hosted by liquidweb


Go Back   Web Hosting Talk : Web Hosting Main Forums : Hosting Security and Technology : Securing a Cpanel Server
Reply

Hosting Security and Technology Configuring and optimizing web hosting servers and operating systems, developing administration scripts, building servers, protecting against hackers, and general security (SSL certificates, etc.)
Forum Jump

Securing a Cpanel Server

Reply Post New Thread In Hosting Security and Technology Subscription
 
Send news tip View All Posts Thread Tools Search this Thread Display Modes
  #1  
Old 11-02-2009, 09:36 AM
TheComputerGuy TheComputerGuy is offline
Web Hosting Master
  
Join Date: Jun 2000
Location: Cyberspace
Posts: 799

Securing a Cpanel Server

I am concerned as I get several emails containing this like this:


Large Number of Failed Login Attempts from IP xxx.xxx.xxx.xxx

I'm trying to stop it, as obviously, I don't want anyone gaining access to my server.

Any tips for making sure the server is really secure?

All the best,

__________________
Chris

Reply With Quote


Sponsored Links
  #2  
Old 11-02-2009, 10:07 AM
prashant1979 prashant1979 is offline
Eternal Learner
  
Join Date: Jul 2007
Posts: 1,776
If you are really serious towards your server's security, then you can try http://www.configserver.com/cp/cpanel.html.

__________________
Prashant T.

Don't run after Success. Run after Excellence and Success will soon follow.

Reply With Quote
  #3  
Old 11-02-2009, 10:29 AM
donbiz donbiz is offline
Junior Guru
  
Join Date: Jul 2008
Location: Maryland
Posts: 191
If its just failed login attempts you could either configure CSF to block IP's after only a couple failed logins or use cPanel's built-in cPHulk Brute Force Protection. Have you done anything else to secure your server?

Reply With Quote
Sponsored Links
  #4  
Old 11-02-2009, 10:39 AM
PogiWeb PogiWeb is offline
We need coffee...
  
Join Date: Jan 2003
Location: U.S.A.
Posts: 3,906
Quote:
Originally Posted by TheComputerGuy View Post
I am concerned as I get several emails containing this like this:


Large Number of Failed Login Attempts from IP xxx.xxx.xxx.xxx

I'm trying to stop it, as obviously, I don't want anyone gaining access to my server.

Any tips for making sure the server is really secure?

All the best,
Wow... Where should I start on this topic? I am guessing since your having issues with a large number of failed login attempts then I would question the current security measures in place besides failed login attempts. Yes, failed login attempts are going to happen from valid clients, yourself, and staff. The first thing you would want to do is change the number of failed login attempts until a ban is put into place by cPanel/WHM. If its a bunch of Brute Force attacks on the server shell then I would suggest installing a brute force detection software.

Now, with all this being said I would suggest you do a search on "How to secure a cpanel server", as I'm sure you'll find many suggestions. Here is a good tutorial http://www.jaguarpc.com/forums/showthread.php?t=13647 .

Best of Luck

__________________
PogiWeb LLC | sales@pogiweb.com | 1-704-464-8238
PogiWeb.com - The best VPS prices around with Instant Setups and Reseller Program!
Simply the best Shared, Reseller, Virtual Private Server and Dedicated Server Hosting Provider around!
Join us on Facebook!

Reply With Quote
  #5  
Old 11-02-2009, 10:52 AM
keserhosting keserhosting is offline
Web Hosting Master
  
Join Date: Oct 2009
Posts: 1,058
Mostly attacks are targeted through the /tmp partition. Securing your /tmp
partition properly can also reduced the risk of possible attack to your server.

__________________
Shared Hosting | Reseller Hosting | VPS Hosting | Dedicated Servers
KeserHosting.Com

Reply With Quote
  #6  
Old 11-02-2009, 12:21 PM
Alistair Smith Alistair Smith is offline
Newbie
  
Join Date: Oct 2009
Posts: 26
Use the following cPanel script if you want to secure /tmp.

/scripts/securetmp

Reply With Quote
  #7  
Old 11-03-2009, 06:16 PM
sbunnithan sbunnithan is offline
Newbie
  
Join Date: Oct 2009
Location: India
Posts: 23
You can use iptables to block ips. Use the command

Quote:
iptables -I INPUT -s IPxxx.xxx.xxx.xxx -j DROP

Reply With Quote
Reply

Similar Threads
Thread Thread Starter Forum Replies Last Post
cPanel Server Securing sjohns Employment / Job Offers 1 05-17-2006 04:44 AM
securing cpanel server ? martinrussel Hosting Security and Technology 3 03-11-2004 11:01 AM
Securing a cpanel server dbbrock1 Hosting Security and Technology 2 06-30-2003 09:13 AM

Related posts from TheWhir.com
Title Type Date Posted
Hosting Control Panel cPanel & WHM 11.34 Release Hits Stable Tier Web Hosting News 2012-11-12 17:04:57
Video: cPanel and Attracta Talk About Integrating SEO Tools into the Hosting Control Panel Whir Tv 2012-08-31 14:10:47
Control Panel cPanel Launches New Apache Configuration Script Web Hosting News 2011-12-28 19:41:39
cPanel Offers Windows Hosting Control Panel Enkompass for Free Web Hosting News 2011-10-13 17:14:16
cPanel to Launch Certification Program at cPanel Conference 2011 Web Hosting News 2011-09-21 18:15:42


« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode
Postbit Selector

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Forum Jump
Login:
Log in with your username and password
Username:
Password:



Forgot Password?
Advertisement:
Web Hosting News:

cPanel Addresses User Concerns of Transfer and Backup Restore System Security

US Attorney says Government Should Have Warrants to Search Email

8kMiles Acquires Cloud Security Firm FuGen Solutions for $7.5 Million

Name.com Resets Customer Passwords After Security Breach

Outbound Spam Causing Sleepless Nights?

Malwarebytes Launches Data Scan-and-Backup Service

Commtouch Report: Spam, Malware Continues to Increase in Q1 2013

Researchers Urge System Admins to Check for New Apache Web Server Backdoor Malware

APWG Study Finds Phishers Increasingly Target Shared Virtual Servers

Man Arrested in Connection to Spamhaus DDoS Attacks



 

Learn more about advertising opportunities across the iNET Interactive Network.

LiquidWeb
X

Welcome to WebHostingTalk.com

Create your username to jump into the discussion!

WebHostingTalk.com is the largest, most influentual web hosting community on the Internet. Join us by filling in the form below.


(4 digit year)

Already a member?