Security Advisor Warnings

V

volex

Member
PartnerNOC
Feb 5, 2008
20
10
53
cPanel Access Level
DataCenter Provider
Hi,

Upon upgrading to the 56 build security advisor is sending out warning messages many of which do not apply. Is there a way to disable these messages from being sent prior to the 56 update as Check::SecurityAdvisorStateChange does not exist in the contact manager until 56?

Thanks
 
cPanelMichael

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,880
2,261
463
Hello,

This behavior stems from the following case found in the version 56 change log:

Code: 
Implemented case CPANEL-3990: Send notifications when there is new security advice.
It's not currently possible to disable this notification before the update to cPanel version 56, but as you mentioned, you can disable it after the update by changing the notification settings for "Security Advisor State Change" via "WHM Home » Server Contacts » Contact Manager". A custom workaround you may consider is to create a custom Exim filter before the update that discards that specific notification before delivery.

Also, I'd like to note that we appreciate any feedback you have to offer for these types of changes on our Edge-Users mailing list:

Edge-Users Info Page

The sooner in the development cycle we hear feedback on these changes, the more likely it is we can take action before a new version is published. There's a recent blog post you may find helpful at:

The cPanel Development Process | cPanel Blog.

volex said:
is sending out warning messages many of which do not apply.
Click to expand...
Could you provide us with the specific warning messages that are false positives so we can open internal cases for each issue as needed?

Thank you.
 
J

jpants

Member
PartnerNOC
Sep 29, 2006
5
1
153
It is possible to manually disable these notifications prior to 11.56. I came up with a quick script if you are interested:
Code: 
#!/bin/bash
# Disable Security Advisor Notifications

#Generate icontact preferences file
if [ ! -f /var/cpanel/icontact_event_importance.json ]; then
    /usr/local/cpanel/whostmgr/bin/whostmgr2 ./saveeditcontact
fi

#Disable Security Advisor Notifications
if [[ -f /var/cpanel/icontact_event_importance.json && ! `grep SecurityAdvisorStateChange /var/cpanel/icontact_event_importance.json` ]]; then
    sed  -i 's/"Check":{/"Check":{"SecurityAdvisorStateChange":"0",/' /var/cpanel/icontact_event_importance.json
elif [[ -f /var/cpanel/icontact_event_importance.json && `grep SecurityAdvisorStateChange /var/cpanel/icontact_event_importance.json` ]]; then
    sed -i -r 's/"SecurityAdvisorStateChange":"?[0-9]"?/"SecurityAdvisorStateChange":"0"/' /var/cpanel/icontact_event_importance.json
fi
 
Last edited:
  • Like
Reactions: cPanelMichael
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
P New Security Advisor notifications with High importance - PHP 7.3 and PHP 7.4 reached EOL Security 1
Crimpshrine Security Advisor Notification Security 8
R Security Advisor Locks up at Apache Security 6
V Security Advisor Warnings Security 4
durangod Questions about my root access as well as other security advisor warnings. Security 6
Similar threads
New Security Advisor notifications with High importance - PHP 7.3 and PHP 7.4 reached EOL
Security Advisor Notification
Security Advisor Locks up at Apache
Security Advisor Warnings
Questions about my root access as well as other security advisor warnings.
Top Bottom