The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Best Anti Virus software for linux centos cPanel/WHM

Discussion in 'Security' started by crazyaboutlinux, Jun 13, 2012.

  1. crazyaboutlinux

    crazyaboutlinux Well-Known Member

    Joined:
    Nov 3, 2007
    Messages:
    938
    Likes Received:
    0
    Trophy Points:
    16
    Hello,

    can you guys let me know Best Anti Virus software for linux centos cPanel/WHM ???

    Please don't suggest me ClamAV its really poor, recently our client's website got Hacked by the hackers & i scanned that website to check how many pages are infected, but ClamAV says website is OK
     
  2. ChrisFirth

    ChrisFirth Active Member
    PartnerNOC

    Joined:
    Apr 10, 2008
    Messages:
    36
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    DataCenter Provider
    What exactly are you after?

    Quite often when sites get hacked it is just an iframe to another site thats added (with or without varying levels of obfuscation to hide it) or the .htaccess file is modified to redirect traffic - ClamAV will not detect this sort of thing as its not what it is designed to do. For those cases file integrity monitoring is a good start so you get notified for any files that are modified.
     
  3. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    If the issue is the type of defacement ChrisFirth mentioned, the best idea would be to install mod_security in WHM > EasyApache (Apache Update) in the Apache Short Options List. mod_security can help to detect some malicious attempts to hit sites. It isn't fool proof, but it can help to reduce hacking incidents.
     
  4. jerrybell

    jerrybell Well-Known Member

    Joined:
    Nov 27, 2006
    Messages:
    90
    Likes Received:
    0
    Trophy Points:
    6
    The big issue I think you'll find is that AV is largely aimed at detecting Windows viruses, not detecting encoded iframes/javascript. Having said that, isn't this what the configserver exploit scanner is geared at doing? (ConfigServer eXploit Scanner (cxs)) I have no idea of how well it works, but their other stuff seems to be good and it claims to do what you're wanting.
     
  5. crazyaboutlinux

    crazyaboutlinux Well-Known Member

    Joined:
    Nov 3, 2007
    Messages:
    938
    Likes Received:
    0
    Trophy Points:
    16
    Hi Tristan

    Yes, EasyApache is already installed & updated though many sites were Hacked, isn't there way to stop hacking ??
     
  6. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    Do you mean mod_security is already installed? EasyApache is always installed onto a cPanel server, so I'm just clarifying what was meant here.

    There's no way to totally stop hacking attempts. We'd need more details on what was specifically hacked.
     
  7. crazyaboutlinux

    crazyaboutlinux Well-Known Member

    Joined:
    Nov 3, 2007
    Messages:
    938
    Likes Received:
    0
    Trophy Points:
    16
    yes, mod_security is already installed, many website's got hacked, especially *.php and *.html pages

    Do let me know what do you need more details on hacked. ?
     
  8. NixTree

    NixTree Well-Known Member

    Joined:
    Aug 19, 2010
    Messages:
    386
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Gods Own Country
    cPanel Access Level:
    Root Administrator
Loading...

Share This Page