Protect your VPS with recommended firewall, brute-force protection, and account security practices.

1) Install & Configure CSF (ConfigServer Security & Firewall)

cd /usr/src
rm -fv csf.tgz
wget https://download.configserver.com/csf.tgz
tar -xzf csf.tgz
cd csf
sh install.sh

Access via WHM → Plugins → ConfigServer Security & Firewall. Recommended: disable testing mode (TESTING = 0) and restart CSF.

2) Enable cPHulk Brute Force Protection

In WHM → Security CentercPHulk:

  • Enable protection for SSH, WHM, cPanel, and email services.
  • Block IPs after 10 failed login attempts within 15 minutes.
  • Whitelist your own IP to avoid lockout.

3) SSH Hardening

  • Change SSH port from 22 to a non-standard port.
  • Disable root login and use sudo if possible.
  • Use SSH keys instead of passwords.
  • Restrict SSH to known IPs via CSF or firewalld.

4) Malware & Intrusion Detection

  • Install clamscan or maldet (Linux Malware Detect).
  • Enable ModSecurity with OWASP rules via WHM → Security Center.
  • Consider ImunifyAV/Imunify360 (commercial plugin for cPanel).
© LumaDock Knowledge Base – Security Guide
Hai trovato utile questa risposta? 0 Utenti hanno trovato utile questa risposta (0 Voti)

Gli articoli più popolari

How to install cPanel/WHM on a VPS (AlmaLinux/Rocky/Ubuntu)

Step-by-step guide for a clean install on AlmaLinux 8/9, Rocky Linux 8/9, or Ubuntu 22.04...
Advanced post-install configuration for cPanel/WHM

Best practices for securing, tuning, and optimizing your LumaDock VPS after a successful cPanel...
Performance tuning & backups for cPanel

How to optimize speed and reliability of your VPS hosting with advanced tuning and backup...