I was just going to ask a similar question, I notice the original article is over 4 years old, i would guess that maybe some of the recommendations have been implemented by Cpanel themselves.As has been pointed out - it's old info, even if mostly still relevant.
Would be better for the experts (of which I am not one) to try and work on a new guide, re-using from here what's appropriate.
Still in progress, or is it out there and I can't find it?Thanks to all who contributed to this great thread.
We will be making alot of this part of our "Securing your Server" article that should hopefully be available officially soon.
Awesome tutorial. This is what i neadedA Beginner's Guide to Securing Your Server Part 1 of 3 (Security Inside WHM/CPanel)
These are items inside of WHM/Cpanel that should be changed to secure your server.
Goto Server Setup =>> Tweak Settings
Check the following items...
Prevent users from parking/adding on common internet domains. (ie hotmail.com, aol.com)
Attempt to prevent pop3 connection floods
Default catch-all/default address behavior for new accounts - blackhole
Use jailshell as the default shell for all new accounts and modified accounts
Goto Server Setup =>> Tweak Security
Enable php open_basedir Protection
Enable mod_userdir Protection
Disabled Compilers for unprivileged users.
Goto Server Setup =>> Manage Wheel Group Users
Remove all users except for root and your main account from the wheel group.
Goto Server Setup =>> Shell Fork Bomb Protection
Enable Shell Fork Bomb/Memory Protection
When setting up Feature Limits for resellers in Resellers =>> Reseller Center, under Privileges always disable Allow Creation of Packages with Shell Access and enable Never allow creation of accounts with shell access; under Root Access disable All Features.
Goto Service Configuration =>> FTP Configuration
Disable Anonymous FTP
Goto Account Functions =>> Manage Shell Access
Disable Shell Access for all users (except yourself)
Goto Mysql =>> MySQL Root Password
Change root password for MySQL
Goto Security and run Quick Security Scan and Scan for Trojan Horses often. The following and similar items are not Trojans: