WordPress® Hardening: One-Click Security with cPanel

WordPress® Hardening: One-Click Security with cPanel

by cPanel: WordPress is far and away the most widely-used content management system on the web, but that popularity comes at a price. It’s also the most attacked CMS. Not because it’s un-secure, but because attackers know that a WordPress vulnerability is a gateway to tens of millions of websites.

As soon as a WordPress website goes online, automated bots begin to probe it for weaknesses. That’s why it’s critically important to security harden WordPress sites, ensuring that they have the smallest possible surface area for attackers to target.

Security hardening was once a long and complicated manual process, but WordPress Toolkit for cPanel  makes it a one-click affair. This article will explore some of the ways WordPress vulnerabilities are exploited and how WordPress Toolkit protects sites against many common attacks.

Common WordPress Vulnerabilities

Every vulnerability is unique, but most attacks against WordPress sites fall into one of four categories:

  • Brute force and dictionary attacks: Attackers attempt to guess security credentials such as usernames and passwords. Attacks of this type are carried out by bots that can quickly flood WordPress authentication systems with a deluge of login attempts.
  • Denial of Service (DOS) and Distributed Denial of Service (DDoS) attacks: Bad actors bombard sites and networks with requests and data, consuming resources, degrading performance, and potentially taking them offline. WordPress includes a system called XML-RPC, which is often used in denial of service attacks.
  • Core, plugin, and theme vulnerabilities: Bugs in code can be exploited to circumvent authentication systems, upload malicious code, or gain extra privileges.  Bad actors often look in a site’s files for clues about the sort of attack it is vulnerable to.
  • Code injection attacks: Running malicious code is a goal of many bad actors. They scour WordPress sites searching for vulnerabilities that will let them inject PHP, JavaScript, or SQL code.

WordPress Toolkit for cPanel implements features and security measures that protect sites against each of these attack types.

Security Hardening with WordPress Toolkit for cPanel

cPanel’s WordPress Toolkit is a complete WordPress management solution with an intuitive interface. You can think of it as a single dashboard for controlling all of your WordPress sites. It automates WordPress hosting tasks, including installation, updates, and backups. It also surfaces configuration tweaks that you’d otherwise have to dig around in the admin interface or edit configuration files to change.

WordPress security hardening is one of the places where WordPress Toolkit really shines. First, it applies fixes for critical vulnerabilities during installation, so sites are secure before they go online. Second, it scans existing sites for suboptimal security settings and can fix them at the click of a button.

We’ll have a look at some of the security fixes it applies in a moment, but first, we’ll show you just how easy it is to security harden a WordPress site with cPanel.

To use one-click hardening, you will need:

  • A cPanel instance with WordPress Toolkit installed
  • A WordPress Toolkit Deluxe license.

You can find the WordPress Toolkit in Applications on cPanel’s main page. Sites are listed on the overview page with status information and configuration switches.

Introducing Jupiter – A New Look For cPanel

Introducing Jupiter – A New Look For cPanel

Introducing Jupiter – A New Look For cPanel by cPanel
Creating a new theme for cPanel is no small task. We knew we had to not only keep what our current users love, but also provide an easy-to-use format for newer users. We want you to be able to find the tools you need (and any help you may need) without delay. This is what led us to develop two main pages for Jupiter – the Tools page and the Solutions page. The Main Menu allows you to easily switch between these two pages.

The Tools Page

Jupiter – Tools Page
The Tools page will be familiar to experienced users. This is the default home page. We’ve listed cPanel’s applications and grouped them into categories. Like in Paper Lantern, you can click on and drag these groups to arrange them in any order. On the right sidebar, the General Information and Statistics panels display website and server information at a glance.

The Solutions Page
Created with first-time users in mind, the Solutions page will teach you how to use cPanel effectively and efficiently. Experienced users may also find this page to be a valuable source of information.

We’ve listed the top twenty questions our users ask cPanel Technical Support. Clicking on any of these questions will take you to our public documentation to help you find a solution to your issue. If you don’t see the problem you are experiencing, we have also included links to our documentation, video tutorials, forums, and cPanel University.

The header at the top of both the Tools page and the Solutions page features a search bar, allowing users to find what they are looking for within the cPanel interface. A drop-down menu next to the cPanel Account name allows access to Account Preferences, Password & Security, Change Language, Contact Information, Reset Page Settings, Log Out, and other links that may have been added by your hosting provider.

What’s Next For Jupiter

Jupiter – Solutions Page

This is just the beginning of development. We have lots in store to make cPanel better than ever.

Guided Solutions
For a product as feature-rich and robust as cPanel, it’s easy to get lost in the complexity. The cPanel Interface can overwhelm first-time users with so many options. Even experienced users may stick to what is familiar and never try out some of the other tools we have available. Our Guided Solutions will introduce key features within cPanel, allowing us to step new users through common tasks as well as walk experienced users through some of our more advanced tools. We’re excited to launch this functionality in the near future!

We plan to set up a new style architecture that will give hosting providers an easier way to customize color palettes and theme your cPanel experience, without relying on complicated style overrides and custom CSS. We are even working to empower resellers and hosting providers to create their own custom Guided Solutions. Some

additional options will be the ability for resellers and hosting providers to:

upload custom logos
change the color palette
add common questions to the help section
add resource links
link their own documentation and videos
These efforts will make cPanel easier to use so our customers can focus on what matters, like site building, content creation, and marketing.

Send Us Feedback
We’d love to hear what you have to say about Jupiter and what you’d like to see in the future. We are actively developing the guided solutions. Want a specific task as a Guided Solution? Let us know! Our customers are our most valuable resource. Click here to share your thoughts with us

WordPress manager a better wordpress experience with cPanel

WordPress manager a better wordpress experience with cPanel

By: benny Vasquez: Over the past year, we have been working to better develop both the infrastructure and the experience of using cPanel with WordPress. This time our goal has been to provide our customers with an easy, dependable, self-service method for managing WordPress sites through the cPanel interface. We are pleased to be releasing the first phase of this work to our customers in the form of WordPress Manager.

Read More »