We are configuring a new server with a client with cPanel 94, CloudLinux and CSF on CentOS 7. The CSF Server Service Check script suggests that Shell Fork Bomb Protection should be enabled , but pressing the 'Enable Protection' button doesn't change the status from disabled. `/etc/profile` was a...
There are 20 cPanels in my WHM panel. so i want to "composer update" for all cPanel account.
So I run this command "composer update" using shell script .
then I run following code
cd /customscript/github && bash sync.sh
shell script run successfully on cPanel account 1 to 10 , 10-20 its...
I always thought the idea here with AutoSSL was to allow your end-users to be able to use HTTPS and browse securely?
We are receiving the following:
******* uses an invalid security certificate.
The certificate is not trusted because it is self-signed.
We use (against my recommendation) an archaic :rolleyes: software that uses port 25 with no security for SMTP connections, when sending email notifications.
Apparently our cPanel server doesn't accept this kind of unsecure connections, how can I enable it?
We have Mod Security enabled, and using mod sec rules developed and provided by our data center. It has worked out very well, but there are some things we like about the OWASP Core Rule Set (CRS) that cPanel is making available to us. I'm investigating enabling these rules, either in...
I see allot of mod_proxy requests from chinese ip's that try to connect to certain websites voanews seems to be a populair one .The requests are being denied with a 403 forbidden by mod_security but i'm wondering why the Chinese are trying to steal my server resources for there crap and...
My client has gotten a few of these emails now with this warning:
vps.domain.com : Jan 2 04:59:04 : username : user NOT in sudoers ; TTY=unknown ; PWD=/home/username ; USER=root ; COMMAND=/sbin/sysctl kernel.nmi_watchdog=0
I ssh'd in and the last ssh prior to that was back in August (based on...
Error message received from csf.
Trying to dig into this and some older articles reference cpanel but honestly, it's above my pay grade.
Maybe someone can shed some light?
Time: Wed Dec 30 14:06:02 2020 -0500
Reason: Suspicious symlink...
Is there an up-to-date way of disabling security tokens? They're a huge annoyance for me; no one can access my server but me, anyway, but my home internet provider changes IPs constantly so I'm having to log back in to PMA every hour or 2!
On my old server, I added this to...
I have a cPanel&WHM version 90.0.19 and now I see error in Security advisor:
Failed to determine if a reboot is necessary: An unknown error in the “Cpanel::Exception::ProcessFailed” package has occurred.
Failed to check whether active services are...
Started noticing suricata alerts based on this ET. Has anyone else been seeing this?
Exploring tcpdump to pcap...
I need a script (on server: Centos, or on client: Windows) to download the AutoSSL Let's Encrypt private key and certificate files for a list of domains I own, so I can update my local development computer whenever cPanel decides to renew my webserver certificates, making them invalid locally...
I'm using EasyApache4
I'm using PHP 7.3
I'm trying to increase PHPSESSID security and increase length..
I want set session.sid_length but it does not exist in MultiPHP.ini Editor
But session.hash_function exist. (But it seems it is not effective in PHP 7.3)
I set it to 1 and set Algorithm to...
Quick question I just noticed something on a the security advisor page:
Apache vhosts are not segmented or chroot()ed.
Enable “mod_ruid2” in the “EasyApache 4” area, enable “Jail Apache” in the “Tweak Settings” area, and change users to jailshell in the “Manage Shell Access” area. Consider a...
I've seen two threads here discuss OSSEC, Splunk, and LogWatch. However, both are well over 5 years old. What works best with dedicated cPanel server environments? Which is best for learning more about cybersecurity and incident response in general?
today lfd notified me a new WHM/cPanel root access to my VPS by an IP from Romania (it's not mine).
When i saw the email, i logged immediately into WHM and i blocked that IP. I changed also my root password.
Apparently it seems that everything works fine.
My VPS has CSF installed and...
I'm looking at this error but it doesn't make sense. I tried googling but I can't find any relevant results.
[Mon Aug 31 15:38:14.060612 2020] [cgi:error] [pid 713883] [client 22.214.171.124:23578] AH01215: Use of uninitialized value $homedir in concatenation (.) or string at...
My load-average started to go above its usual baseline today, so I kept on checking the process manager. From what I have seen, the server is getting each 1 second a process triggered by the user "nobody" and it is always calling the php-cgi as marked in red.
Note: all my-websites use their...
Please give us a way to turn off SPAM ads in Security Advisor such as this one. No legit software should support SPAMMING users. Had I known that the highly recommended Imunify in the new version of WHM came with SPAM ads I would have just stayed with Clam. SPAMMING users is very unprofessional...