Issue: On 3/26/2019 the Magento Security team identified and released several security updates. This includes fixes for critical vulnerabilities in some versions of Magento. Who is Impacted? Websites running Magento Commerce 2.1, 2.2, 2.3 or Magento Open Source versions before 1.9.4.1. What should I Do? We are strongly encouraging all Magento Commerce and Magento Open Read More >
Search Results for: security
Block Ports in ConfigServer Security & Firewall (CSF)
There are many security practices for your private cloud hosting. VPS users looking for enhanced security can upgrade Advanced Policy Firewall (APF) to ConfigServer Security & Firewall (CSF). Below we cover how to block VPS ports using CSF. Temporary Permanent Note: You’ll need to log into WHM as root and select ConfigServer Security & Firewall. Read More >
Secure Matomo Analytics With The Security Info Plugin
It’s important to look into hardening any newly installed content management system (CMS). Below we cover how to install the Security Info plugin to harden Matomo. View Matomo Security Info Learn more about improving Matomo security with their hardening guide.
Enable HSTS in Cloudflare for Stronger SSL Security
Whether you’re using shared or VPS hosting services to create a website, it’s important to have a SSL certificate for added security. But it is not enough to install a domain validated SSL. You need to ensure your web server only serves website requests with an encrypted connection. This is accomplished with a 301 redirect Read More >
How to Scan your Server with the cPanel Security Advisor
Are you looking for ways to make your server more secure? Your WHM includes a security advisor you can use to check your settings. In this guide, we will show you how to perform a cPanel Security Advisor scan from WHM. This helpful tool can check your VPS or Dedicated Hosting server for security issues Read More >
How to Configure Security Policies in WHM
WebHost Manager (WHM) includes many tools to help you secure your cPanel server. Steps such as limiting logins by IP address, enabling two-factor authentication (TFA), and setting password strength and age limits can greatly increase the security of your server. In this guide, we will show you how to configure the security policies of your Read More >
How to Set Security Questions in WHM
If you are trying to log into WHM from a new location, you may be asked security questions to verify your identity. This provides an extra layer of security and can help keep your Dedicated Hosting server secure. The security questions and answers can be setup in the WHM Security Center. Setting Security Questions Log Read More >
How to Change your ModSecurity Audit Log Level
ModSecurity can help protect your website from common exploits and attacks. ModSecurity audit logs can include information about the transactions that are happening. In this tutorial, we will show you how to set your ModSecurity audit log level. This lets you choose the type of transactions that are logged, which can be helpful when troubleshooting Read More >
Why Security is Important for Small Business Websites
Security is an important ongoing task when you create a website, with or without an e-commerce store. Cyber attacks aren’t slowing down. But you don’t want your small business slowing down as a result to this. And it doesn’t have to. There’s always news covering the consequences of businesses being hacked for personally identifiable information Read More >
How to Fix the Security Advisor MySQL Alert
The WHM Security Advisor scans for possible changes to harden your VPS security. Below we cover how to clear the following error for VPS users not using remote MySQL: The MySQL service is configured to listen on all interfaces: (bind-address=*) Configure bind-address=127.0.0.1 in /etc/my.cnf, or close port 3306 in server’s firewall Security Advisor Scan To Read More >
Jetpack Plugin Security Features
Jetpack includes some important WordPress security features. In this article, we’ll show you where you can access these features in the Jetpack settings, and we’ll also discuss these features in more depth. How to Enable Security Features As with the other recommended features, some of the more important security features will already be enabled. But Read More >
Helpful WordPress Plugins for Caching, Security, and SEO
Here is a list of some basic, helpful WordPress plugins to help you get started. There are many more available through WordPress.org but here are several that you may want to use: Caching WP Super Cache – This is a caching plugin for WordPress. One of the main issues we see with WordPress sites is Read More >
Critical Security Update – Joomla! 3.7.1
Security Update for Joomla Joomla! 3.7.1 Release Scheduled for Wednesday (May 17, 2017) Who will be effected? All customers using Joomla for their websites The Joomla! Security Strike Team (JSST) has confirmed and identified a security flaw in Joomla! 3.7. The 3.7.1 version addresses this flaw, so it is critical that you update your Joomla! Read More >
How to Install CSF for Better cPanel Server Security
ConfigServer Security & Firewall (CSF) is a stateful packet inspection (SPI) firewall with login/intrusion detection capabilities for Linux VPS Hosting running CentOS, Ubuntu, and other Unix operating systems. Simply put, CSF simplifies the proactive and reactive processes related to Linux cybersecurity. What is CSF? Uninstall APF from your InMotion cPanel Server Stop APF and Remove Read More >
Joomla 3.6.5 Security Release
Joomla! 3.6.5 Security Release Security Release and Bug fixes Status: Joomla! 3.6.5 has been released and is available as a full package Joomla! 3.6.5 Security Release Info The update focuses on three security vulnerabilities, security hardening, and three bug fixes. If you are using the 3.x version of Joomla, then you should update your sites. Read More >
Joomla! 3.6.4 – Security Release and Bug Fix
Joomla! 3.64 Update Important Security Release Status: Joomla! 3.6.4 has been released and is available as a full package or upgrade package download Who is affected? This update is for 3.x series of Joomla. It applies to two security vulnerabilities and a bug fix for two-factor authentication. The Joomla! 3.6.4 update is primarily a security Read More >
How to Scan your WordPress site for Malware with iThemes Security
You can scan your WordPress website for malware using the iThemes security plugin. This scan is run from your dashboard, and is powered by Sucuri SiteCheck which “checks for known malware, blacklisting status, website errors and out-of-date software.” This can help WordPress website users identify security risks or issues. We will now show you how Read More >
Magento – Critical Security Update 2.0.10 and 2.1.2
Issue: Magento has released a critial security update to address know vulnerabilities. The Magento Security team is advising everyone to “ deploy these new releases right away, as attackers may target merchants who are slow to upgrade.” Read more on the official Magento Security team post on the MAGENTO 2.0.10 AND 2.1.2 SECURITY UPDATE. Status: Read More >
Basic Security for your Dedicated server
Many different functions and options affect the security of your Dedicated server through WHM. Hackers and other criminals will always seek sensitive data or attempt to infect malware or ransomware on servers for their criminal purposes. Basic server security helps to prevent this through firewall security, and limiting access to services and server features like Read More >
How to Configure Security Settings in WHMCS
WHMCS provides a variety of security options that range from beginner to advanced. Here is an overview of the primary security features you can access through the general settings. Login to your WHMCS Admin Hover over Setup and choose General Settings Choose the Security tab Fill in the settings: Captcha Form Protection: Choose how captcha Read More >
