Make cpanel a bi more secure.

**TippiE** · 05-04-2009 12:04 AM

Go to security center and do the following things:

-Enable cphulk brute force detection
-Enable open_basedir
-Disable the compilers through the compilers tweak
-Enable shell fork bomb protection if you have users using ssh
-recompile apache and enable safe_mode and mod security

**Kap** · 05-04-2009 12:52 PM

Panel scripts are generally not the best bet if you want to secure a site though (to state the blindingly obvious). Getting used to the bashline is the best snigle thing you can do when it comes security imo, then securing SSH (port movement, filtering and access rules etc).

I mean, how many times have we seen exploits for panel scripts in the last 6 months? The roundcube/DirectAdmin being just one example.

But if your unfamiliar with the command line then tippie's tips are defiantly something to take under advisement.

**Luke** · 05-07-2009 05:45 PM

Safe mode is annoying if you want to install a scipt disable it while doing so or you'll meet a whole range of errors.

**TippiE** · 05-08-2009 05:10 PM

Originally Posted by Luke

Safe mode is annoying if you want to install a scipt disable it while doing so or you'll meet a whole range of errors.

You can disable safe mod for that particular site

**William Palmer** · 06-15-2009 02:26 PM

Actually i do reccomend safe mode now it gets annoying because u have to work out the tweaks but after it it is very good

**Dlow** · 05-15-2010 02:28 AM

@ William

To be honest ever since the release of php5 safemode is a load of crap, And is going to be removed when they roll out php6 Safe mode is easily by passable the safest way to secure a server is to disable certain functions.

Thread: Make cpanel a bi more secure.

LinkBack

Thread Tools

Display