Issue: Magento has released a critial security update to address know vulnerabilities. The Magento Security team is advising everyone to “ deploy these new releases right away, as attackers may target merchants who are slow to upgrade.” Read more on the official Magento Security team post on the MAGENTO 2.0.10 AND 2.1.2 SECURITY UPDATE. Status: Read More >
Security
Basic Security for your Dedicated server
Many different functions and options affect the security of your Dedicated server through WHM. Hackers and other criminals will always seek sensitive data or attempt to infect malware or ransomware on servers for their criminal purposes. Basic server security helps to prevent this through firewall security, and limiting access to services and server features like Read More >
Resetting the cPanel Password in WHM
Using WHM, you can reset cPanel passwords for your clients on your dedicated server. You can also allow the cPanel password to be reset by the users after enabling the option in the Tweak settings of WHM (note: Making a Tweak Setting change requires root access). This tutorial will guide you through the steps for Read More >
Enabling cPHulk on Dedicated Servers
One of the most common ways for malicious software (malware) to penetrate the defenses of various web services is via brute-force attacks. Through repeated login attempts, malware can overwhelm the authentication service and bypass existing password protections. Fortunately, most modern web servers offer some form of brute-force protection. For cPanel/WHM-based systems, this commonly takes the Read More >
How to Set the Password Strength in WHM
Setting the password strength is important in order to help maintain a secure server. Weak passwords can lead to disruption in your website services or worse, the loss of data stored on your server. Password configuration can be managed within WHM making it easy to set strict passwords on your dedicated server. Note that you Read More >
How to Install APF on your Dedicated Server
APF (Advanced Policy Firewall) lets you easily manage your iptables rules on your Dedicated Hosting Server. When you attempt to install and configure APF you may get a message stating “Package… already installed and latest version. Nothing to do.” This is due to the fact that APF is pre-downloaded and installed on all of our Read More >
How to Reset cPanel Passwords in Reseller WHM
Part of being a reseller hosting provider is helping your customers when they have issues and need help. In this article, we will show you how to reset a cPanel password using WHM. These steps will work for the VPS reseller program as well as the shared option. How to Reset a cPanel Password in Read More >
How to Configure Security Settings in WHMCS
WHMCS provides a variety of security options that range from beginner to advanced. Here is an overview of the primary security features you can access through the general settings. Login to your WHMCS Admin Hover over Setup and choose General Settings Choose the Security tab Fill in the settings: Captcha Form Protection: Choose how captcha Read More >
How to Disable Security Advisor Alerts in WHM
One of the new features in cPanel release 56 is the additon of Security Advisor Alerts. The alerts are sent to the default email within WHM. While these alerts are useful, some of them can be misleading. You can disable the security advisor alerts so you will no longer receive them. Note: Root access is Read More >
Elegant Themes Security Vulnerability
On February 21, 2016, Elegant Themes emailed its customers to inform them of a critical security vulnerability affecting a large segment of its product line. “An information disclosure vulnerability was found in the Divi Builder (included in our Divi and Extra themes, as well as our Divi Builder plugin) which resulted in the potential for Read More >
WHMCS Security Update – 01/27/2016
Recently WHMCS released a security update that has been marked as Trivial to Important on their security level scale. This should be addressed immediately if you are running a version older than 6.2.1. You may perform this update within WHMCS or within Softaculous if that is how you installed the software. If you have any Read More >
Allowing Ports in APF
One of the most important aspects of server security is the firewall server configuration. Generally speaking, firewalls function by preventing unauthorized traffic from accessing your server. By default, APF (Advanced Policy Firewall) blocks most ports except those needed for web servers to operate, such as port 80, 443, etc. Occasionally, you may need to open Read More >
Magento 1.x Critical Security Update Released
Issue: It has come to our attention that Magento released a Critical Security Patch (SUPEE-7405) on 1/27/2016. This patch includes fixes for several Critical, and High Severity issues in Magento. Who is impacted? Users of Magento Enteprise Edition prior to 1.14.2.3 and for Community Edition prior to 1.9.2.3. What should I do? We are strongly Read More >
Google Chrome Security Update
Google recently released version 45 in response to a security concern. This release also included 29 security fixes for the browser. For more specific information on these fixes, please see Chrome Releases – Stable Channel Update. Google (in addition to Mozilla and Microsoft) has announced that they would end support for the RC4 encryption algorithm Read More >
Security Alert: 8/7/2015 – FireFox vulnerability
There has been a recent security alert issued by Mozilla for vulnerabilities in their FireFox browser. This vulnerability can allow for Javascript payload to be uploaded to your local machine. Please note that this has nothing to do with InMotion Hosting’s services, and our servers are not vulnerable in any way because of this. We Read More >
Magento Security Patch Release 7-7-2015
Who is affected? – Users of Magento Community Edition prior to 1.9.2.0. Have these issues been addressed? – The SUPEE-6285 Patch Bundle covers eight different issues that are listed in the article below. SUPEE-6285 Patch Bundle On June 7, 2015 Magento released a bundle of eight patches that addresses the following issues: Customer Information Leak Read More >
How to Reset a cPanel Password in WHM
As the owner of a VPS or Dedicated server account, you have the ability to create and manage multiple cPanel accounts. These may be all yours or perhaps you have clients on your server with their own cPanels. Sometimes, a cPanel password will be forgotten and you may be asked to reset it. This is Read More >
sweetCAPTCHA Service Security Alert
Who is affected? Websites that use the sweetCAPTCHA service Solution: Remove sweetCAPTCHA from website. If you are a website viewer, ignore links or popups that may appear after using the sweetCAPTCHA service. Do not download anything from the links and ignore the pop-up messages. SweetCATPCHA is a service that uses images instead of distorted characters Read More >
Magento Security Alert
Who is affected? – Users of Magento Community Edition and Enterprise Edition. Have these issues been addressed? – The SUPEE-5994 Patch Bundle covers eight different issues that are listed in the article below. SUPEE-5994 Patch Bundle On May 14, 2015 Magento released a bundle of eight patches that addresses the following issues: Admin Path Disclosure Read More >
MS Outlook Security Updates
Issue: It has come to our attention that Microsoft has pushed out a Security update to some Outlook users. This has changed the way Outlook communicates with the mail servers, which may affect your email settings. Status: This has currently been addressed on all servers. (You may have adjust your settings as described below) Who Read More >
