Security – cPanel

Server hardening methodologies and best practices for your cPanel server. Please report suspected security issues to: security@cpanel.net

cPanel's AutoSSL Pinned

cPRex
October 05, 2022 10:13

9 comments

Forums Guidelines and FAQs Pinned

cPRex
October 21, 2021 14:59

0 comments

checkallsslcerts script warning

Durangod
April 29, 2025 07:25

2 comments

Clamav update

Stavros S
April 23, 2025 06:13

7 comments

AutoSSL CAA with accounturi Support / Possible Issue

Kelsey Ferencz
April 22, 2025 18:42
Edited

4 comments

AutoSSL would normally renew this certificate now, but 0 of the website’s secured domains just failed DCV.

Benjamin D.
March 12, 2024 16:09
Edited

24 comments

SSL Certificate Expired | Auto SSL not working

Tiaan van
April 16, 2025 20:21

15 comments

API returns 400 error after enabling cPanel Account Protection with Imunify360

sarat beer
April 17, 2025 07:29

1 comment

whm-360-monitoring

eitanc
November 26, 2024 07:36

11 comments

Let's encrypt failing with wrong IP

JayConsulting
April 07, 2025 09:02

5 comments

Force HTTPS redirect by default

Kent Brockman
April 03, 2025 17:43

6 comments

SSL problem in subdomain

MindServer
April 04, 2025 10:32
Edited

3 comments

Auto SSL Let's Encrypt

WorkinOnIt
April 04, 2025 01:25

1 comment

Help Mitigating High Volume Distributed Attack on Port 443 Targeting GET /moodlee/index.php?

Oktavia Iw
April 03, 2025 07:36

3 comments

modsec denies Amazon crawler access to JPG images with 403

Nick Fenwick
April 02, 2025 07:30

2 comments

cPanel Bug Bounty Team Not Responding (I've reported CRITICAL vulnerability)

Orion Hridoy
March 24, 2025 18:04

5 comments

Miscreant keeps attacking email

jeffschips
March 24, 2025 15:23
Edited

4 comments

Configserver firewall csf csfpost.sh not executed after (cpanel or csf) update

nickgr
March 20, 2025 14:57

2 comments

ModSec rule 920440 triggers a CRITICAL hit on server's own IP because of Wordpress

Benjamin D.
March 15, 2025 14:40
Edited

6 comments

Sec Advisor - SSH direct root logins - ignores prohibit-password? without-password is deprecated?

pkiff
March 04, 2025 22:11

9 comments

Cpanel ssl not working

sohaib siyaha
February 06, 2025 23:50

4 comments

Malware found in /home/username/.local/share/containers/storage/overlay

sibony88
March 12, 2025 07:32

1 comment

ImmunifyAV alert does not appear for RockyLinux 9.5? Is compatible or?

pkiff
March 07, 2025 16:09

1 comment

Using LSAPI - Sec Advisor flags Apache vhosts - but mod_ruid2 not available

pkiff
March 04, 2025 21:15

4 comments

RewriteCond for password protected folder

durangod
February 28, 2025 03:27
Edited

0 comments

Security Advisor Notification

Crimpshrine
January 05, 2023 17:15

64 comments

Blocked customer IP

Deny Deneme
February 22, 2025 14:29

1 comment

can we remove the "cprapid" thing ?

rscalover
June 14, 2021 13:28

11 comments

How to set TLS cipher preference in WHM?

JAB Creations
February 16, 2025 14:26
Edited

3 comments

ModSecurity - View actual SQL Injected

HappyFeat
February 09, 2025 23:18
Edited

2 comments

Didn't find what you were looking for?