The Community Forums

Interact with an entire community of cPanel & WHM users.
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Entropy Chat - security issue?

Discussion in 'Security' started by jndawson, Sep 24, 2014.

  1. jndawson

    jndawson Well-Known Member

    Joined:
    Aug 27, 2014
    Messages:
    103
    Likes Received:
    4
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    I have searched high and low through the forums and docs, but I can't find anything definitive (or current) regarding Entropy Chat. It's bundled with the WHM/cPanel dist, but there seems to be no info on using it. On top of that, when running Security Advisor, this warning is issued:

    Entropy Chat is running.

    Turn off Entropy Chat in the “Service Manager” page.

    Why is the app bundled if it's a security issue? How is it supposed to be used?
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,723
    Likes Received:
    660
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    You can find the Entropy Chat service in:

    "WHM Home » Service Configuration » Service Manager"

    It's disabled by default, so you should not see that warning unless you have enabled it at some point in time.

    Thank you.
     
  3. jndawson

    jndawson Well-Known Member

    Joined:
    Aug 27, 2014
    Messages:
    103
    Likes Received:
    4
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Michael -
    Thanks for the response. However, I wasn't asking where it was; I know that. I want to know:

    a) If it's a security issue, why is it bundled with the dist?
    b) If it's bundled with the dist, why isn't there any documentation for it?

    thanks,
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,723
    Likes Received:
    660
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello,

    I opened a request with our documentation team to provide more information on this service and the security implications of enabling it. For reference, the request case number is 119825. I will update this thread with more information as it becomes available.

    Thank you.
     
  5. jndawson

    jndawson Well-Known Member

    Joined:
    Aug 27, 2014
    Messages:
    103
    Likes Received:
    4
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Michael,

    That will be helpful - I appreciate the effort.

    thanks,
     
  6. onlineth

    onlineth Registered

    Joined:
    Apr 28, 2014
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Has there been any documentation added for this?
     
  7. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,723
    Likes Received:
    660
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Entropy Chat was removed from the product in cPanel version 54, and thus it's no longer referenced in the documentation:

    Fixed case CPANEL-1798: Disable EntropyChat upon installation.
    Fixed case CPANEL-797: Remove ancient entropychat.


    Thank you.
     
  8. HollyRidge

    HollyRidge Well-Known Member

    Joined:
    Feb 25, 2003
    Messages:
    138
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Garner NC USA
    cPanel Access Level:
    Root Administrator
    Hmmm I am getting the same thing in 11.54.0.8 when using the Security Advisor in WHM...

    Entropy Chat is running.
    Turn off Entropy Chat in the “Service Manager” page.


    The thing is I never enabled it as well as it is not listed in the service manager to disable it.
     
    #8 HollyRidge, Jan 28, 2016
    Last edited by a moderator: Jan 28, 2016
  9. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,723
    Likes Received:
    660
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    Internal case CPANEL-842 is open to address an issue where some files associated with Entropy Chat were leftover after it's removal from the product. Please monitor our change log to see when the resolution has been released:

    54 Change Log - Documentation - cPanel Documentation

    Thank you.
     

Share This Page