Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

close pop, imap and smtp ports¡ if server is not used for mail?

Discussion in 'Security' started by craigedmonds, May 18, 2011.

  1. craigedmonds

    craigedmonds Well-Known Member

    Joined:
    Oct 29, 2007
    Messages:
    112
    Likes Received:
    0
    Trophy Points:
    66
    Location:
    Europe
    cPanel Access Level:
    Root Administrator
    Twitter:
    If my cpanel server is only used for web hosting and there are no mail services being used (mail is on a different server), should I close certain ports like 110 to prevent attacks?

    The web sites of course will be sending mail so outgoing smtp needs to be active I guess.

    So should I remove ports 110 + 143 + 25 + 587 from the TCP_IN in CSF?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,608
    Likes Received:
    32
    Trophy Points:
    238
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    Hello Craig,

    Will you be unchecking those services in WHM > Service Manager as well? If you close off the ports and do not shut off the services, then you will begin getting chkservd failure emails.

    Thanks.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. cPanelJared

    cPanelJared Technical Analyst

    Joined:
    Feb 25, 2010
    Messages:
    1,835
    Likes Received:
    21
    Trophy Points:
    143
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    I also wanted to mention that if you simply shut down the unused services, there is no need to also block their ports in a firewall. A port is not open unless a service is listening on it. If no service is listening on a port, then also blocking it in the firewall is redundant.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice