Question 1

How to disable ModSecurity in cPanel

Accepted Answer

To protect your sites, we utilize a commercially accessible ruleset on our Web Application Firewall,called ModSecurity.

Mod_security is an Apache module that assists with shielding your site from different threats. It is used to block commonly known exploits by use of regular expressions and rule sets and is enabled on all Cyberin servers by default.

Mod_Security can possibly block common code injection threats which strengthens the security of the server.

We will help to disable the mod_security rules if it's required by your application. When coding a dynamic site, in some cases clients neglect to write code to help prevent hacks by doing things, for example, validating input.

Mod_security can help at times those clients that run the web app that don't have security checks in their code.

On the off chance that you are running Mod_security on your server it will obstruct this from running. Ordinarily, you would see a 406 error for this situation if mod_security is enabled.

You set up rules for Mod_security to check http calls against and check whether a risk is available.

Finding Mod_security is entirely simple. Any site that calls a string prohibited by a mod_security rule will give a 406 error instead to showing the page.

Disable ModSecurity on cPanel:

1- Login to your cPanel and under Security you will get plugin ModSecurity.

2- Click on ModSecurity and you will get option to ON/OFF Mod_security for the domain.

Question 2

How to install external SSL Certificate on cPanel

Accepted Answer

The SSL/TLS Manager will allow you to create SSL certificate, certificate signing requests, and private keys. These are large parts of utilizing SSL to make your site validation more secure. SSL allow you to make sure all your pages on your site keeping data itself no another hack or third party form are stealing the data, for example, logins, MasterCard numbers, and so forth are sent scrambled rather than plain content. It is critical to make sure about your web page's login regions, shopping zones, and different pages where delicate data could be sent over the web.

After login into your cPanel navigate to below:

(cPanel >> Home >> Security >> SSL/TLS)

Warning:

As of cPanel and WHM form 68, we just help Transport Layer Security (TLS) convention adaptation 1.2.

Note:

CAA records in the domain zone file limit which CAs (Certificate Authority) may give certificates for that domain.

Let me share a example, a CAA record for Comodo would take after the accompanying model, where example.com speaks to the domain name:

You can manage your CAA records through the [Zone Editor]

Documents available:

The following records give more data about the areas of this interface:

Private Keys - KEY — Generate, see, transfer, or erase private keys.

**Signing Certificate Requests - CSR **— Generate, see, or erase SSL testament marking demands.

Authentications - CRT—Generate, see, transfer, or erase SSL testaments.

Introduce and Manage SSL for your site HTTPS — Set up a SSL authentication for the site.

Oversee Certificate Sharing—Change your site's testament sharing authorizations.

Question 3

How do I change PHP versions or Configs?

Accepted Answer

Here at Cyberin, we use 'nginx' to apply reverse proxy to Apache, at that point the PHP itself is taken care of by a handler called "mod_lsapi".

Change PHP Verison using ClouDns:

Select ClouDns plugin under Cpanel
Select the Domain > Configuration option.
Under Application Status select PHP instead of Proxy
Select your default PHP version for the domain.

If you never used our 'CLOUDNS' module in cPanel to utilize full-nginx, at that point you will change your default configuration as referenced as attached video- this implies you would use the 'Select PHP Version' module in cPanel to modify the version of PHP you are running. You would likewise use the same module to configure the version for your application.

The most effective method to configure the Select PHP Version option under cPanel.

Watch below video tutorial to guide the process very quick in just few steps:

You can find PHP Selector option under Select PHP version in cPanel features under Software.
On the PHP Selector page you will see the right now choose PHP version- for a new hosting account, it will be the default version 7.0.
You will get the drop down menu to select your required PHP version.
After selecting the PHP version, you can choose modules available under the option check mark. In the above video you can see, they selected zip and rar.
After that you just need to click on the 'Save' button, it will make the modules quickly accessible for the web application.
On the upper right, there is a connection to PHP choices where end-clients can alter the most significant qualities.

How about we change the memory limit limit to 128Mb and post_max_size to 32Mb.

End clients do not need to modify any files like php.ini or htaccess manually - everything is done from the web interface.

Question 4

How can we Upload Website Files to our Hosting?

Accepted Answer

In order to upload your website files you can use any of the following options:

1) FTP Clients

You can use an ftp tool like FileZilla ,one of the easiest and most popular ones.

There are other options such as:

Smartftp

Cuteftp

2) Access File Manager within your cPanel:

Most of the control panels like cPanel & Plesk offer tools like File Manager which helps you to manage your hosting files and folders of control panel.

More than 70 percent application using cPnael for their websites, that's why it's most popular control panel.

Never used cPanel? Let's read What is cPanel?

below are the instructions, to upload website files and folders using your cPanel control panel.

Document Root, a technical term,which should be familiar to you,it is the folder or the location in the server where you need to be uploaded your website files.

By default the document root of a website is /home/username/public_html on cPanel serevers, here username is the cPanel login user name.

under one hosting by creating subdomains & addon domains,you can have multiple websites.

when you required to upload your web files to a addon or subdomain domain, make sure your upload such files to their document root folder.

The document root of subdomain and addon domain can be found by going as,

cPanel > Domains > Subdomains or cPanel > Domains > Addon Domains respectively.

In the subdomain and Addon domain page, you will find the list of domains and document root of it which will be specified for each of them.

How you can upload your Files in File Manager?

It is very easy to upload files to your site using the option File Manager in cPanel. Here are the steps to be followed:

Log in to your cPanel.
Click on File Manager under Files.
Select Document root from the File Manager directory selection window.
Click on Upload to upload files from your local system.
Click on Browse to select files.( To add more files click on Add another upload box).
Click on Back to /home/…/public_html after uploading completes.

The list of files under public_html folder, Shows your uploaded files.

Question 5

Enabling Remote MySQL in the cPanel

Accepted Answer

Sign in to the Domain's cPanel interface and search for the section on the main page named Databases.

In the Databases section find the connection/button named Remote MySQL and click on it.

Under Add Access Host enter IP address or host address that you need to grant remote MySQL access to and afterward click the save button

If a host or IP address you want to delete from this list you can tap the 'Delete' button next to the entry in the list under Manage Access Hosts.

If you have made changes, additions or removal to the list you can return the primary page of the cPanel interface, or log out if you have no other work.

Important: We maintain the right to block all inbound MySQL connections so as to refuse attack to the mysqld service.if you , if you are incapable to connect ,don't mind please contact support that we can add your IP address to our whitelist.

Question 6

Scan cPanel site for malware using cpGuard?

Accepted Answer

Here at Cyberin, security is most important consideration– that is the reason we automatically live scan find and delete malware from the server. mostly malware can be inserted by different way and might be answerable for defacing your site, sending mass mail or making harm your site content. You have to perform a full scan of your account to identify, and expel malware. To do this, you can.

1. Sign into cPanel, if you want to check your account

2. Go to Security > cPGuard

3. Under the** Virus Scanner** select Manual Scan, select whether you need to check only the public_html directory, or your whole account (which cover mail etc) – (suggested –scan only your public_html directory. if you get nothing at this point you still suspect there is malware, at that point scan the whole account).

4. Click on Run Scan

5. This will begin the scanning procedure, and will show the result below with Scan added to queue and status is Running while the scan finishes, you will have to revisit the plugin and check the scan result.

Important: Records thought to be 'suspicious' will automatically be 'nulled' (the permission changed to 000) and documents containing virus or malware will be placed in isolate (expelled from the record and moved to a sheltered area outside of the account).

Important: Accounts found to contain huge amounts of infected documents might be suspended automatically by our security software and check the scan result.