Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
Next revision Both sides next revision
server-administration:securing-cpanel [2010-02-13 00:57:11]
garrett.plasky 		server-administration:securing-cpanel [2010-02-13 01:01:51]
garrett.plasky
Line 13: Line 13:
   * BoxTrapper Spam Trap (**D**)   * BoxTrapper Spam Trap (**D**)
   * Allow cPanel users to reset their password via email (**D**)   * Allow cPanel users to reset their password via email (**D**)
-  * Send passwords in plaintext over email when creating a new acccount (**D**)+  * Send passwords in plaintext over email when creating a new account (**D**)
   * Only permit cpanel/whm/webmail to execute functions when the browser provides a referrer (**E**)   * Only permit cpanel/whm/webmail to execute functions when the browser provides a referrer (**E**)
  
Line 19: Line 19:
 Under Main >> Service Configuration >> Apache Configuration >> Global Configuration, perform the following: Under Main >> Service Configuration >> Apache Configuration >> Global Configuration, perform the following:
      
-  * **SSLCipherSuite**: %%ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP%%+  * **SSLCipherSuite**: 
   * **TraceEnable**: Off   * **TraceEnable**: Off
   * **ServerSignature**: Off   * **ServerSignature**: Off
   * **ServerTokens**: Product Only   * **ServerTokens**: Product Only
   * **FileETag**: None   * **FileETag**: None
-  * **MaxRequestsPerChild**: 1000 (this number can be set higher or lower depending on expected traffic however it should be set to a non-zero integer to guard against progressive memory leaks through Apache)+  * **MaxRequestsPerChild**: 1000 
  
 Also under Apache Configuration, use //Modify Apache Memory Usage// to manage child process memory handling. Also under Apache Configuration, use //Modify Apache Memory Usage// to manage child process memory handling.