The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Restrictions on outgoing UDP

Discussion in 'Security' started by Hedloff, Jun 13, 2013.

  1. Hedloff

    Hedloff Well-Known Member

    Joined:
    Jun 7, 2004
    Messages:
    100
    Likes Received:
    2
    Trophy Points:
    18
    Hello,

    We have sometimes problems with joomla and other scripts get hacked. And the hackers upload .php code for us on attacks.
    They use their code to send udp traffic and fill our flow sessions with this kind of attack.
    Is there anyway we can limit outgoing udp traffic from cPanel servers somehow?
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,745
    Likes Received:
    662
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    There is no native cPanel functionality to block traffic, however you are welcome to install a third-party firewall such as CSF. The following URL mentions the ports used by cPanel and the most common services so you can get a better understanding of what type of traffic should be allowed:

    Getting the most out of your system firewall

    However, in general, you should try to ensure that the scripts installed on your server are secure and up to date to prevent the attacks from occurring at all.

    Thank you.
     
  3. quizknows

    quizknows Well-Known Member

    Joined:
    Oct 20, 2009
    Messages:
    940
    Likes Received:
    55
    Trophy Points:
    28
    cPanel Access Level:
    DataCenter Provider
    CSF does egress filtering, but you're going about security the wrong way. Your customers need to secure their passwords and keep Joomla up to date. If they had done that in the first place, you wouldn't have to worry about the outbound UDP traffic. I know it's not that easy, but you should suspend or terminate people who don't secure their web applications.
     
Loading...

Share This Page