Keeping a log of all outgoing HTTP(S) connections
How does one keep a log of all outgoing HTTP(S) connections from one's server?
The log should include:
- username that initiated process
- name of process
- date and time
- destination url
- destination IP
-
So no actual way to log outbound connections then? 0 -
So no actual way to log outbound connections then?
There's no supported method of logging outbound connections via an option in cPanel/WHM. There's another thread with a couple of manual methods of doing this at: Checking which domain is sending unwanted http requests to a specific destination Let us know if that's helpful. Thank you.0 -
No, not too helpful. For me, the reason to use cPanel/WHM itself is to distill the technicality of Linux into an easy to use interface. I don't want to manually log into SSH and scan through a tail of the current outgoing traffic. Having an access_log much like the incoming is what would be ideal. If cPanel can't do it, that's fine. But i did find that thread before and it was not helpful. As the OP in that thread said, if the process is intermittent, then you're pretty much helpless to figure it out. Which is why you have a log to show the activity over time. 0 -
I encourage you to open a feature request if you would like to see this feature added to cPanel/WHM: Submit A Feature Request Thank you. 0 -
I don't log feature requests but I'm adding my 2 cents that this would be an incredibly useful feature. Our upstream just sent us a BitNinja report saying our server is attacking other parties and we need it to stop. Now I have to do a ton of research. I would file this under "enhance WHM security features" 0 -
Hello! Thank you for confirming this would be a useful feature. It would be most helpful if a feature request could be filed, but we appreciate the information regardless. 0
Please sign in to leave a comment.
Comments
7 comments