|
Firewall Check |
Status |
| Check
whether csf is enabled |
OK |
| Check csf
is running |
OK |
| Check
whether csf is in TESTING mode |
OK |
| Check
whether lfd is enabled |
OK |
| Check
incoming MySQL port |
OK |
| Check
firewall if webmin is running |
OK |
| Check csf
SMTP_BLOCK option |
OK |
| Check csf
TCP_OUT and UDP_OUT options |
OK |
|
Check csf LF_SSHD option |
OK |
| Check csf
LF_FTPD option |
OK |
| Check csf
LF_SMTPAUTH option |
OK |
| Check csf
LF_POP3D option |
OK |
| Check csf
LF_IMAPD option |
OK |
| Check csf
LF_HTACCESS option |
OK |
| Check csf
LF_MODSEC option |
OK |
| Check csf
LF_CPANEL option |
OK |
| Check csf
LF_SCRIPT_ALERT option |
OK |
| Check csf
LF_DIRWATCH option |
OK |
| Check csf
LF_INTEGRITY option |
OK |
| Check csf
PT_ALL_USERS option |
OK |
| Check csf
PT_SKIP_HTTP option |
OK |
|
Server Check |
Status |
| Check
/tmp permissions |
OK |
| Check
/tmp ownership |
OK |
| Check
/tmp is mounted as a filesystem |
OK |
| Check
/tmp is mounted noexec,nosuid |
OK |
| Check
/etc/cron.daily/logrotate for /tmp noexec workaround |
OK |
| Check
/var/tmp permissions |
OK |
| Check
/var/tmp ownership |
OK |
| Check
/var/tmp is mounted as a filesystem |
OK |
| Check
/var/tmp is mounted noexec,nosuid |
OK |
| Check
/usr/tmp permissions |
OK |
| Check
/usr/tmp ownership |
OK |
| Check
/usr/tmp is mounted as a filesystem or is a symlink to /tmp |
OK |
| Check
/dev/shm is mounted noexec,nosuid |
OK |
| Check
/etc/resolv.conf for localhost entry |
OK |
| Check
/etc/named.conf for recursion restrictions |
OK |
| Check
/etc/named.conf for random query source port |
OK |
| Check
server runlevel |
OK |
| Check
nobody cron |
OK |
| Check
Operating System support |
OK |
| Check
perl version |
OK |
| Check
MySQL version |
OK |
| Check
SUPERUSER accounts |
OK |
|
SSH/Telnet Check |
Status |
| Check
SSHv1 is disabled |
OK |
| Check SSH
on non-standard port |
OK |
| Check SSH
PasswordAuthentication |
OK |
| Check
telnet port 23 is not in use |
OK |
| Check
shell limits |
OK |
| Check
Background Process Killer |
OK |
|
Exim Check |
Status |
| Check
root forwarder |
OK |
| Check
exim for extended logging |
OK |
| Check for
maildir conversion |
OK |
|
Apache Check |
Status |
| Check
apache version |
OK |
| Check
suPHP |
OK |
| Check
Suexec |
OK |
| Check
apache for mod_security |
OK |
| Check
apache for RLimitCPU |
OK |
| Check
apache for RLimitMEM |
OK |
| Check
mod_userdir protection |
OK |
| PHP
Check |
Status |
| Check php
version |
OK |
| Check php
for enable_dl |
OK |
| Check php
for disable_functions |
OK |
| Check php
for ini_set disabled |
OK |
| Check php
for register_globals |
OK |
| Check php
for Suhosin |
OK |
| Check php
open_basedir protection |
OK |
| WHM
Settings Check |
Status |
| Check
cPanel version |
OK |
| Check
cPanel login is SSL only |
OK |
| Check
boxtrapper is disabled |
OK |
| Check max
emails per hour is set |
OK |
| Check
whether users can reset passwords via email |
OK |
| Check
whether native cPanel SSL is enabled |
OK |
| Check
compilers |
OK |
| Check
Anonymous FTP access |
OK |
| Check
allow remote domains |
OK |
| Check
block common domains |
OK |
| Check
allow park domains |
OK |
| Check
cPAddons update email to owner |
OK |
| Check
cPAddons update email to root |
OK |
| Check
package updates |
OK |
| Check
security updates |
OK |
| Check
melange chat server |
OK |
| Check
root/reseller login to users cPanel |
OK |
| Check
cPanel php for register_globals |
OK |
| Check
cPanel php.ini file for register_globals |
OK |
| Check
cPanel passwords in email |
OK |
| Check
Referrer Security |
OK |
|
Server Services Check |
Status |
| Check
server startup for cups |
OK |
| Check
server startup for xfs |
OK |
| Check
server startup for atd |
OK |
| Check
server startup for nfslock |
OK |
| Check
server startup for canna |
OK |
| Check
server startup for FreeWnn |
OK |
| Check
server startup for cups-config-daemon |
OK |
| Check
server startup for iiim |
OK |
| Check
server startup for mDNSResponder |
OK |
| Check
server startup for nifd |
OK |
| Check
server startup for rpcidmapd |
OK |
| Check
server startup for bluetooth |
OK |
| Check
server startup for anacron |
OK |
| Check
server startup for gpm |
OK |
| Check
server startup for saslauthd |
OK |
| Check
server startup for avahi-daemon |
OK |
| Check
server startup for avahi-dnsconfd |
OK |
| Check
server startup for hidd |
OK |
| Check
server startup for pcscd |
OK |
| Check
server startup for sbadm |
OK |
| Check
server startup for webmin |
OK |
| Check
server startup for ossec |
OK |
