Website Protection
Most of the hackers will be denied by ModSecurity and FileSystemLock.
Set for all .php files permissions to 640.
– Disable dangerus PHP functions
http://wiki.centos-webpanel.com/how-to-disable-dangerous-php-functions
* If you are hosting multiple sites for your clients then some sites might need some of this disabled functions.
– PHP Open_Basedir protection
http://wiki.centos-webpanel.com/php-open_basedir
* We recommend to use option per user.
– ModSecurity for CWP: It will block many malware infections.
http://wiki.centos-webpanel.com/mod_security-for-cwp
– File System Lock: It will deny any kind of change on the files system and also disable any file uploads, and that means no more malware infections and website hacks.
– Hide system processes: This will hide all system process from the users. http://wiki.centos-webpanel.com/hide-system-processes-from-users
-Notification Alerts – SECURITY ISSUE
Notification Email Alerts are NOT set on your server. Go to hostname/…./admin/index.php?module=notifications
