whats gives with new lame warning page!!!

cPanelNick

Administrator
Staff member
Mar 9, 2015
3,481
35
208
cPanel Access Level
DataCenter Provider
You have turned on the XSRF protection engine. You can disable it in tweak setting by unchecking:

Only permit cpanel/whm/webmail to execute functions that have a referrer that matches one of the domains/ip on this server. This will help prevent XSRF attacks, but may break integration with other systems, login applications, and billing software.
 

cPanelDavidG

Technical Product Specialist
Nov 29, 2006
11,212
13
313
Houston, TX
cPanel Access Level
Root Administrator
On the Tweak Settings page, under Security, un-check the following setting:

Only permit cpanel/whm/webmail to execute functions that have a referrer that matches one of the domains/ip on this server. This will help prevent XSRF attacks, but may break integration with other systems, login applications, and billing software.
 

WebHostPro

Well-Known Member
PartnerNOC
Jul 28, 2002
1,723
28
328
LA, Costa RIca
cPanel Access Level
Root Administrator
Twitter
Does cpanel love to make my life more dificult, do not realize that thousands of customers might get upset when trying to access there cpanel and seeing a access denied page. Sometimes I think cpanel really does like to just piss people off cause they can.

How do I remove this off the hundreds of servers I manage with cpanel? Hopefully it's easy since I have to do to LOTS of servers.

Here is the lame new page cpanel shows when trying to access it from lpanel.


Access Denied
Functions in cPanel / WHM are available only directly through the cPanel and WHM interfaces or through our XML API. It appears that this request is coming from a referring site and might be malicious.

Request Info:
Requested page: /
Referring site: https://dwhs.net

Form Data:
Key Value

If you wish to continue to this page, you may do so but please note that allowing other sites to tell you which actions to perform in cPanel / WHM could be a security risk. Continue at Your Own Risk!
 
  • Like
Reactions: rhenderson

rhenderson

Well-Known Member
Apr 21, 2005
784
2
168
Oklahoma
cPanel Access Level
Root Administrator
Diito bro, I agree. I understand new features are needed and wanted. But when an upgrade to an existing installation should leave the option off an email the admin about if they want the option or something. It gives the warning with RVSkins as well. Probably only a few of us using that app :)

Does cpanel love to make my life more dificult, do not realize that thousands of customers might get upset when trying to access there cpanel and seeing a access denied page. Sometimes I think cpanel really does like to just piss people off cause they can.

How do I remove this off the hundreds of servers I manage with cpanel? Hopefully it's easy since I have to do to LOTS of servers.

Here is the lame new page cpanel shows when trying to access it from lpanel.


Access Denied
Functions in cPanel / WHM are available only directly through the cPanel and WHM interfaces or through our XML API. It appears that this request is coming from a referring site and might be malicious.

Request Info:
Requested page: /
Referring site: https://dwhs.net

Form Data:
Key Value

If you wish to continue to this page, you may do so but please note that allowing other sites to tell you which actions to perform in cPanel / WHM could be a security risk. Continue at Your Own Risk!
 
Last edited:

Kishan

Member
May 9, 2009
14
0
51
You have turned on the XSRF protection engine. You can disable it in tweak setting by unchecking:

Only permit cpanel/whm/webmail to execute functions that have a referrer that matches one of the domains/ip on this server. This will help prevent XSRF attacks, but may break integration with other systems, login applications, and billing software.
Thanks, helped me ;)
 
Thread starter Similar threads Forum Replies Date
B User Experience 0