How to enforce maximum server security?

[vitaliok78]

Hello CPanel forum people.


I want to enforce server security to allow access to cPanel, WHM, SSH, FTP, IMAP,MySQL and POP3 ONLY from specific IP addresses. Access from all others to be REJECTED.


How can I do this?

 

[Infopro]

This very forum you posted to has a sticky located here that might be helpful:
[Tutorial] Interested in increasing the security of your server? Read this. (sshd hardening) - cPanel Forums

 

[vitaliok78]

This very forum you posted to has a sticky located here that might be helpful:
[Tutorial] Interested in increasing the security of your server? Read this. (sshd hardening) - cPanel Forums

I want to do enforcement from CPanel, not via SSH.

 

[Infopro]

You are not able to modify server settings as a "Website owner" as your forums profile states. Server security is done by the server Administrator via SSH and WHM settings you may not have access to.

For example, it sounds like you'd be interested in this area:
Host Access Control - cPanel Documentation

 

[vitaliok78]

You are not able to modify server settings as a "Website owner" as your forums profile states. Server security is done by the server Administrator via SSH and WHM settings you may not have access to.

For example, it sounds like you'd be interested in this area:
Host Access Control - cPanel Documentation

I am system administrator with FULL server and CPanel priveleges.

 

[cPanelPeter]

Hello,

Then you should consider using a Firewall. If you need assistance with one, the CSF (Config Server Firewall) can be very helpful in that regard.

 

[vitaliok78]

Hello,

Then you should consider using a Firewall. If you need assistance with one, the CSF (Config Server Firewall) can be very helpful in that regard.

Do CPanel has CSF integrated or I must install?????

If yes, how and where, in order to enforce server security with CPanel.

 

[JaredR.]

I am system administrator with FULL server and CPanel priveleges.

You selected "Website Owner" as your access level in your forum profile. That is why Infopro assumed that you did not have administrator access to the server.

You should change the access level in your forum profile to "Root Administrator," because the access level you choose helps us tailor our responses to your level of access.

If you do not change this setting in your profile, you will continue to receive replies that assume you are only a Web site owner, instead of a server administrator with full access.

 

[JaredR.]

Do CPanel has CSF integrated or I must install?????

No. CSF is not part of cPanel. We do not develop it, and we do not include it with a default cPanel installation. CSF is developed by a completely separate company.

For information about CSF, including installation instructions, look at its developer's Web site:

ConfigServer Services