The OWASP (Open Web Application Security Project) ModSecurity CRS (Core Rule Set) is a set of rules that Apache®'s ModSecurity® module can use to help protect your server.
This document discusses some of the specific software packages that contain known vulnerabilities. This document will also help you determine whether developers used the backport process to patch a software package.
Web applications written in PHP may contain security vulnerabilities that malicious users can exploit to gain sensitive information about your system or your users.
This document details how to secure your server.
This document describes some security best practices you can use to protect your cPanel & WHM users, files, and websites.
This document explains the security levels for advisories that we post on our Security page.
This document explains the differences between SSL/TLS key types.
If a user fails to authenticate with cPanel through a custom login form, the /var/cpanel/failurls file allows a reseller to redirect that user to a custom error page.
This document explains how to install and configure Apache's httpd-guardian script, which allows you to use ModSecurity's SecGuardianLog directive.
This document explains the SSL installation and precedence logic.
This document lists several tips that you can use to make your cPanel & WHM server more secure.
This document outlines some common SSL-related issues and how you can troubleshoot and resolve them.