Security – cPanel

Server hardening methodologies and best practices for your cPanel server. Please report suspected security issues to: security@cpanel.net

cPanel's AutoSSL Pinned

cPRex
October 05, 2022 10:13

9 comments

Forums Guidelines and FAQs Pinned

cPRex
October 21, 2021 14:59

0 comments

Can i assign a SSL cert to a server name

durangod
May 17, 2025 20:10
Edited

0 comments

Setting Host Access in WHM

durangod
May 16, 2025 22:35
Edited

0 comments

SSL certificate doesn't update

PatrickVeenstra
May 16, 2025 08:54

3 comments

CSF Suspicious process emails regarding php-cgi or php-fpm (false positives)

RickKukiela
May 06, 2025 18:49

3 comments

cPanel ID

Samuel Poëtte
May 03, 2025 17:00

1 comment

checkallsslcerts script warning

Durangod
April 29, 2025 07:25

12 comments

Clamav update

Stavros S
April 23, 2025 06:13

15 comments

AutoSSL CAA with accounturi Support / Possible Issue

Kelsey Ferencz
April 22, 2025 18:42
Edited

4 comments

API returns 400 error after enabling cPanel Account Protection with Imunify360

sarat beer
April 17, 2025 07:29

1 comment

SSL Certificate Expired | Auto SSL not working

Tiaan van
April 16, 2025 20:21

15 comments

CSF error when manually deny ip Answered

rhm.geerts
April 14, 2025 12:49

4 comments

Let's encrypt failing with wrong IP

JayConsulting
April 07, 2025 09:02

5 comments

SSL problem in subdomain

MindServer
April 04, 2025 10:32
Edited

3 comments

Auto SSL Let's Encrypt

WorkinOnIt
April 04, 2025 01:25

1 comment

Force HTTPS redirect by default

Kent Brockman
April 03, 2025 17:43

6 comments

Help Mitigating High Volume Distributed Attack on Port 443 Targeting GET /moodlee/index.php?

Oktavia Iw
April 03, 2025 07:36

3 comments

modsec denies Amazon crawler access to JPG images with 403

Nick Fenwick
April 02, 2025 07:30

2 comments

cPanel Bug Bounty Team Not Responding (I've reported CRITICAL vulnerability)

Orion Hridoy
March 24, 2025 18:04

5 comments

Miscreant keeps attacking email

jeffschips
March 24, 2025 15:23
Edited

4 comments

Woke up to HIGH security advisor notification, SuExec is disabled Answered

BobHoliday
March 21, 2025 08:05

3 comments

Configserver firewall csf csfpost.sh not executed after (cpanel or csf) update

nickgr
March 20, 2025 14:57

2 comments

ModSec rule 920440 triggers a CRITICAL hit on server's own IP because of Wordpress

Benjamin D.
March 15, 2025 14:40
Edited

6 comments

Backscatter Spam Issue Prevention and Email Spoofing Protection Answered

Para Dx
March 14, 2025 01:03

1 comment

Malware found in /home/username/.local/share/containers/storage/overlay

sibony88
March 12, 2025 07:32

1 comment

ImmunifyAV alert does not appear for RockyLinux 9.5? Is compatible or?

pkiff
March 07, 2025 16:09

1 comment

Sec Advisor - SSH direct root logins - ignores prohibit-password? without-password is deprecated?

pkiff
March 04, 2025 22:11

9 comments

Using LSAPI - Sec Advisor flags Apache vhosts - but mod_ruid2 not available

pkiff
March 04, 2025 21:15

4 comments

RewriteCond for password protected folder

durangod
February 28, 2025 03:27
Edited

0 comments

Didn't find what you were looking for?