security

  1. S

    In Progress [CPANEL-25141] Force password change for users?

    Hi all, at some point I had enabled the feature that will force cpanel users to change their passwords after 6 months. Now I can not find where this feature is located, as I want to disable it - well at least temporarily. Also, when I will restore back this feature, is it possible to apply it...
  2. W

    In Progress [CPANEL-24474] Offer advice in the Security Advisor when the "KernelCare Gap" is in effect

    I also have a similar issue after updating the kernel Cron <[email protected]ine>/usr/bin/kcarectl --auto-update Unknown Kernel (CentOS Linux 3.10.0-957.1.3.el7.x86_64) EDIT: I have found this to be a kernelcare issue (not patched yet) and there's a post on their forum: Unknown Kernel (CentOS Linux...
  3. N

    In Progress [CPANEL-23606] cPanel Security Advisor missing kernel information when kernelcare is installed

    cPanel Security Advisor no more showing about Kernel version info about update.
  4. PeteS

    New kernel notification in Security Advisor

    Tipically Security Advisor sends me email notices when there is a newer kernel available. If memory serves me, the kernel had not been been installed already and it was prompting me to run yum update and reboot. Pretty straightforward.... 1- Am I correct in assuming that upcp runs a yum update...
  5. P

    User Name Security Reserved?

    So I had a site on the server with the username 'security' (automatically supplied by the install program). After the latest update, it vanished. I reinstalled from backup but it does not show in the list. I tried installing it new but the site exists in the apache configuration file so the...
  6. E

    cPanel + reverse proxy = invalid security token

    The system almost works, but I get the error in various places when logging into webmail and performing certain actions on WHM: HTTP error 401 Invalid Security Token Lots of XSRF errors in the console: Blocked a frame with origin "https://webmail.example.com" from accessing a frame with...
  7. L

    SOLVED 404 when I click ConfigServer Security & Firewall

    For some reason when I click ConfigServer Security & Firewall it no longer takes me to the firewall configuration page but instead, I am presented with a 404 page. Does anybody know how I can get CSF working again?
  8. N

    New Security Advisor notifications with Medium importance

    I am getting email about New Security Advisor notifications with Medium importance but Security Advisor are not showing this.
  9. N

    Enable Security HTTP Headers

    We want Enable Security HTTP Headers. Does correct location is "Pre Main Include" or "Pre VirtualHost Include" section in "WHM >> Home >> Service Configuration >> Apache Configuration" ? Does this correct rules for Apache Configuration? # Enable Support Forward Secrecy SSLHonorCipherOrder On...
  10. Michael-Inet

    Change to "New Security Advisor notifications" emails?

    I’m sure this is the wrong area, please move this or direct me to the right place, thanks! # # # As a suggestion consider this change to the “New Security Advisor notifications with ...” emails for: New Security Advisor notifications with High importance Type Module Advice High Kernel...
  11. F

    How disable "Software Security Notice - Script installs need upgrading" notifications?

    Hi all, I search and try with lot of options but i can't disable this kind of notifications. It generates by Script Library of auto-install CMS and other software.
  12. D

    WHM Security Advisor 'nobody' bug?

    Today I got an email from root telling me that user 'nobody' is allowed to send email and pointing me to the 'nobody' tweak. The trouble is that this tweak is already On. Is this a bug in Security Advisor? WHM v66.0.26 Mail: Exim Centos 7.3 virtuozzo Firefox 56.0.1 (64 bit)
  13. J

    SOLVED Configure Security Policies is broken in 66.0.18

    The pages "Configure Security Policies" and "Host Access Control" and "Security Advisor" are broken in 66.0.18 When you go to these pages in WHM, the left menu bar is gone, and you cannot scroll up or down on the page. All the other pages seem to be fine.
  14. N

    SOLVED Security Advisor scrolling in cPanel 66

    cPanel Security Advisor can not scroll to down, Also this page are not same to WHM home page.
  15. F

    New Security Advisor notifications with High importance

    I get following email Current kernel version does not match the kernel version for boot. running kernel: 3.10.0-427.36.1.lve1.4.43.el7.x86_64, boot kernel: 3.10.0-427.36.1.lve1.4.39.el7.x86_64 Reboot the system in the "Graceful Server Reboot" area. Check the boot configuration in grub.conf if...
  16. J

    SOLVED Mod Security rule changes in cPanel 64

    We just got the 64.0.1 update last night. We're also having issues with installed SSL certs that aren't working. For example, our WHMCS system won't allow log ins and the cert won't display.
  17. J

    Redirect error security token

    HTTP error 401 Invalid Security Token The requested URL does not contain your session’s correct security token. You may have reached this error by copying and pasting a URL from a different cPanel, WHM, or Webmail session into your browser’s address bar. To resolve this situation, please take...
  18. C

    Security / IP Address Blocker

    Hi, when I add an IP address to block in my security / IP Address Blocker I thought this IP address was added to the .htaccess of the site in the form of Deny from xxx.xx.xx.xx Outside I do not see any additions in the htaccess. Is this due to the security of my .htaccess? Thanks.
  19. N

    Internal Server Error 500 Security Policy requires exec termination.

    I'm getting this every-time when i try to login to WHM or cPanels account where i setup 2FA ......
  20. B

    Mod Security Version

    Hello, I'll update my server software 11.42.1 to latest one. But I'm curious about my mod_sec rules. Is it compatible or not ? Because I didin't find latest whm mod_sec version. Regards