{"id":619,"date":"2023-12-13T11:33:03","date_gmt":"2023-12-13T11:33:03","guid":{"rendered":"https:\/\/linuxresellerwebhosting.in\/blog\/?p=619"},"modified":"2023-12-13T11:33:03","modified_gmt":"2023-12-13T11:33:03","slug":"securing-your-cpanel-server","status":"publish","type":"post","link":"https:\/\/linuxresellerwebhosting.in\/blog\/securing-your-cpanel-server\/","title":{"rendered":"securing your cPanel server"},"content":{"rendered":"<p><strong>In this tutorial we are going to see, how to secure our cPanel\/WHM installed server.<\/strong><\/p>\n<h4 class=\"fittexted_for_content_h4\"><span class=\"ez-toc-section\" id=\"Use_Secure_Passwords\"><\/span>Use Secure Passwords<span class=\"ez-toc-section-end\"><\/span><\/h4><div id=\"ez-toc-container\" class=\"ez-toc-v2_0_82_2 ez-toc-wrap-left counter-hierarchy ez-toc-counter ez-toc-light-blue ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<span class=\"ez-toc-title-toggle\"><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/linuxresellerwebhosting.in\/blog\/securing-your-cpanel-server\/#Use_Secure_Passwords\" >Use Secure Passwords<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/linuxresellerwebhosting.in\/blog\/securing-your-cpanel-server\/#Use_secure_SSH_Keys\" >Use secure SSH Keys<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/linuxresellerwebhosting.in\/blog\/securing-your-cpanel-server\/#Move_SSH_to_a_Different_Port\" >Move SSH to a Different Port<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/linuxresellerwebhosting.in\/blog\/securing-your-cpanel-server\/#Enable_CPHulk_Brute_Force_Protection_in_server\" >Enable CPHulk Brute Force Protection in server<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/linuxresellerwebhosting.in\/blog\/securing-your-cpanel-server\/#Turn_off_unused_services_and_daemons\" >Turn off unused services and daemons<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/linuxresellerwebhosting.in\/blog\/securing-your-cpanel-server\/#Secure_your_Apache\" >Secure your Apache<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/linuxresellerwebhosting.in\/blog\/securing-your-cpanel-server\/#Install_CSF\" >Install CSF<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/linuxresellerwebhosting.in\/blog\/securing-your-cpanel-server\/#Harden_your_tmp_partition\" >Harden your \/tmp partition<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/linuxresellerwebhosting.in\/blog\/securing-your-cpanel-server\/#Disable_system_compilers\" >Disable system compilers<\/a><\/li><\/ul><\/nav><\/div>\n\n<p>Insecure passwords are one common security vulnerability. If an account password is insecure and compromised client sites can be defaced, hacked and valuable data can be stolen.<\/p>\n<p>Always change your password as often as possible. Here are more tips to making a secure password.<\/p>\n<ul>\n<li>Passwords should be alphanumeric and grammatical.<\/li>\n<li>Passwords should be in 10 or more characters.<\/li>\n<li>Don\u2019t use the same password for other sites.<\/li>\n<li>Don\u2019t let your browser store your passwords.<\/li>\n<li>Don\u2019t use names of your family, birthdate or numbers special to you.<\/li>\n<li>Don\u2019t use any dictionary words in your password.<\/li>\n<li>Generate a random password, some password generator sites. They\u00a0provide options to generate password with special characters.<\/li>\n<\/ul>\n<h4 class=\"fittexted_for_content_h4\"><span class=\"ez-toc-section\" id=\"Use_secure_SSH_Keys\"><\/span>Use secure SSH Keys<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>Change the way of login to your servers shell from passwords to SSH keys. SSH keys are more secure and require a special pass phrase to be used. To generate an SSH key login to <strong>WHM<\/strong> &gt; <strong>Security Center<\/strong> Section &gt; <strong>Manage root\u2019s SSH Keys<\/strong>.<\/p>\n<p>Click on <strong>Generate a New Key<\/strong>, enter the key name and your secure password twice.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-564 size-full\" src=\"https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/sshkey.jpg?resize=803%2C518\" sizes=\"auto, (max-width: 803px) 100vw, 803px\" srcset=\"https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/sshkey.jpg?w=803&amp;ssl=1 803w, https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/sshkey.jpg?resize=300%2C194&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/sshkey.jpg?resize=768%2C495&amp;ssl=1 768w\" alt=\"server secure\" width=\"803\" height=\"518\" data-attachment-id=\"564\" data-permalink=\"https:\/\/www.webhostingchennai.co.in\/blog\/tips-securing-cpanel-server\/sshkey\/\" data-orig-file=\"https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/sshkey.jpg?fit=803%2C518&amp;ssl=1\" data-orig-size=\"803,518\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"sshkey\" data-image-description=\"\" data-medium-file=\"https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/sshkey.jpg?fit=300%2C194&amp;ssl=1\" data-large-file=\"https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/sshkey.jpg?fit=803%2C518&amp;ssl=1\" data-recalc-dims=\"1\" \/><\/p>\n<h4 class=\"fittexted_for_content_h4\"><span class=\"ez-toc-section\" id=\"Move_SSH_to_a_Different_Port\"><\/span>Move SSH to a Different Port<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>Try to move your ssh to a different port to deter anyone without any specific knowledge of your server from easily discovering your ssh port. Most visitors search on port 22 which is the default ssh port.<\/p>\n<p>Always use custom port since these are privilege ports and only root can use them.<\/p>\n<p>This topic we have already discussed <strong><a href=\"https:\/\/www.webhostingchennai.co.in\/blog\/security\/change-ssh-port\/\" target=\"_blank\" rel=\"noopener\">here<\/a><\/strong><\/p>\n<h4 class=\"fittexted_for_content_h4\"><span class=\"ez-toc-section\" id=\"Enable_CPHulk_Brute_Force_Protection_in_server\"><\/span>Enable CPHulk Brute Force Protection in server<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>CPHUlk \u00a0a service that protects your server from brute force attacks. A brute force attack is a hacking method that uses an automated system to guess the password to your web server or services.<\/p>\n<p>When CPHulk blocks an attack it shows in the login page that the \u2018<strong>login is invalid<\/strong>\u2018. To avoid getting locked out of your own server, add your ip address to the whitelist.<\/p>\n<p>You can access CPHulk thru <strong>WHM<\/strong> &gt; <strong>Security Center<\/strong> section &gt; <strong>cPHulk Brute Force Protection<\/strong>.<\/p>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-565 size-full\" src=\"https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/brut.jpg?resize=1183%2C648\" sizes=\"auto, (max-width: 1000px) 100vw, 1000px\" srcset=\"https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/brut.jpg?w=1183&amp;ssl=1 1183w, https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/brut.jpg?resize=300%2C164&amp;ssl=1 300w, https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/brut.jpg?resize=768%2C421&amp;ssl=1 768w, https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/brut.jpg?resize=1024%2C561&amp;ssl=1 1024w\" alt=\"secure server \" width=\"1183\" height=\"648\" data-attachment-id=\"565\" data-permalink=\"https:\/\/www.webhostingchennai.co.in\/blog\/tips-securing-cpanel-server\/brut\/\" data-orig-file=\"https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/brut.jpg?fit=1183%2C648&amp;ssl=1\" data-orig-size=\"1183,648\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"brut\" data-image-description=\"\" data-medium-file=\"https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/brut.jpg?fit=300%2C164&amp;ssl=1\" data-large-file=\"https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/brut.jpg?fit=1024%2C561&amp;ssl=1\" data-recalc-dims=\"1\" \/><\/p>\n<p>&nbsp;<\/p>\n<h4 class=\"fittexted_for_content_h4\"><span class=\"ez-toc-section\" id=\"Turn_off_unused_services_and_daemons\"><\/span>Turn off unused services and daemons<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>Any service or daemon that allows connections to your server may also allow hackers to gain access. To reduce security risks, disable all services and daemons that you do not use.<\/p>\n<p>Disable any services that are not in use in WHM\u2019s Service Manager interface<\/p>\n<p>(<strong>Home<\/strong> &gt;&gt; <strong>Service Configuration<\/strong> &gt;&gt; <strong>Service Manager<\/strong>).<\/p>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-566 size-full\" src=\"https:\/\/linuxresellerwebhosting.in\/blog\/wp-content\/uploads\/2019\/02\/pyx.png\" alt=\"secure server\" width=\"530\" height=\"552\" data-attachment-id=\"566\" data-permalink=\"https:\/\/www.webhostingchennai.co.in\/blog\/tips-securing-cpanel-server\/service\/\" data-orig-file=\"https:\/\/i2.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/service.jpg?fit=1302%2C672&amp;ssl=1\" data-orig-size=\"1302,672\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"service\" data-image-description=\"\" data-medium-file=\"https:\/\/i2.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/service.jpg?fit=300%2C155&amp;ssl=1\" data-large-file=\"https:\/\/i2.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/service.jpg?fit=1024%2C529&amp;ssl=1\" data-recalc-dims=\"1\" srcset=\"https:\/\/linuxresellerwebhosting.in\/blog\/wp-content\/uploads\/2019\/02\/pyx.png 530w, https:\/\/linuxresellerwebhosting.in\/blog\/wp-content\/uploads\/2019\/02\/pyx-288x300.png 288w, https:\/\/linuxresellerwebhosting.in\/blog\/wp-content\/uploads\/2019\/02\/pyx-58x60.png 58w\" sizes=\"auto, (max-width: 530px) 100vw, 530px\" \/><\/p>\n<p>&nbsp;<\/p>\n<h4 class=\"fittexted_for_content_h4\"><span class=\"ez-toc-section\" id=\"Secure_your_Apache\"><\/span>Secure your Apache<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>The most readily-available way to access a web server is the web server application. You must secure your Apache installation.<\/p>\n<p>One of the best tools that you can use to prevent malicious Apache use is ModSecurity\u2122.<\/p>\n<p>In cPanel &amp; WHM version 64.0 and later, you can use the following interfaces to manage ModSecurity:<\/p>\n<ul>\n<li>WHM\u2019s ModSecurity\u2122 Tools interface (<strong>Home<\/strong> &gt;&gt; <strong>Security Center<\/strong> &gt;&gt; <strong>ModSecurity\u2122 Tools<\/strong>).<\/li>\n<li>WHM\u2019s ModSecurity\u2122 Configuration interface (<strong>Home<\/strong> &gt;&gt; <strong>Security Center<\/strong> &gt;&gt; <strong>ModSecurity\u2122 Configuration<\/strong>).<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-567 size-full\" src=\"https:\/\/i2.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/mod.jpg?resize=1053%2C679\" sizes=\"auto, (max-width: 1000px) 100vw, 1000px\" srcset=\"https:\/\/i2.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/mod.jpg?w=1053&amp;ssl=1 1053w, https:\/\/i2.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/mod.jpg?resize=300%2C193&amp;ssl=1 300w, https:\/\/i2.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/mod.jpg?resize=768%2C495&amp;ssl=1 768w, https:\/\/i2.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/mod.jpg?resize=1024%2C660&amp;ssl=1 1024w\" alt=\"secure server\" width=\"1053\" height=\"679\" data-attachment-id=\"567\" data-permalink=\"https:\/\/www.webhostingchennai.co.in\/blog\/tips-securing-cpanel-server\/mod\/\" data-orig-file=\"https:\/\/i2.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/mod.jpg?fit=1053%2C679&amp;ssl=1\" data-orig-size=\"1053,679\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"mod\" data-image-description=\"\" data-medium-file=\"https:\/\/i2.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/mod.jpg?fit=300%2C193&amp;ssl=1\" data-large-file=\"https:\/\/i2.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/mod.jpg?fit=1024%2C660&amp;ssl=1\" data-recalc-dims=\"1\" \/><\/p>\n<p>&nbsp;<\/p>\n<h4 class=\"fittexted_for_content_h4\"><span class=\"ez-toc-section\" id=\"Install_CSF\"><\/span>Install CSF<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>If your PC is connected to the Internet, you are a potential target to an array of cyber threats, such as hackers, keyloggers, and Trojans that attack through unpatched security holes. This means that if you, like most people shop and bank online, are vulnerable to identity theft and other malicious attacks.<\/p>\n<p>A firewall works as a shield, between your PC and cyber space. When you are connected to the Internet, you are constantly sending and receiving information in small units called packets. The firewall filters these packets to see if they meet certain criteria set by a series of rules, and thereafter blocks or allows the data. This way, hackers cannot get inside and steal information such as bank account numbers and passwords from you.<\/p>\n<p>Once such firewall you can install for WHM\/cPanel is <strong>CSF (ConfigServe Firewall)<\/strong>. CSF configures your server\u2019s firewall to lock down public access to services and only allow certain connections, such as logging in to FTP, checking your email, or loading your websites. ConfigServe Firewall also comes with a service called Login Failure Daemon, or LFD.<\/p>\n<p>To install CSF follow the steps provided<a href=\"https:\/\/www.webhostingchennai.co.in\/blog\/vps\/install-configuing-csf-centos7\/\" target=\"_blank\" rel=\"noopener\"><strong> here\u00a0<\/strong><\/a>Refer Step 2 &amp; 3.<\/p>\n<p>Now,\u00a0Login to your WHM and you will now see a CSF configuration page in the <strong>Plugins<\/strong> section.<\/p>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-574 size-full\" src=\"https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/csf-2.jpg?resize=1281%2C653\" sizes=\"auto, (max-width: 1000px) 100vw, 1000px\" srcset=\"https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/csf-2.jpg?w=1281&amp;ssl=1 1281w, https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/csf-2.jpg?resize=300%2C153&amp;ssl=1 300w, https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/csf-2.jpg?resize=768%2C391&amp;ssl=1 768w, https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/csf-2.jpg?resize=1024%2C522&amp;ssl=1 1024w\" alt=\"secure server\" width=\"1281\" height=\"653\" data-attachment-id=\"574\" data-permalink=\"https:\/\/www.webhostingchennai.co.in\/blog\/tips-securing-cpanel-server\/csf-3\/\" data-orig-file=\"https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/csf-2.jpg?fit=1281%2C653&amp;ssl=1\" data-orig-size=\"1281,653\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"csf\" data-image-description=\"\" data-medium-file=\"https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/csf-2.jpg?fit=300%2C153&amp;ssl=1\" data-large-file=\"https:\/\/i1.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/csf-2.jpg?fit=1024%2C522&amp;ssl=1\" data-recalc-dims=\"1\" \/><\/p>\n<p>&nbsp;<\/p>\n<h4 class=\"fittexted_for_content_h4\"><span class=\"ez-toc-section\" id=\"Harden_your_tmp_partition\"><\/span>Harden your \/tmp partition<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>We recommend that you use a separate <em>\/tmp<\/em> partition that you mount with the nosuid option. This option forces a process to run with the privileges of its executor. You may also wish to mount the <em>\/tmp<\/em> directory with noexec after you install cPanel &amp; WHM.<\/p>\n<p>To mount your <em>\/tmp<\/em> partition to a temporary file for extra security you will have to run:<\/p>\n<pre># \/scripts\/securetmp<\/pre>\n<p><strong>Note:<\/strong> make sure that disk space is enough for the partitions. 8GB minimumfor <em>\/usr<\/em> and 16GB for <em>\/var<\/em> is recommended.<\/p>\n<h4 class=\"fittexted_for_content_h4\"><span class=\"ez-toc-section\" id=\"Disable_system_compilers\"><\/span>Disable system compilers<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>Most users do not require the use of C and C++ compilers. We strongly recommend that you disable compilers for all users who are not in the compilers group in the <em>\/etc\/group<\/em> file. Many pre-packaged exploits require functional compilers.<\/p>\n<p>To disable compilers from the WHM interface, use WHM\u2019s Compiler Access interface<\/p>\n<p><strong>(Home &gt;&gt; Security Center &gt;&gt; Compiler Access).<\/strong><\/p>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-570 size-full\" src=\"https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/compile.jpg?resize=1306%2C445\" sizes=\"auto, (max-width: 1000px) 100vw, 1000px\" srcset=\"https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/compile.jpg?w=1306&amp;ssl=1 1306w, https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/compile.jpg?resize=300%2C102&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/compile.jpg?resize=768%2C262&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/compile.jpg?resize=1024%2C349&amp;ssl=1 1024w\" alt=\"secure server\" width=\"1306\" height=\"445\" data-attachment-id=\"570\" data-permalink=\"https:\/\/www.webhostingchennai.co.in\/blog\/tips-securing-cpanel-server\/compile\/\" data-orig-file=\"https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/compile.jpg?fit=1306%2C445&amp;ssl=1\" data-orig-size=\"1306,445\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"compile\" data-image-description=\"\" data-medium-file=\"https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/compile.jpg?fit=300%2C102&amp;ssl=1\" data-large-file=\"https:\/\/i0.wp.com\/www.webhostingchennai.co.in\/blog\/wp-content\/uploads\/2017\/07\/compile.jpg?fit=1024%2C349&amp;ssl=1\" data-recalc-dims=\"1\" \/><\/p>\n<p>You can also disable compilers from the command line, run the following command as the root user<\/p>\n<p>#\u00a0\/scripts\/compilers off<\/p>\n<p>I believe above article will help you to secure your cpanel server.<\/p>\n<p>To know about exim commands click <a href=\"https:\/\/linuxresellerwebhosting.in\/blog\/useful-exim-commands\/\">here.<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>In this tutorial we are going to see, how to secure our cPanel\/WHM installed server. Use Secure Passwords Insecure passwords<\/p>\n","protected":false},"author":2,"featured_media":626,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[2,1,4],"tags":[20,16,15,19,18,17],"class_list":["post-619","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux","category-uncategorized","category-vps","tag-apache","tag-cpanel","tag-cphulk","tag-key","tag-ssh","tag-whm"],"_links":{"self":[{"href":"https:\/\/linuxresellerwebhosting.in\/blog\/wp-json\/wp\/v2\/posts\/619","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/linuxresellerwebhosting.in\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/linuxresellerwebhosting.in\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/linuxresellerwebhosting.in\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/linuxresellerwebhosting.in\/blog\/wp-json\/wp\/v2\/comments?post=619"}],"version-history":[{"count":10,"href":"https:\/\/linuxresellerwebhosting.in\/blog\/wp-json\/wp\/v2\/posts\/619\/revisions"}],"predecessor-version":[{"id":632,"href":"https:\/\/linuxresellerwebhosting.in\/blog\/wp-json\/wp\/v2\/posts\/619\/revisions\/632"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/linuxresellerwebhosting.in\/blog\/wp-json\/wp\/v2\/media\/626"}],"wp:attachment":[{"href":"https:\/\/linuxresellerwebhosting.in\/blog\/wp-json\/wp\/v2\/media?parent=619"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/linuxresellerwebhosting.in\/blog\/wp-json\/wp\/v2\/categories?post=619"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/linuxresellerwebhosting.in\/blog\/wp-json\/wp\/v2\/tags?post=619"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}