The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

SSH/Telnet Check

Discussion in 'cPanel Developers' started by robocap, Dec 2, 2006.

  1. robocap

    robocap Well-Known Member

    Joined:
    Nov 6, 2006
    Messages:
    67
    Likes Received:
    0
    Trophy Points:
    6
    hi dear
    i install csf and config them
    but score 57/68*

    for exapmle say that
    1-Check SSHv1 is disabled
    2-Check /tmp is mounted as a filesystem
    3-Check /var/tmp is mounted noexec,nosuid
    4-Check /etc/named.conf for recursion restrictions
    5-Check SSHv1 is disabled
    6-Check SSH on non-standard port
    7-Check SSH PasswordAuthentication
    8-Check root forwarder
    9-Check exim for extended logging
    10-Check apache for mod_evasive
    11-Check phpsuexec

    do you have learn in about csf?
    thanks
    please help me:)
     
  2. robocap

    robocap Well-Known Member

    Joined:
    Nov 6, 2006
    Messages:
    67
    Likes Received:
    0
    Trophy Points:
    6
    help about csf

    hi dear.
    please help me.
    thank
     
  3. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,450
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    At the bottom of page below your score click the button that says "Run again and display comments" That should get you started. Google should help with the rest. Good luck.
     
  4. robocap

    robocap Well-Known Member

    Joined:
    Nov 6, 2006
    Messages:
    67
    Likes Received:
    0
    Trophy Points:
    6
    Hi dear.
    i can changes securet server Your Score: 60/68*


    but i have very problem

    You should disable SSHv1 by editing /etc/ssh/sshd_config and setting:
    Protocol 2


    and


    You might want to consider moving SSH to a non-standard port to avoid basic SSH port scans by editing /etc/ssh/sshd_config and setting:
    Port nnnn
    Where nnnn is a port of your choosing. Don't forget to open the port in the firewall first!


    and


    For ultimate SSH security, you might want to consider disabling PasswordAuthentication and only allow access using PubkeyAuthentication. For more information read this article and this article


    .
    i can underestand them.,
    do you can help me?

    Thank You

    Bye
     
  5. SoftDux

    SoftDux Well-Known Member

    Joined:
    May 27, 2006
    Messages:
    983
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Johannesburg, South Africa
    cPanel Access Level:
    Root Administrator
    where do I find out more about this script, and how to use it?
     
  6. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,450
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
  7. SoftDux

    SoftDux Well-Known Member

    Joined:
    May 27, 2006
    Messages:
    983
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Johannesburg, South Africa
    cPanel Access Level:
    Root Administrator
    Thank you ;)
     
Loading...

Share This Page