The Linux-based cPanel is no doubt, one of the safest web hosting control panels available today. It comes with a myriad of features, all of which contribute to its ease-of-use and overall impressive performance. It also comes with plenty of serve security-increasing features, another quality that attracts thousands and thousands of people to use it.
However, just like with almost any other type of web-based activity, it is a must for cPanel users not to just rely on the default and built-in security features of the system. They should also take extra effort to enhance the level of protection they have. Aside from defining highly secure passwords, using firewall, anti-rootkit,and anti-virus and securing the SSH, here are some other must-dos when it comes to cPanel account and server security.
Getting and Installing All Rolled Out cPanel Updates
By simply making use of the latest updates rolled out to cPanel, users are already adding to the layer of security they get when they use the service. There is a good reason behind all these updates: they are basically improved versions of their predecessors. Bugs are fixed, enhancements are added, and potential problems are reduced.
Besides, users do not actually have to go out of their way just to have these updates installed. Thanks to the developers of the control panel, they can automatically be downloaded and enforced. There is an ‘Upgrade to Latest Version’ option that can be found on the home page of the system for automatic updates.
Taking Advantage of the Brute Force Protection Feature
The Brute Force Protection is a very useful security feature that should be set right away. A value should be set for this parameter. This value refers to the number of possible unsuccessful access attempts that can be made by a single IP address. If the IP address reaches this number, and it still is unable to successfully access the server, it is automatically blocked by the feature from making further attempts.
Removing Anonymous FTP
When FTP is left anonymous, cPanel users are leaving their accounts open to possible hacking activities. Hackers can take advantage of Anonymous FTP and upload content that can then provide them with account access. When this feature is disabled, and an SSL is specified, the risk associated with these unlawful actions can be minimized.
Disabling the Anonymous FTP feature can be done by simply going to the ‘Service Configuration’ tab and selecting ‘FTP Server Configuration’. Under this option, the ‘Allow Anonymous Logins’ should be set to no.
Ensuring that Both Apache and PHP are Secure
The ‘EasyApache’ tool found in the cPanel system is ideal for quick compilation and building of new Apache and PHP versions. In addition to ensuring that both are making use of the most recent versions, users can also increase their security by making sure potentially dangerous scripts are contained.
This can be done by accessing the ‘PHP open_basedir Tweak’ option and checking the ‘Enable php open_basedir Protection’ option.
Regularly Checking All Hosted Websites
One of the most common mistakes that web servers make is putting all their efforts in ensuring that their accounts and sites are protected from potential threats. However, their servers and websites can also be held accountable.
There are some cases wherein a legal website can be identified by Google Safe Browsing as a potential threat. When this happens, web users are definitely going to avoid visiting the site. As a result, the site owner is going to suffer from a bad reputation, something that greatly affects profitability and revenue.
Fortunately, cPanel offers users a way to check if their websites have been regarded by the Google tool as a potential threat. This is through the function named
‘Site Security Check’. This is a very useful tool, as users can then begin taking steps to clear their domain names.
Running a more secure cPanel server takes a little more effort, but the energy users are going to spend in doing so is definitely worth it.