csf logo ConfigServer Security & Firewall - csf v6.47
 
 
Firewall Check
 
LF_APACHE_404 sanity check LF_APACHE_404 = 4. Recommended range: 0|60-1000 (Default: )
 
LF_APACHE_403 sanity check LF_APACHE_403 = 4. Recommended range: 0|60-1000 (Default: )
 
DEBUG sanity check DEBUG = 1. Recommended range: 0 (Default: )
 
 
 
Server Check
 
OK
 
 
 
SSH/Telnet Check
 
Check SSH on non-standard port You should consider moving SSH to a non-standard port [currently:22] to evade basic SSH port scans. Don't forget to open the port in the firewall first!
 
Check SSH PasswordAuthentication For ultimate SSH security, you should consider disabling PasswordAuthentication and only allow access using PubkeyAuthentication
 
 
 
Mail Check
 
OK
 
 
 
Apache Check
 
OK
 
 
 
PHP Check
 
Check php for ini_set disabled You should consider adding ini_set to the disable_functions in the PHP configuration as this setting allows PHP scripts to override global security and performance settings for PHP scripts. Adding ini_set can break PHP scripts and commenting out any use of ini_set in such scripts is advised
 
 
 
WHM Settings Check
 
Check cPanel tree Running EDGE/BETA on a production server could lead to server instability
 
Check cPanel updates You have cPanel updating disabled, this can pose a security and stability risk. WHM > Update Config >cPanel/WHM Updates > Daily Updates > Update cPanel & WHM daily
 
Check accounts that can access a cPanel user You should consider setting this option to "user" after use. WHM > Tweak Settings > Accounts that can access a cPanel user account
 
Check nameservers Unable to resolve nameserver [ns2.webumake.net] within 5 seconds
 
Check nameservers Unable to resolve nameserver [ns1.webumake.net] within 5 seconds
 
Check nameservers At least one of the configured nameservers:
ns2.webumake.net
ns1.webumake.net
should be located in a topologically and geographically dispersed location on the Internet - See RFC 2182 (Section 3.1)
 
 
 
Server Services Check
 
OK
 


Your Score: 134/146*

       146 (max) 
    134 (score)

*This scoring does not necessarily reflect the security of your server or the relative merits of each check

Generate and email this report to the email address

csf: v6.47

2006-2014, ConfigServer Services (Way to the Web Limited)