The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to block Web Security Scanners from Scanning your website

Discussion in 'Data Protection' started by dolomats, Mar 22, 2015.

  1. dolomats

    dolomats Active Member

    Joined:
    Dec 14, 2014
    Messages:
    31
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Website Owner
    Hello

    I wanna know
    How to block Web Security Scanners from Scanning your website

    from Cpanel /whm

    Thank you
     
  2. 24x7ss

    24x7ss Well-Known Member

    Joined:
    Sep 30, 2014
    Messages:
    271
    Likes Received:
    16
    Trophy Points:
    18
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    Did you mean scanners like sucuri ?
     
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    654
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
  4. eurion

    eurion Registered

    Joined:
    Jun 15, 2015
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Nigeria
    cPanel Access Level:
    Website Owner
    Yes how does one block scanners like Sucuri from revealing a list of web pages on a wordpress website?
     
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    654
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
  6. BoxGerencia

    BoxGerencia Registered

    Joined:
    Jun 20, 2015
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Brasil
    cPanel Access Level:
    DataCenter Provider
    A good form of security is to always check if your system is protected against exploit and sql injection.
    Also you can create a patch of admin folder, for example, and change the name to a different eg system-my-2087
    ModSecurity can explore the features and also use a .htaccess with:
    it blocks many scanners on your website

    Code:
    ==========================================
    RewriteEngine On
    <IfModule mod_rewrite.c>
    RewriteCond %{HTTP_USER_AGENT} ^w3af.sourceforge.net [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} dirbuster [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} nikto [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} SF [OR]
    RewriteCond %{HTTP_USER_AGENT} sqlmap [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} fimap [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} nessus [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} whatweb [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} Openvas [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} jbrofuzz [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} libwhisker [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} webshag [NC,OR]
    RewriteCond %{HTTP:Acunetix-Product} ^WVS
    RewriteRule ^.* http://127.0.0.1/ [R=301,L]
    </IfModule>
    ==========================================
    
    
    To block access to a folder and only your ip have permission
    Order Deny,Allow
    Deny from all
    Allow from YOUR_IP
     
    #6 BoxGerencia, Jun 20, 2015
    Last edited by a moderator: Jun 20, 2015
  7. eurion

    eurion Registered

    Joined:
    Jun 15, 2015
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Nigeria
    cPanel Access Level:
    Website Owner
    @cPanelMichael Thanks for the response.........my site has been set to disallow all user agents since it was created but it still shows up on google.

    @BoxGerencia i'll try out those options.....Thanks
     
    #7 eurion, Jun 21, 2015
    Last edited by a moderator: Jun 21, 2015
  8. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    654
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
Loading...

Share This Page