cPanel® Blog

All posts by: Phil Hodges

Securing Exim for your Hosting Environment

Exim (Experimental Internal Mailer) is a mail transfer agent known for being a general and flexible mailer, with many tools for checking incoming email. Created in 1995 by Philip Hazel, an estimated 57% of publicly reachable mail servers on the internet use Exim. Using the Sendmail design model, Exim has defined stages where it gains or loses privileges on a server, to help increase the security of mail delivery overall. Many of the benefits that Exim provides …

WordPress/Joomla!/Drupal- A Security Comparison

One of the more popular methods of publishing content on a website is a CMS (Content Management System). A CMS generally has a graphic user interface where a user can log in, create or upload content, update existing content, design how they would want their website to appear, and other related tasks. The three most popular CMS choices by usage are WordPress, Joomla, and Drupal. A cursory glance at these three different pieces of software shows …

Let’s Talk MultiPHP

Many hosting providers have a large customer base with varying needs for their online projects. Available for systems running EasyApache 4, the MultiPHP Manager interface allows you to easily manage the PHP and PHP-FPM configurations of your cPanel accounts and domains. Hosting providers can switch between a number of different PHP versions with the click of a button, or allow more advanced users to upgrade to a newer version of PHP more quickly than others. There are …

Update to WHM’s Create Ticket Interface

If you’re not familiar with the Create Support Ticket interface, this tool lives inside WHM and allows a root user to create a support ticket with the cPanel Support staff. How is this more beneficial than logging in to Manage2 or using a form to submit a ticket? The Create Support Ticket tool streamlines and automates much of the process, including ensuring our support team will be able to access your server, decreasing the time it …

When PHP Went Pear Shaped- The PHP PEAR Compromise

As you may or may not be aware, on January 19th, 2019, a security announcement was published confirming the compromise of the PHP Extension and Application Repository (PEAR) installation script. The PEAR project had the following statement to announce: “A security breach has been found on the http://pear.php.net webserver, with a tainted go-pear.phar discovered. The PEAR website itself has been disabled until a known clean site can be rebuilt. A more detailed announcement will be on the …

Moving Your WordPress.com site to a cPanel Server

WordPress is the most commonly used CMS (Content Management Software) on the internet, with a market share of 59.5% of websites built on the internet. There are numerous ways to get a WordPress blog up and running for the public to see. One of the more popular ways to publish a blog is WordPress’ official site- WordPress.com. This site offers the opportunities for its users to build and maintain a free WordPress blog. There are downsides to a …

Security Advisor 101

Inside the Security Center section of WHM lies a feature that some cPanel & WHM users may not be familiar with. Security Advisor is a feature that when selected, displays possible security concerns that hosting providers will want to address, as well as a solution to that warning message. The settings that are flagged may be problematic in some configurations but are not something that would be addressed through a cPanel & WHM version …

Move Over MyDNS and NSD- Here Comes PowerDNS!

One of the useful features that we offer with cPanel & WHM is the ability to run your own DNS server . The nameserver features we have provided in the past have included PowerDNS, MyDNS, BIND, and NSD. With the release of cPanel & WHM Version 78, we are deprecating NSD and MyDNS. New installations of cPanel & WHM version 78 will not allow you to select the NSD or MyDNS nameservers. Our long-term …

Cloud-Based Hostname Workaround

It’s very common these days for hosting providers to offer cloud-based hosting solutions to their customers. In configuring these servers ourselves, and in interactions with our customers’ servers, an issue has come to our attention where the dhclient script does not preserve locally-configured hostnames. This means that hostnames configured on the command line might not remain through a reboot. We wante to provide a workaround solution for this while continuing to investigate a more permanent, long-term solution. What …

WHM Feature Showcase update

If you’ve ever logged in to WHM as a root-level user, you’ve assuredly seen a box with a notification of a new or improved feature. This dialogue box is known as the “Feature Showcase,” and has allowed us at cPanel to present information about changes to cPanel & WHM. Since its creation, the Feature Showcase was only available for use by cPanel. However, we’ve made some changes to the functionality of the Feature Showcase …