cPanel Security Software Installation

CSF Firewall –  Advanced firewall for most Linux distributions.
CHKRootKit – chkrootkit locally checks for signs of a rootkit.
RootKit Hunter – Scanning tool to ensure your system does not have any backdoors or exploits
Malware & Virus scanning – ClamAV Clamscan, LMD Maldet, etc., software to scan the server for malware and viruses
Mod_Security – protects against common url based hack injections (installed upon specific request only)
Mod_Evasive – defends http based attacks (installed upon specific request only)
Securing and Upgrading of SSH Server – increases security during ssh connections
Anti-DoS configuration – helps mitigate denial of service type attacks
Brute Force Detection – notifies you of numerous login authentication failures and automatically blocks the attackers ip in the firewall
AntiSpam detection and prevention – software to help prevent incoming and outgoing spam from the server.
System Integrity Monitor – 24×7 Internal Monitor that checks all services and restarts them if they are down
SPRI – changes the priority of different processes in accordance to level of importance, hence increasing server performance
Secure and Optimize Apache (HTTP) – tweaks apache to perform better, and prevent unnecessary information from being easily seen
host.conf hardenening – prevent dns lookup poisoning & spoofing protection
sysctl.conf hardening – helps prevent TCP/IP stack from syn-flood attacks and other network abuses
FTP Hardening – upgrade and secure your ftp software
Removal of unused software – prevents exploits and wasted resources
Removal of old logs – regain wasted space by deleting old archived logs
Shell Fork Bomb/Memory Hog Protection – prevents a user logged into a shell from consuming all the resources on the server
Root Logger – logs and emails you everytime someone accesses root with the timestamp and their ip address
MyTOP – tool for monitoring MySQL threads and processes
MultiTail – view multiple log files simultaneously
TMP Directory hardening ( /tmp, /var/tmp, /dev/shm) – helps prevents execution of malicious scripts
Filemanager – allows you to edit system files through WHM in case SSH is inaccessible
Firewall Admin – allows you to edit firewall allow & deny list and config through WHM
PHP Tightening – tweaks php to run in a safer and restricted environment (installed upon specific request only)