Piyush Kumar currently works as a DC Ops engineer at E2E Networks Ltd. He has worked extensively on cPanel & WHM installation, configuration, and security management for more than two years.
Piyush Kumar has discussed the following topics in this #TTT webinar titled Securing cPanel:
- cPanel Installation & Basic configuration
- Firewall configuration to prevent DDOS attack
- CPHULK and Mod security
- Controlling server access
Piyush Kumar has started the webinar with how to install cPanel & WHM on a CentOs machine with a live demo. He suggested not to provide root access to the users for whom it’s not necessary. Then he discussed why securing shell access is important and recommended to disable password-based access to it.
The webinar continued with a demo of how to enable key-based access and how to disable password-based authentication on a cPanel machine.
Piyush Kumar continued the webinar with the importance and demo of securing Apache, discussed ModSecurity Configuration and how to prevent backdoor attacks, and disabling Apache Header Information.
Next, he discussed the CSF Firewall and its settings and introduced Imunify360 — a tool used for enhanced control over security and risk mitigation.
In later parts of the webinar, he discussed:
- Securing the tmp folder using the inbuilt script
- Limiting the compiler access of unprivileged users
And many more security parameters of cPanel & WHM.
The webinar has ended with a Q&A session that involved interesting questions answered by the speaker, Piyush Kumar.
A recorded version of the webinar is available here on-demand: