Site Security
Although software security is an extensive and complicated topic, you can typically take easy steps to improve Security immediately.
Web hosting administration software cPanel gives you a range of choices. Additional security tools and plugins are also accessible.
Here are ten suggestions for reaping most of the security enhancement capabilities of cPanel.
A quick note:
If you’re already somewhat familiar with the excellence of cPanel and looking to switch to a web hosting company, which offers enough features along with the C panel convenience, then our top recommendation (after analyzing 42 hosting providers in Feb 2022) is AccuWebHosting.
Contents
- 1. Allow Brute-Force Protection
- 2. Hosted websites Security Verify
- 3. Install Firewall Protection, Anti-Virus, and Anti-Rootkit on the right track
- 4. Define Secure Passwords
- 5. This Tweak Settings Checklist
- 6. Always stay up-to-date with the latest cPanel Updates
- 7. Secure Apache and PHP
- 8. Disable Anonymous FTP
- 9. Secure SSH
- 10. It is the Security Center Checklist
- Does C-Panel really merit Looking at?
- Introduction and tips
- Files
- Databases
- Domains
- Metrics
- Security
- Software
- Advanced
- Preferences
- General Information
- Statistics
- Conclusion
1. Allow Brute-Force Protection
When you change the parameter value, you ensure that all attempts to connect to the server via the IP address specified will result in the IP’s address getting blocked.
This IP will be recorded into the cPanel database.
After a certain time, the cPanel system will allow login attempts that originate using the IP address. To enable this feature, visit “CPHulk Brute Force Protection” within “Security Center” and then tap “Enable.”
The “IP Deny Manager “IP Deny Manager” option will permit you to select an IP address or domain name or the range of IP addresses that should be prevented from accessing websites that are managed by cPanel.
2. Hosted websites Security Verify
Sometimes, we are focused on the design and control of users’ access to cPanel as well as the websites that it oversees, but we do not take a look at the authenticity of the sites themselves. If a domain’s name is identified as potentially dangerous by tools such as Google Safe Browsing, this could reflect badly on your business’s image and its earnings and profits.
“Site Security Check” “Site Security Check” function within cPanel tests to see if something is happening to any domain names associated with websites that are hosted.
3. Install Firewall Protection, Anti-Virus, and Anti-Rootkit on the right track
There’s no reason to entice fate by assuming that hackers or viruses don’t get inside the cPanel installation. CSF (ConfigServer Security and Firewall) is a well-known firewall application that is used on cPanel servers. It also offers suggestions on how to enhance Security.
For antivirus, ClamAV is available as an add-on for cPanel servers. Rootkit (malicious software running on stealth mode) detection is possible through the installation of Rootkit Hunter software, for instance.
4. Define Secure Passwords
Make sure to change passwords as required. Secure passwords that can’t be compromised. Make use of your Password Generator tool in cPanel If you need some suggestions.
Create different passwords to prevent the default password configuration, which makes use of the same ID and password to access an account for a user, an FTP account, and the list goes on.
To ensure that no one is snooping about your password, turn on SSL so that you can access cPanel using “Tweak Settings” within “Server Settings.”
To protect against hacking account users, set up the strength of user passwords to require users to use robust passwords.
5. This Tweak Settings Checklist
Alongside the particular settings mentioned in the previous paragraphs (e.g., needing to use SSL) as well as there is the “Tweak Settings” section within “Server Configuration,” which provides a variety of additional security options. They include Cookie IP validation (limit the possibility of hackers capturing cPanel sessions cookies and then attempting to gain access to cPanel) as well as usage of tokens for Security to gain access to cPanel as well as using the “Bounce” alternative to delete non-routable mail and safeguard the server from email attacks.
6. Always stay up-to-date with the latest cPanel Updates
If you are using the latest version of cPanel, you’ll benefit from the improvements and bug fixes to Security. The developers of cPanel assist in this process by providing the “Upgrade to the latest version” choice on the cPanel homepage.
It is possible to allow the server to update itself every day. This is accomplished in “Update Settings” within “Server Settings.”
7. Secure Apache and PHP
For the rapid creation and compilation for the development of updated versions of PHP scripting and Apache server, cPanel has an application called “EasyApache.”
Apart from ensuring proper security practices by ensuring the most recent versions are used and containing any potentially harmful PHP scripts in their home directory, it will block the opening of files in other locations.
Open the open_basedir Tweak command located in the “Security Center” and then save and confirm “Enable the PHP open_basedir Security.”
8. Disable Anonymous FTP
The danger of keeping Anonymous FTP open is that hackers could gain access to your files to gain an access point to the account. However, if you disable Anonymous FTP and specify SSL to access (see the first paragraph above), you are two steps closer to ensuring proper Security.
You can accomplish this by going to “FTP Server Configuration” under “Service Configuration.” Make sure that “Allow Anonymous Logins” is set to “NO.
9. Secure SSH
Secure Shell (SSH) allows access via the internet to the server that runs cPanel. The command-line interface is simple, but it can be the best method to update, fix or modify.
However, the default port number 22 for SSH is well-known. To stop intruders from trying to access your system, change your port’s numbers to ones that are not likely to be guessable, for example, 1527. Make sure you select the port that isn’t currently in use.
Additionally, you should modify the configuration of the system to make use of the latest version of SSH (more secure than Version 1.).
Both of these SSH changes are accomplished by editing the SSH daemon configuration file at /etc/ssh/sshd_config: change the reference to Port 22 to Port 1527 (for example) and Protocol 2.1 to Protocol 2.
10. It is the Security Center Checklist
Alongside the password strength options and the encapsulation of PHP scripts (with open_basedir), other security enhancement options include limiting access to compilers for users that aren’t specified and limiting the use of such commands to make the user a default user, and specifying “Shell Fork-Bomb Protection.” It will block users from having unrestricted rights to resources on servers.
While you look over the different methods to strengthen Security, you’ll be able to see many of the security improvement options that are available in cPanel.
Read these instructions. Then look at the different options available and learn how they can assist you in running an extremely secure and high-performance cPanel server.
Does C-Panel really merit Looking at?
What is the reason behind cPanel? cPanel is a wonderfully helpful control panel for web hosting created to be user-friendly. This is by far the most well-known software of its kind across the globe and is available on a variety of the plans offered by Accuweb Hosting. cPanel lets you use different tools through a Graphical User Interface (GUI). This makes managing accounts significantly easier than using an interface for command-line users.
You can control all the domains and websites within a particular account through its cPanel panel interface. In this article, we’ll explain the various areas of cPanel and the functions they perform. We’ll also be focusing on the tools that are most helpful for those who are just beginning.
Introduction and tips
The cPanel platform lets users effortlessly perform maintenance and update. As the default settings, cPanel has all the options available in its main menu after you log in. If you’re the first time using cPanel, there are a lot of icons that could seem overwhelming! The good thing is that the majority of them can be overlooked initially. Some icons are utilized by almost every website owner. Other icons are used only for specific situations. We’ll examine the various areas of cPanel, and point out the systems that are most helpful when beginning.
It’s a good idea to note before we begin: cPanel has dozens of icons. It’s sometimes difficult to locate one characteristic in particular. In case you’re not sure, try clicking the ‘find functions swiftly with a single click button located at this page’s very top. This will sort the icons that are visible, so it is possible to find the information you require quickly.
Be aware that the layout and appearance of cPanel can be changed. You might notice that your cPanel appears different from your friend (or images you see on the internet). The sections might be different in arrangement. Don’t worry! The identical features will be in place in the latest versions of cPanel even when they’re grouped differently.
Files
This is the area where you’ll be able to manage your files on your account. This file Manager tool allows you to upload, download and modify files. Utilize FTP accounts to set up and manage each FTP account. It is also the section in the cPanel that has tools for backup. If you’ve
Databases
This cPanel category allows you to manage your website’s databases. Many website formats, like WordPress, make use of databases to store information about your site. PHPMyAdmin is a complete tool for managing databases that allows you to modify, configure and troubleshoot databases. Its MySQL Databases tool lets you create Databases and users as well as update existing ones.
You can enjoy all the benefits of cPanel for a reasonable price using the Shared Hosting plan from the world’s most reliable Webhosting service!
Domains
Nearly every icon on the Domains section of the cPanel can be useful. Its Domains icon opens an overview of all domains available on this cPanel to make it easy to access. Addon Domains is where you’ll need to add new domains to the cPanel account. Subdomains allow you to create new subdomains. Think of test.myownsitename.com in comparison to myownsitename.com.
You can utilize the Domains section for configuring your domains, as well. Redirects allow you to make a traditional 301 redirect that will send every visitor from one URL to a different one. Within the DNS Zone Editor, you are able to manage and modify the DNS settings for your domain. It is also where you’ll perform common tasks of customization, such as setting up MX records for hosting external mail.
As you’d imagine, the Email section lets you control and configure your server’s email settings. Go to email accounts to set up emails, alter passwords, access setup information, and even log in! The two options, Global Mail Filters and email filters allow you to set up specific filters to filter out or redirect certain types of emails. By combining these filters together with Cpanel’s Spam Filters, you can drastically restrict how much spam you’re receiving in your email inbox. Make sure to enable spam filtering since it’s not always turned on by default!
Metrics
Monitoring different metrics for your website is crucial to your marketing and business. The Metrics category is where you can see numerous statistics, keep track of mistakes, and track the amount of bandwidth you use. Awstats is quite useful. This section helps you determine the source of your traffic, how many users you’ve got, and which areas of your site they are going to. Another helpful tool within the Metrics section is Errors. This is where you can review the error log of your account for troubleshooting. You don’t have to log in via SSH!
Security
Making sure your website is secure is among the essential tasks you can perform. The tools that fall under this category let you control SSH access. It blocks IP addresses and safeguards those images against being linked to hotlinks. It’s also where you’ll be working with the security certificates for your website. Visit SSL/TLS status to enable your AutoSSL for free on any account with it installed. Make sure you enable it in the first place if you haven’t yet completed it! Here’s how you can do it for both shared hosting accounts and those that utilize WHM. If you’re installing a third Third-party SSL, it is necessary to start with the similarly called yet different SSL and TLS. Be careful not to confuse them!
Software
The Software category will help to expand the capabilities of websites you have on your account. There are two fabulous tools that can help you set up your website’s PHP. MultiPHP Manager lets you choose which versions of PHP are running on the particular website. Its MultiPHP INI Editor allows you to perform more precise changes, such as activating certain PHP settings or changing certain variables.
Notice: older versions of cPanel might have PHP Configuration instead of MultiPHP Manager. Other versions older than cPanel might not support MultiPHP’s INI Editor.
If your account has the Softaculous Apps Installation available, it’s here. Softaculous allows you to install the most popular software for websites like Drupal and WordPress in just two clicks. Utilize Softaculous to test different kinds of software and begin making your own WordPress website.
Advanced
This area is for tasks that aren’t typical but can be helpful for personalization. It is possible to accomplish things like creating a customized Error Page or creating scheduled tasks using Cron Jobs. Cron Jobs tool.
Preferences
The Preferences section will allow you to alter certain features associated with cPanel itself. For example, you can alter the language of your display by clicking the heading Change Language and altering your contact information, and even reset your cPanel password in Security and Password.
General Information
This is the upper sidebar located in the upper right-hand corner of the cPanel’s display. It contains useful information such as information about your account’s IP address and a link to see the details of your server’s information.
Statistics
This section is located on the lower left-hand side of your cPanel. This is a great method of checking statistics such as the Disk Usage and the number of domains you’ve added to your account. Be aware, however, that these figures only reflect usage of the cPanel account. If you’re a VPS user, even if you have just one cPanel account, you won’t get a correct reading of statistics from your cPanel.
It’s recommended to use root WHM if it requires a complete overview of the entire account.
Conclusion
It is evident that cPanel offers a variety of tools that will help you build your site. Keep in mind – that all of these tools focus on websites controlled by a specific account with cPanel. If you’d like to modify other cPanel accounts or set up more than one account simultaneously. It is necessary to use the Web Host Manager (WHM).
