Cpanel
![cpanel cpanel](https://vpsie.com/wp-content/uploads/2021/06/Find-CpanelWHM-logs.png)
WHM > Service Configuration > PHP Configuration Editor > Select Advanced mode > register_globals: Off.WHM > Security Center > PHP open_basedir Tweak > Enable PHP open_basedir Protection > Save.Enable PHP open_basedir protection: It prevents PHP scripts from files outside of its home directory.Change the PHP handler to suPHP, turn Apache suEXEC to ‘On’ and ‘Save’ New Configuration.Enable suEXEC and suPHP by browsing to WHM > Service Configuration > suEXEC. Configure suEXEC for executing the CGI scripts and suPHP as the PHP handler.Specific rules defined in the ModSecurity helps in blocking connection that doesn’t match the rules. In WHM, you should enable ModSecurity to secure Apache from attacks like code injection. If you hit ‘Enter’, the key will be placed in ‘/home/user/.ssh/id_rsa’ by default. Generate SSH key in the host machine > ssh-keygen Password authentication in the server is disabled now. Open SSH Config file ( vi /etc/ssh/sshd_config ) > Edit the Password Authentication to “no” To log in, use the new user you just created or the existing one.ĭisable password authentication and allow SSH access only by key-based authentication. Once you have terminated the session, you can’t log in as a Root user. Open SSH config file > Set PermitRootLogin to ‘No’ > Restart SSH If you want an existing user to be the wheel user, you can simply go to WHM > Security Center > Manage Wheel Group Users > Select the user and click “Add to Group”. Hit “Enter” once you are done with setting a password.Īdd that user to the Wheel user group. When you are logged into root user, create a new user, you will then be asked a few questions.
#Cpanel update
Update SSH packages to the latest stable version. Therefore, if you don’t secure SSH, there are chances of attacks. SSH or Secure Shell is a remote connectivity tool in Linux which helps users to log into a remote machine and execute commands.
#Cpanel cracker
#Cpanel generator
If you have issues, you can leverage “Password Generator tool” to have ideas.Avoid using significant dates and dictionary words.Utilize at least 8 characters including alphanumeric and grammatical symbols.Weak passwords > Hacked easily > Infect client sites or spread virusesĨ0% of hacking attempt try to obtain the site by cracking the weak password set by the site owners.īut how can you make sure your password is secure?Įdit “/etc/fs” file to configure password options on your system.Something everybody knows today! But still, people ignore it. Go to WHM > Server Configuration > Update Preferences. To escape these efforts, you can simply turn on the automatic updates.
![cpanel cpanel](https://www.hoasted.com/wp-content/uploads/2020/06/cpanel-demo-1.png)
You can also update using this line: #/scripts/upcp –force