Cpanel and WHM

How To Install PHP 7 On A cPanel/WHM Server With EasyApache 3

How To Install PHP 7 On A cPanel/WHM Server With EasyApache 3 Latest versions of cPanel come with EasyApache 4 which provides lots of new features like native support for multiple PHP versions, PHP 7 support, very fast, etc. So it is recommended to migrate to EasyApache 4. However, if you cannot migrate EasyApache 4 because of some reason (Example: Tomcat support), you will have to compile the PHP 7 manually from source. To migrate to...

Read More

Disable/suspend email service for one domain – cPanel

Disable/suspend email service for one domain From version 56, cPanel provides API support to disable email service for domain or email accounts. Please note this limit cannot be override by the user from their cPanel. This can be very helpful if there is any spamming activity and you just want to disable the email service feature for the domain for the time being. You can run the below commands through SSH console To suspend email service for a...

Read More

FTP connectivity problem:: No route to host

FTP connectivity problem If you are getting following error while FTP directory listing, follow the solution provided below ———- ftp> ls 227 Entering Passive Mode (108,61,169,245,167,161). ftp: connect: No route to host ———- Solution Edit /etc/sysconfig/iptables-config and add this line: IPTABLES_MODULES=”ip_conntrack_ftp” Save it and restart iptables. That’s because passive mode use non...

Read More

CSR generation for UCC certificates

Unified Communications (UC) Certificates (also called SAN Certificates) use Subject Alternative Names o secure multiple sites (e.g. fully qualified domain names) with one certificate. Four SANs are included in the base price of the UC Certificate, but you can purchase additional names at any time during the lifetime of the certificate. With a UC Certificate, you can secure: www.linuxwebservertips.in www.example2.com www.example3.net...

Read More

Strong TLS/SSL Security on your server

SSL Report : www.linuxwebservertips.in         This is a simple guide for setting up a strong TLS/SSL configuration on your server. If you configure a web server’s TLS configuration, you have primarily to take care of three things: 1. disable SSL 2.0 (FUBAR) and SSL 3.01 (POODLE), 2. disable TLS 1.0 compression (CRIME), 3. disable weak ciphers (DES, RC4), prefer modern ciphers (AES), modes (GCM), and protocols (TLS 1.2)....

Read More

How to Disable SSLv3 for Apache,Nginx, Litespeed, cPanel

The POODLE bug is a new bug discovered by Google in the SSLv3 protocol. The fix is easy, disable support for SSLv3. See the google security blog for more info on the bug: http://googleonlinesecurity.blogspot.nl/2014/10/this-poodle-bites-exploiting-ssl-30.html.   Fix POODLE To fix the bug, disable SSLv3 and use a secure cipherlist. SSL v2 is also insecure, so we need to disable it too. So edit the Apache config file and add following...

Read More