How to change ssh port

How to change ssh port for sshd and CSF Firewall Video instructions for CWP Edit /etc/ssh/sshd_config and uncomment line “# Port 22″, example for port 8123 nano /etc/ssh/sshd_config Port 8123 Replace TCP_IN and TCP_OUT port 22 with the new port number nano /etc/csf/csf.conf Restart ssh and csf service sshd restart csf -r ** Don’t forget […]

Read More

CSF Firewall command line

CSF/LFD Firewall is installed by default on all CWP servers. Here you can find useful commands you can use from your terminal. To get the list of all options please use this commands csf –help man csf Configuration location is in the folder /etc/csf/ Main configuration file: /etc/csf/csf.conf Enable CSF Firewall csf -e Disable CSF […]

Read More

CWP Security Instructions

Website Protection ======================== Please note that by allowing users to have week site security your server overall security can be compromised . Most of the hackers will be denied by ModSecurity and FileSystemLock. – ModSecurity for CWP: It will block many malware infections. http://wiki.centos-webpanel.com/mod_security-for-cwp – File System Lock: It will deny any kind of change […]

Read More

Hide system processes from users

How to hide all Linux processes not owned by the user in CWP In Security Center of the cwp.admin you have additional options to have your server even more secure. One of the options is to have all server processes hidden from users if they are the not owner of the process. This is great […]

Read More

Service log paths

Location of the logs on the CWP servers Apache logs are in folder /usr/local/apache/logs CWP server logs: /usr/local/cwpsrv/logs/ CSF & LFD firewall logs /var/log/lfd-log SSH logs /var/log/secure Yum logs /var/log/yum.log FTP logs /var/log/messages Postfix / Mail /var/log/maillog Dovecot and Dovecot debug logs dovecot.log dovecot-info.log dovecot-debug.log Roundcube (CWP version 160+) /usr/local/cwpsrv/var/services/roundcube/logs/ MySQL logs /var/lib/mysql/HOSTNAME.err

Read More

Hostname SSL with Letsencrypt

Letsencrypt SSL Installation for Hostname – How to guide This is guide for cwp versions 0.9.8.2xx with autoSSL In cwp.admin left menu go to –> CWP Settings –> Change Hostname save there your hostname. SSL will be automatically installed, the only condition is that you have A records set for your hostname. For http:// to […]

Read More

Letsencrypt Free SSL on CWP

Let’s Encrypt is a certificate authority that launched on April 12, 2016 that provides free X.509 certificates for Transport Layer Security (TLS) encryption via an automated process designed to eliminate the current complex process of manual creation, validation, signing, installation, and renewal of certificates for secure websites. You can check the list of supported browsers […]

Read More

CWP Auto Logout

If you have an issue when you login into CWP and you are automatically logged-out, that issue is probably related with you IP change. In this case we are talking about the IP you have from your ISP which your device (browser) has. You should check with your provider if they are changing you ip […]

Read More

mod_security for CWP

Installation and management of the mod_security with CWP is very simple, you can install it with a single click. To install mod_security you only need to click on the “install mod security” button in your cwp.admin –> Security –> Mod Security With installation of mod_security you are also getting OWASP set of rules. OWASP rules […]

Read More

CSF/LFD Firewall configuration

With CWP you can simply configure CSF/LFD firewall by using CSF Firewall module. In CWP.admin go to: Left-Menu –> Security –> CSF Firewall Here you can whitelist, block or unblock IPs. For additional configuration you can click on Firewall Configuration button and there you can check or edit CSF firewall configuration. ** Don’t forget to […]

Read More

Check if SSL certificate matches the key file

To check if your certificate file matches with the key, you can use the following commands. openssl rsa -noout -modulus -in FILENAME.key openssl req -noout -modulus -in FILENAME.csr openssl x509 -noout -modulus -in FILENAME.cert If you get different output, then you files do NOT match and you will need to reissue your certificate. To make […]

Read More

Track SPAM infected scripts

All this tools can help you to track spam and infected scripts but experienced admin assistance is always needed. Check this for tracking setup by using headers Using maldet (Malware scanner) Update Maldet maldet -u Scan public_html folder of infected user account maldet -a /home/USERNAME/public_html Using ClamAV (Clam Antivirus) clamscan -r /home/USERNAME/public_html | grep FOUND […]

Read More

CSF/LFD Brute Force Protection

Activate CSF Brute Force Protection for CWP Login and customize according to you needs. Replace in: /etc/csf/csf.conf (somewhere at the end of the file) CUSTOM1_LOG = “/var/log/customlog” replace with CUSTOM1_LOG = “/var/log/cwp_client_login.log” Add in: /usr/local/csf/bin/regex.custom.pm if (($globlogs{CUSTOM1_LOG}{$lgfile}) and ($line =~ /^\S+\s+\S+\s+(\S+)\s+Failed Login from:\s+(\S+) on: (\S+)/)) { return (“Failed CWP-Login login for User: $1 from IP: […]

Read More

How to Enable CSF UI

How to enable full CSF UI (ConfigServer Security & Firewall Integrated User Interface) Edit File: /etc/csf/csf.conf UI = “1” UI_PORT = “6666” TCP_IN = add port 6666 at the end UI_USER = “test2″ UI_PASS = “test2″ ** Dont forget to set the strong login, after-all this is your server firewall!!! to access it you can […]

Read More

IP Access control

If you want to lock CWP login only for your IP address now you can do that by creating a file named “/usr/local/cwp/.conf/.access_root” and by adding your IP address in it. Create a File and add your IP’s in it (one per line) /usr/local/cwp/.conf/.access_root eg. 123.123.123.123 121.121.121.121 To disable Limited access per IP address simply […]

Read More

CentOS Mostly Used Ports

List of mostly used default ports on the CentOS servers Port Number – Name 20 – FTP 21 – FTP 22 – SSH 25 – SMTP/EMAIL 26 – SMTP 43 – WHOIS 53 – BIND/DNS 80 – HTTP / Apache Web server 110 – POP3/EMAIL 143 – IMAP 443 – HTTPS / Apache Web server […]

Read More

How to secure your website from hacking

In CWP we have a few levels of security, here are most important which can be additionally configured: 1. Automated Backups 2. Mod Security with OWASP rules 3. CSF Firewall 4. File System Lock 5. Mod Spamhaus 1. Automated Backups In case of website hack you can always restore your website to a previous backup […]

Read More

How to install CloudLinux on the CWP servers ?

How to install CloudLinux on the CentOS WebPanel [CWP] servers Instructions on how to install Cloud Linux CloudLinux Installer (you need to have a CloudLinux License) wget http://repo.cloudlinux.com/cloudlinux/sources/cln/cldeploy sh cldeploy -k YOUR-KEY cd /usr/local/src/ wget http://dl1.centos-webpanel.com/files/c_scripts/cloudlinux.sh sh cloudlinux.sh After CloudLinux installer is done it will automatically reboot the server!! After reboot you need to build […]

Read More

How to install multiple SSL certificates on the shared IP

How to install multiple SSL certificates on the shared IP Now you can have unlimited number of the SSL certificates on one shared IP address (no additional IP’s are needed) Install SSL Certificate (Self Singed – exception needs to be added in your browser) 1. Use CWP SSL Generator (in admin are under Security) for […]

Read More