Solved: cPanel’s CPHULK, CloudFlare and X-Forwarded-For

JeffTechnical Articles & Notes

At the time of posting, there is a feature request on the cPanel website which, if approved, would enable the admin of a cPanel server to have CPHULK act on the content of the X-Forwarded-For header in HTTP requests. https://features.cpanel.net/topic/have-option-for-cphulkd-to-action-on-x-forwarded-for cPanel feel this is a bad idea because the X-Forwarded-For header is easily spoofed. Which could lead to all sorts … Read More

Deleting Per Account cPanel Error Logs

JeffTechnical Articles & Notes

cPanel does not rotate or in any way limit the size of the per-account error_logs which are created for each folder of each account on the server by Apache. Apache can be configured not to create them at all but they are extremely handy for debugging. They can of course become very large and hog a lot of disk space, … Read More

CloudFlare Free Full SSL; Not As Secure As You Think?

JeffTechnical Articles & Notes

CloudFlare offer the option to provide SSL for your website without the hassle or expense of obtaining an SSL certificate. It really is quite a hassle and it’s definitely expensive (relatively) so this is brilliant, especially as Google do rate an SSL site higher than a non-SSL one. All you have to do is put your site behind CloudFlare and … Read More

Adding CPanel/WHM cPHulk IP Blocks to CSF & CloudFlare

JeffTechnical Articles & Notes

I’m running ConfigServer Firewall with its associated LFD (Login Failure Daemon) on one of my servers. LFD I believe does much the same job as cPHulk but advice I found online suggests that if resources aren’t hogged then enable both for a stronger setup. cPHulk has (in the CPanel/WHM control panel) an option to run an external command when an … Read More

Automatically Expiring CloudFlare IP Blocks by Age

JeffTechnical Articles & Notes

In my last post I talked about how to automatically add IP blocks to CloudFlare from your own server. I also talked about the problem that could lead to, which is potentially 1000s of IP blocks mounting up over time (leading to firewall performance issues, and hitting your CloudFlare IP block limit). I mulled over the best solution to this … Read More