The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

What to put in "Tweak Settings"

Discussion in 'General Discussion' started by mydomain, Aug 20, 2003.

  1. mydomain

    mydomain Well-Known Member

    Joined:
    Aug 10, 2003
    Messages:
    138
    Likes Received:
    0
    Trophy Points:
    16
    Hi,

    Can someone please advise what the best default options should be set in the WHM "Tweak Settings".

    Things like:

    Attempt to prevent pop3 connection floods

    Prevent the user 'nobody' from sending out mail to remote addresses (php and cgi scripts generally run as nobody if you are not using phpsuexec and suexec respectively.)

    etc etc

    I just wondered what the best settings are to enable for a more secure installation

    Regards,

    TIA

    Mike

    cPanel.net Support Ticket Number:
     
  2. B12Org

    B12Org Well-Known Member

    Joined:
    Jul 15, 2003
    Messages:
    692
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Seattle Washington
    cPanel Access Level:
    Root Administrator
    Yes, turn on pop3 flood protection, you can leave the php nobody alone, its just a preference really, there are better security features in "tweak security", choose the right bind and mysql, basically its just what ever you like and prefer.

    cPanel.net Support Ticket Number:
     
  3. mydomain

    mydomain Well-Known Member

    Joined:
    Aug 10, 2003
    Messages:
    138
    Likes Received:
    0
    Trophy Points:
    16
    Thanks for the reply B12Org,

    ok, so in essence everyone should enable php open_basedir Tweak and the mod_userdir Tweak in Security Tweaks?

    Just wondering, I would probably want to enable users to enter http://the.domain.com/~username to access their site whilst DNS changes were taking place - does the mod_userdir Tweak actually prevent that happening or does it simply just avoid utilising the bandwidth of the.domain.com and take it off the user's own bandwidth allocation?

    Also in mod_userdir Protection there is an entry for DefaultHost (nobody) which is flagged to exclude - is that left in there?

    TIA

    Mike

    cPanel.net Support Ticket Number:
     
    #3 mydomain, Aug 21, 2003
    Last edited: Aug 21, 2003
  4. B12Org

    B12Org Well-Known Member

    Joined:
    Jul 15, 2003
    Messages:
    692
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Seattle Washington
    cPanel Access Level:
    Root Administrator
    Yeah, thats left on. And even if its turned on, they can still access their account becuase they are accesssing it as the user nobody, so it still works.

    cPanel.net Support Ticket Number:
     
Loading...

Share This Page