This document explains how to use cPanel's API tokens.
This document explains the security levels that apply to TSR releases before TSR-2017-0002.
This document explains the Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols and how servers use them.
The OWASP (Open Web Application Security Project) ModSecurity™ CRS (Core Rule Set) is a set of rules that Apache's ModSecurity™ module can use to help protect your server.
This document discusses some of the specific software packages that contain known vulnerabilities. This document will also help you determine whether developers used the backport process to patch a software package.
Web applications written in PHP may contain security vulnerabilities that malicious users can exploit to gain sensitive information about your system or your users.
This document details how to secure your server.
This document explains the security levels for advisories that we post on our Security page.
If a user fails to authenticate with cPanel through a custom login form, the /var/cpanel/failurls file allows a reseller to redirect that user to a custom error page.
This document explains how to install and configure Apache's httpd-guardian script, which allows you to use ModSecurity's™ SecGuardianLog directive.
This document explains the SSL installation and precedence logic.
This document lists several tips that you can use to make your cPanel & WHM server more secure.
This document outlines some common SSL-related issues and how you can troubleshoot and resolve them.