Inquiry: Potential Downsides of Securing CyberPanel Against Threats and Attacks

Support and Discussion General Discussion
1

To improve security and mitigate potential threats to our CyberPanel server, I plan to implement the following measures. I would like to confirm if there are any potential downsides or operational issues related to these changes:

  1. Disable Root Access:
  • Disabling direct root login via SSH.
  • Using a wheel user with sudo privileges for administrative tasks.
  1. Disable Port 7080:
  • Closing port 7080 to prevent access to the OpenLiteSpeed (OLS) login panel.
  1. Disable CyberPanel Login:
  • Running the following commands to stop and disable the CyberPanel login service:
systemctl stop lscpd  
systemctl disable lscpd

Questions:

  1. Are there any critical services or features dependent on port 7080 that would break if it’s disabled?
  2. Does stopping and disabling the lscpd service impact server performance, website functionality, or essential CyberPanel features?

My goal is to ensure the server remains secure while maintaining its core functionality. Please let me know if there are better alternatives or additional steps to consider.

Thank you!

2

Hello @gringofrijolero

Disabling the CyberPanel service will have a significant impact on your server performance, websites functionality, and in overall essential CyberPanel features.

Security recommendations:

  1. SSH Key-Based Authentication
  2. Two-Factor Authentication
  3. ACL
  4. Imunify 360
  5. Password Protect OpenLiteSpeed with Basic Auth and Realms
  6. Secure your MariaDB/Mysql
3

All your recommendations would have not prevented that last hack. They used lscpd service to gain access to your server, so the only real solution is to shut it down when you don’t need it.

But there could be a lot of other related tasks that uses lscpd service, so it’s not a true solutions either. The only solution is to migrate to more competent hosting panel.

4

Please note that no system can ever be 100% secure. This year alone almost the top free alternatives to cyberpanel had critical vulnerabilities and they involved services created by respective collectives just like lscpd.

It is imperative that you take precautions to protect your system, or any system for that matter.

“Cybersecurity is not a one-time event; it’s an ongoing process.” – John Chirhart