cPanel Security Advisor

JMGarcía

• February 08, 2018 09:40

Hola, Tengo cPanel v68.0.28 con centOS 7.4 El cPanel Security Advisor me da estos 2 avisos,... he reinciado 10 veces y todav"a me salen esos 2 avisos,... "alguna soluci"n? Gracias.

• 

  JMGarcía

  • February 08, 2018 14:44

  Los avisos son estos: 1 - The system"s core libraries or services have been updated. Reboot the server to ensure the system benefits from these updates. 2 - The system cannot check the KernelCare promotion preferences: Cannot determine company ID. Gracias.

  0
• 

  cPWilliamL

  • February 08, 2018 19:27

  Hi, Could you please provide the output of the following commands? # ls -lahd /var/cpanel/companyid* # /usr/local/cpanel/cpkeyclt
  Thanks,

  0
• 

  JMGarcía

  • February 09, 2018 16:02

  Hi, I changed from mpm prefork to worker and now all fine,... Security Advisor only show now: Apache vhosts are not segmented or chroot()ed. No symlink protection detected Thanks.

  0
• 

  cPWilliamL

  • February 09, 2018 16:13

  The warning should also produce advice like below: [QUOTE] Enable "Jail Apache" in the "Tweak Settings" area, and change users to jailshell in the "Manage Shell Access" area. Consider a more robust solution by using "

  0
• 

  JMGarcía

  • February 09, 2018 18:53

  No advice about "Enable "Jail Apache" in the "Tweak Settings" are,... and also no advice about: The MySQL service is currently configured to listen on all interfaces: (bind-address=*) And I don't changed my.cnf or close port 3306,... About Apache vhosts are not segmented or chroot()ed. No symlink protection detected I read that it's not fundamental to security and may lower the performance,... What's your opinion? Thanks. Output: [root@sv ~]# ls -lahd /var/cpanel/companyid* -rw-r--r-- 1 root root 3 Feb 9 16:10 /var/cpanel/companyid lrwxrwxrwx 1 root root 3 Feb 9 16:10 /var/cpanel/companyid.fast -> 375 [root@sv ~]# [root@sv ~]# /usr/local/cpanel/cpkeyclt Updating cPanel license...Done. Update succeeded. Building global cache for cpanel...Done [root@sv ~]#

  0
• 

  cPanelMichael

  • February 12, 2018 18:10

  Hello, [QUOTE="JMGarc"a, post: 2526123, member: 834731">The MySQL service is currently configured to listen on all interfaces: (bind-address=*) And I don't changed my.cnf or close port 3306,...
  If bind-address is set to a non-localhost value and there are no iptables reject/deny rules in place for the MySQL port, then a warning will be issued. Could you let us know the contents of the /etc/my.cnf file on this system? [QUOTE="JMGarc"a, post: 2526123, member: 834731">Apache vhosts are not segmented or chroot()ed. No advice about "Enable "Jail Apache" in the "Tweak Settings" are,...
  Internal case (SWAT-733) open to ensure that specific Security Advisor alert reflects the fact that Mod_Ruid2 is required in order to use the "Jail Apache" option in "WHM >> Tweak Settings". [QUOTE="JMGarc"a, post: 2526123, member: 834731">I read that it's not fundamental to security and may lower the performance,...
  We do recommend you protect your system against symlink attacks. We provide a list of available solutions at: Symlink Race Condition Protection - EasyApache 4 - cPanel Documentation [QUOTE="JMGarc"a, post: 2525655, member: 834731">The system cannot check the KernelCare promotion preferences: Cannot determine company ID.
  Can you verify if you still see this message? If so, could you open a support ticket using the link in my signature so we can take a closer look? Thank you.

  0
• 

  JMGarcía

  • February 13, 2018 17:13

  Hello, /etc/my.cnf [mysqld] log-error=/var/lib/mysql/sv.domain.com.err default-storage-engine=MyISAM innodb_file_per_table=1 performance-schema=0 max_allowed_packet=268435456 bind-address=127.0.0.1 Still no message: The system cannot check the KernelCare promotion preferences: Cannot determine company ID. Another issue in all my KVM VPS with cenOS7.x with Cpanel: Always enable SSH Password Authorization Tweak and disable when need connect with SSH,... Normally when disable can't connect SSH, need first fix SSH with

  0
• 

  cPanelMichael

  • February 13, 2018 17:22

  Hello, [QUOTE="JMGarc"a, post: 2527087, member: 834731">bind-address=127.0.0.1
  You should be able to remove that entry and restart MySQL to solve that issue. [QUOTE="JMGarc"a, post: 2527087, member: 834731">The system cannot check the KernelCare promotion preferences: Cannot determine company ID.
  Could you open a support ticket using the link in my signature so we can take a closer look? [QUOTE="JMGarc"a, post: 2527087, member: 834731">SSH Server...Waiting for "sshd" to start ""Job for sshd.service failed because the control process exited with error code. See "systemctl status sshd.service" and "journalctl -xe" for details.
  As far as the separate issue with SSH, please open a new thread so we can investigate that separately. Thank you.

  0
• 

  JMGarcía

  • February 19, 2018 16:46

  Ticket open ID 9296401 Thanks.

  0
• 

  cPanelMichael

  • February 26, 2018 13:57

  [QUOTE="JMGarc"a, post: 2529067, member: 834731">Ticket open ID 9296401 Thanks.
  Hello, To update, it looks like we were unable to reproduce the same warning messages upon testing. Let us know if you have any additional questions. Thank you.

  0
• 

  JMGarcía

  • February 27, 2018 13:08

  I restart server and warning now don't show. Thanks.

  0

Please sign in to leave a comment.