A few days ago I launched Aetherweb’s latest project live on the web, aeKee. A secure vault, password generator and sharer I developed because of my dissatisfaction with other commercial options available. I’d used LastPass up until early this year when I was made aware of their incompetence – technical and customer service. Google had identified, very very easily, gaping … Read More
LastPass and SaltThePass
Password managers are obviously attractive targets for cybercriminals – but they’re considered by most to be better than any alternative. The thought of having my entire password manager vault/archive compromised was giving me cold sweats in the wee small hours. What else could I do though!? Then LastPass’s browser plugin was repeatedly shown to be highly insecure by Google Project … Read More
Solved: cPanel’s CPHULK, CloudFlare and X-Forwarded-For
At the time of posting, there is a feature request on the cPanel website which, if approved, would enable the admin of a cPanel server to have CPHULK act on the content of the X-Forwarded-For header in HTTP requests. https://features.cpanel.net/topic/have-option-for-cphulkd-to-action-on-x-forwarded-for cPanel feel this is a bad idea because the X-Forwarded-For header is easily spoofed. Which could lead to all sorts … Read More
Deleting Per Account cPanel Error Logs
cPanel does not rotate or in any way limit the size of the per-account error_logs which are created for each folder of each account on the server by Apache. Apache can be configured not to create them at all but they are extremely handy for debugging. They can of course become very large and hog a lot of disk space, … Read More
Setting Up Per IP Traffic Reports on cPanel Servers Step 1 of 2
Our cPanel server sees a lot of traffic to a lot of different websites. Under cPanel each site has its own access_log and error_log and there is no master global access log. There’s also no way we can find, even using plugins, to monitor and report traffic levels from any particular IP address. Something we’d like to do in order … Read More
Linux (cPanel) Server Daily Disk Usage And Large Directory Report
Our servers automatically warn by PushBullet, Email and SMS whenever disk space hits some threshold warning level, which is handy. If you’re reading this you’re probably aware that when a server’s primary disk becomes completely full, the server becomes inoperable. A situation best avoided! An issue though is that this alert can come at any time – and if disk … Read More
Batch Editing CloudFlare DNS IP with CloudFlare API in PHP
We have a lot of websites behind CloudFlare’s excellent firewall system. Sometimes we need to move a server to a new IP address necessitating the manual modification of a large number of CloudFlare DNS records in a large number of CloudFlare Zones. CloudFlare is great in that if you modify a DNS record the effect is immediate – so a … Read More
cPanel Mailscanner Automatically Removes Non Local Spam Whitelist Rules
I added a spam whitelist rule to the file on my WHM/cPanel server: File: New rule in place: I added this because a lot of mail from ‘a-special-domain-name.co.uk’ was being tagged as spam and disappearing. But in a daily cron task, cPanel went ahead and removed the rule automatically and emailed me about it: How annoying! It turns out that … Read More
CloudFlare Free Full SSL; Not As Secure As You Think?
CloudFlare offer the option to provide SSL for your website without the hassle or expense of obtaining an SSL certificate. It really is quite a hassle and it’s definitely expensive (relatively) so this is brilliant, especially as Google do rate an SSL site higher than a non-SSL one. All you have to do is put your site behind CloudFlare and … Read More
Adding CPanel/WHM cPHulk IP Blocks to CSF & CloudFlare
I’m running ConfigServer Firewall with its associated LFD (Login Failure Daemon) on one of my servers. LFD I believe does much the same job as cPHulk but advice I found online suggests that if resources aren’t hogged then enable both for a stronger setup. cPHulk has (in the CPanel/WHM control panel) an option to run an external command when an … Read More