Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Security precautions before Restoring an account

Discussion in 'Security' started by Rane, Apr 6, 2011.

  1. Rane

    Rane Registered

    Joined:
    Apr 6, 2011
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    51
    We have a number of clients that purchase WHM reseller accounts from us, who then in turn offer web hosting services from them.

    Frequently, our WHM resellers give us a cPanel Backup from one of their customers and ask us to restore it from the WHM main account.

    Since we are somewhat removed from the actual person who made the Backup, we are concerned about possible server compromises by Restoring an unknown Backup file.

    In other words, possible server exploits by running:

    /scripts/restorepkg <user>


    Does anyone take any precautions prior to or after Restoring an unknown Backup?


    Thank you
     
    #1 Rane, Apr 6, 2011
  2. bhd

    bhd Well-Known Member

    Joined:
    Sep 20, 2003
    Messages:
    149
    Likes Received:
    0
    Trophy Points:
    166
    Location:
    JNB ZA
    cPanel Access Level:
    Root Administrator
    You referring to a backup that was created on a different cPanel server to your own servers I presume. We have never been asked by on of our resellers to do that, but I must say, I would be cautious. What I would probably do is to google the domain(s) in the archive to see if there are any reports of malware, viruses etc being reported in the last few months and also the basics like who owns the domain, when it was registered, what kind of site it is, check cached pages etc.

    For example if the domain being restored is hackersRus.TLD I wouldn't touch it. (Wouldn't host it either).

    (I would also want to know who the previous host was and what version of cPanel they were running)
     
    #2 bhd, Apr 8, 2011
(You must log in or sign up to post here.)
Loading...
Similar Threads - Security precautions before
  1. rpvw

    Pending Publication [CPANEL-25973] Security Advisor does not recognize KernelCare patch on CloudLinux

    rpvw, Mar 18, 2019 at 11:56 AM, in forum: CloudLinux
    Replies:
    1
    Views:
    96
    cPanelMichael
    Mar 18, 2019 at 1:59 PM
  2. Motamedi

    Problem with ModSecurity Vendors

    Motamedi, Mar 13, 2019, in forum: Security
    Replies:
    9
    Views:
    1,720
    fuzzylogic
    Mar 20, 2019 at 3:51 AM
  3. cuzzmunger

    ModSecurity - Domain listed not mine

    cuzzmunger, Mar 9, 2019, in forum: Security
    Replies:
    5
    Views:
    409
    cPanelMichael
    Mar 13, 2019
  4. baroninn

    SOLVED PHP IMAP Module Security Report

    baroninn, Mar 4, 2019, in forum: Security
    Replies:
    1
    Views:
    182
    cPanelMichael
    Mar 4, 2019
  5. orvn

    Disabling several mod_security rules due to 403 response to POST request?

    orvn, Feb 16, 2019, in forum: EasyApache
    Replies:
    6
    Views:
    113
    cPanelMichael
    Feb 22, 2019

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice