Portal Home > Knowledgebase > Articles Database > Recommended cPanel Security Settings
Recommended cPanel Security Settings
Posted by skyphost, 03-20-2014, 05:21 PM |
Hey all!
I'm trying to setup cpanel on my VPS and was wondering if anyone could help me with what security (tweaks) to set? Any recommendations? Thanks in advance
|
Posted by lenaPS, 03-20-2014, 05:45 PM |
cPanel's Recommended Security Settings Checklists would be a good place to start with. Also, bear in mind that security is not a one time tweak, but rather an ongoing process. Things like keeping the version up to date and making sure to apply patches for critical vulnerabilities is also something you should have in mind.
Last edited by lenaPS; 03-20-2014 at 05:49 PM.
|
Posted by skyphost, 03-20-2014, 05:58 PM |
Thanks for the reply. I did, however, follow the checklist, but i was wondering if there were any additional tweaks that they might have not included on the checklist.
|
Posted by lenaPS, 03-20-2014, 06:21 PM |
Applying anything beyond general/recommended security settings really depends on the use case scenarios of your service. I've stumbled upon situations where people configure their environment according to somebody's 'security tweaks' and instead of providing an additional layer of security, it caused issues with the service.
If you have already applied the general/recommended services, the next thing for you would be to break down the different use cases for your service, map the potential threats and then look in the documentation what you can do to mitigate the problem.
|
Posted by skyphost, 03-20-2014, 06:32 PM |
Thank you lenaPS!
|
Posted by wiztelsys, 03-21-2014, 01:40 AM |
Goto WHM >> Tweak Security
Serverwide tweaks.
WHM >> PHP Configuration Editor
To tweak php environment.
WHM >> Exim Configuration Editor
To tweak mailserver as to mitigate spamming etc
|
Posted by prashant1979, 03-21-2014, 02:40 AM |
Install CSF and then check security settings from the CSF plugin in WHM. It will give you suggestions to tweak security settings on the server. Also, change Password Authentication to Public Key Authentication for SSH.
|
Add to Favourites Print this Article
Also Read
ETSHost Down? (Views: 634)