to allow your end-users to be able to use HTTPS and browse securely? We are receiving the following: ******* uses an invalid security certificate. The certificate is not trusted because it is self-signed. Error code...
  15. mlopez

    SOLVED Allow SMTP on port 25 without security

    Hey, We use (against my recommendation) an archaic :rolleyes: software that uses port 25 with no security for SMTP connections, when sending email notifications. Apparently our cPanel server doesn't accept this kind of unsecure connections, how can I enable it? Thank you
  16. sneader

    Advice on enabling the cPanel/OWASP-CRS Mod Security Rule Set

    We have Mod Security enabled, and using mod sec rules developed and provided by our data center. It has worked out very well, but there are some things we like about the OWASP Core Rule Set (CRS) that cPanel is making available to us. I'm investigating enabling these rules, either in...
  17. suatkocabas

    SOLVED Special FTP Accounts | For Security

    Hi,My server was hacked last week.and fixed my server's security flaws.but I don't understand this *Special FTP Accounts* .This part is important ? .can I remove this ftp accounts?
  18. R

    The chinese want to use my server to view websites which are censored in there

    Hello, I see allot of mod_proxy requests from chinese ip's that try to connect to certain websites voanews seems to be a populair one .The requests are being denied with a 403 forbidden by mod_security but i'm wondering why the Chinese are trying to steal my server resources for there crap and...
  19. M

    SECURITY information for, user NOT in sudoers

    My client has gotten a few of these emails now with this warning: : Jan 2 04:59:04 : username : user NOT in sudoers ; TTY=unknown ; PWD=/home/username ; USER=root ; COMMAND=/sbin/sysctl kernel.nmi_watchdog=0 I ssh'd in and the last ssh prior to that was back in August (based on...
  20. J

    SOLVED Suspicious symlink (->../../var/lib/mysql/mysql.sock)

    Error message received from csf. Trying to dig into this and some older articles reference cpanel but honestly, it's above my pay grade. Maybe someone can shed some light? Time: Wed Dec 30 14:06:02 2020 -0500 File: /tmp/mysql.sock Reason: Suspicious symlink...