BuycPanel Blog

BuycPanel Blog

Latest news and updates

Six Ways to Ensure cPanel Server Security

Posted by Alex on 03 05 2017.

You can find almost anything you want in the vast space known as the Internet. Looking for old World War II photos? Go online. Want to know how to make a simple spring roll recipe? Check cooking websites. Interested in creating survival knots? Go to YouTube.

But while there’s a wealth of information available online, there are also lots of hackers out there looking to steal your data and put your cPanel server at risk. The good news is that if you are using cPanel, protecting your digital information should be as easy a A-B-C.

The following are some general reminders for keeping your cPanel server more secure:

Regularly update cPanel. Don’t ignore those regular cPanel updates. These patches address bugs and security flaws so skipping an update can expose you to a lot of risks. Plus, it doesn’t really take a lot of time to complete these updates. You can also configure automatic updates to ensure that your cPanel is regularly updated.

Use stronger passwords. One of the most common cases of security lapses is the use of an insecure password. Make no mistake about it,  the use of insecure passwords can increase the likelihood of a hacker compromising an account. When hackers are able to correctly guess a password, they can get into a cPanel account and infect or deface websites. They can also use these websites to spread viruses.

So, what makes a password secure? Ideally, a password has to have at least eight character including alphanumeric and special symbols. Passwords that include significant dates (birthdays, anniversaries, etc.) and dictionary words is very much discouraged.

You can use certain online tools to check the security or strength of account passwords.

Regularly check hosted websites. A domain name that has been tagged as a potential threat by tools such as Google Safe Browsing can affect your server’s security.  Regularly check the “Site Security Check” function in cPanel to see if any of the domain names has been identified as a potential threat.

Secure Apache. The most readily available way to get access to a web server is through a web server application. This underlines the need to secure your Apache installation.

One tool that you can use for this purpose is ModSecurity. You can install this in cPanel version 11.44 or earlier.

For those with cPanel version 11.46 and later, WHM’s ModSecurity Tools can be used instead.

Disable Anonymous FTP. Leaving Anonymous FTP open is risky. There’s the potential that a hacker will be able to upload content and gain access to your account. But by disabling Anonymous FTP, you can prevent these kinds of security breach from happening.

To disable Anonymous FTP, go to “FTBP Server Configuration” which is under “Service Configuration.” Set to “NO”  the “Allow Anonymous Logins” tab.

Enable firewall. The firewall protects the server from unauthorized access, as well as viruses and malware. Install a firewall or enable it to limit the access to your server. You can also use this to remove unused services and daemons.

These six pointers can help you run a secure and high performance cPanel server. By following these guidelines, you can reduce the risks of your server being attacked by hackers.