May 2nd, 2011

WHM Change Log for all versions

WHM Change Log for all versions

For WHM version 11.28

When you click Change Log at the top of the screen, WHM will display a list of published builds for cPanel & WHM software. The entries include fixes, enhancements, and patches intended to fix known problems.

To view a complete and detailed list of change logs for all versions of cPanel & WHM, as well as EasyApache and RPM updates, click Change logs for all versions.

Tags: , , , ,


May 1st, 2011

Quick Security Scan For WHM version 11.28

Quick Security Scan For WHM version 11.28

This feature disables operating system-level services that are not necessary for your web server.

The services that will be disabled are:

* portmap — Maps network drives.
* atd — The “at” daemon, similar to cron jobs.
* cups — Used for printing.
* Console mouse services — Provides Linux mouse support.
* xfs — X font server; allows a server running the X Window System to communicate with a font renderer.
* NIS — Network information service.
* NFS statd — Used for network file system (NFS) mounting.
* RPC idmapd — Used for running an NFS server.

Note: A [FAILED] error message means that the service was not running when the scanner attempted to turn it off. This service will still be prevented from starting in the future.

Reference: http://cpanel.net

Tags: , , , , ,


Apr 30th, 2011

PHP security restricting Includes

PHP security restricting Includes

Local include attacks occur when an attacker is able to pull local files into PHP scripts to view sensitive information on or about your system. For example, an attacker may be able to include and subsequently view the /etc/passwd file using a PHP inclusion vulnerability, in effect acquiring some basic information about every account associated with your web server.

To help prevent local include vulnerabilities, you can set the open_basedir parameter in your PHP configuration to a specific directory. This will limit an attacker’s access via local includes to a single directory. In most cases, you will want to set the open_basedir parameter to a public_html directory, allowing PHP to open and modify HTTP-accessible (public) files contained within the specified directory while limiting access to more sensitive information contained outside of the specified directory

Tags: , , ,


Apr 28th, 2011

rebuild_phpconf help options

rebuild_phpconf help options

To see a list of all options and arguments for this script, type the following from the command line:

/usr/local/cpanel/bin/rebuild_phpconf –help

The system will display usage information as follows:

Usage: /usr/local/cpanel/bin/rebuild_phpconf [--dryrun] [--no-restart] [--no-htaccess]
[--current|--available]
–dryrun : Only display the changes that would be made
–no-restart : Don’t restart Apache after updating the php.conf link
–no-htaccess : Don’t update user configurable PHP mime mapping.
–current : Show current settings
–available : Show available handlers and PHP SAPIs
[Default PHP] : Version of PHP to set as default handler for .php files
[PHP# Handler] : Type of Apache module to use in serving PHP requests
: enabled, disabled, 1 or 0

Tags: ,


Apr 27th, 2011

Configuring PHP and suEXEC from the Command Line

The rebuild_phpconf script on your server allows you to udpate your server’s php.conf file (located at /usr/local/cpanel/bin/rebuild_phpconf). By doing this, you can change Apache’s PHP handler configuration, change the default version of PHP used by your server, and enable or disable the suEXEC feature.

Note: This script offers nearly the same functionality as the WHM Configure PHP and suEXEC feature. Users more comfortable with a graphical interface may prefer that method.

To see a list of all options and arguments for this script, type the following from the command line:

/usr/local/cpanel/bin/rebuild_phpconf –help

Tags: , , , ,

« Prev - Next »