Do you need to block in both cPHulk and your firewall? Technically no. But if you're the belt and suspenders type, more #security is rarely a negative.

DDoS attack recorded in the server logs.

This is just a partial view of a #DDoS attack that's being effectively blocked. Notice the comment, "# cPHulkd Brute Force". This is #cPHulk automatically running a command that also blocks these IPs in the firewall.

Fullpage Screenshotter – Get this Extension for 🦊 Firefox (en-US) Download Fullpage Screenshotter for Firefox. Snap the entire page in Firefox in one click — even the parts you can’t see! Opens instantly in a new tab. No tracking, no data collection.

Need to screenshot a full page?
GoFullPage
Chrome: chromewebstore.google.com/detail/goful...
FireFox: addons.mozilla.org/en-US/firefo...

ZeroBlur - Chrome Web Store Blur any sensitive information from any website or web app. Keep data safe when delivering demos or recording videos!

A couple usefull browser extensions::

Need to blur part of a screenshot?
Zero Blur
Chrome: chromewebstore.google.com/detail/zerob...
Firefox:
addons.mozilla.org/en-US/firefo...

Split View is available to all Firefox users starting with Firefox 149, rolling out on March 24.

Split View in Firefox: Two tabs side by side, right where you need them | The Mozilla Blog Much of what we do on the web involves looking at more than one thing at a time – booking tickets while checking your calendar, taking notes as you go th

Like Chrome previously, #Firefox has now added Split View. This feature operates pretty much the same as in Chrome, with slight variation in how the split view is initiated, i.e. right clicking a tab for the options.

blog.mozilla.org/en/firefox/s...

The downside to agressive port scan blocking is false positives, resulting in legitimate traffic getting blocked. So you need to actively monitor firewall logs and adjust as needed.

What is port scanning?
TLDR; Port scanning is a reconnaissance technique used to probe your server for open, listening network ports. So close all unnecessary ports and and configure your firewall to block attempts that exceed your maximum limit.

#server #security

If you find multiple IPs from the same subnet abusing your server:
185.177.72.23
185.177.72.49
185.177.72.56
185.177.72.204

block the IP range in #Cloudfare > #Security > #Waf > Tools
185.177.72.0/24

And add the same range to your server firewall.

If you are running a #cPanel server with Config Server Firewall & Security, on Febuary 25th, cPanel started providing it's own fork of #CSF. Details are here: support.cpanel.net/hc/en-us/art...

NOTE: This blocks attempts to login to your server services, cPanel, WHM, Dovecot/Exim, FTP/SFTP, SSH and WebDisk from the blacklisted country. It does not block attempts to connect to your server, that's handled by your firewall.

Add another level of server security using country blocking in #WHM / #cPHulk > Countries Management > select country > Blacklisted

*Pay per crawl

If you have a #Cloudflare paid account, you have the option to enable Markdown for Agents. Markdown is a more efficient format for content delivery to #Ai agents. If you're also using Per per Crawl, the request will still have to be authorized before it will be converted from HTML to Markdown.

Ukraine Dog Rescue Donate to save Dogs & Cats

rescue-team.rolda.org

Items in red are potential vulnerabilities and may need to be fixed.
Contact your server support if you don't know how to fix them.

Free #security audit, no experience required.
Log in to #WHM then type adv in search and click the first result: Security Advisor.
Alternatively, Log in to WHM, scroll down to Security Center, click Security Advisor.
This will initiate a security scan of your server.

Google port# to confirm if it needs to be open.

Drop the port but send a rejection message back to the sender:
sudo iptables -I INPUT -p tcp --dport PORT# -j REJECT

In general, use DROP for public facing unused/non-standard ports and REJECT for internal trusted networks.

Google port# to confirm if it needs to be open.

Use CLI or Terminal:
Silently drop the individual port. Replace PORT# with the relevanat destination (aka remote) port:
sudo iptables -I INPUT -p tcp --dport PORT# -j DROP

Save your rules to make them permanent.
sudo service iptables save

How to use cPanel/cPHulk notification to increase security:
Access attempts targeting destination (aka remote) port 9700 blocked by #cPHulk.

Using #Google messages on your phone? You can also use it on your laptop: messages.google.com/web

Have you tried #Chrome Split View? If you do a lot of multitasking, it can be a real time saver. Once tabs are in split view, you can arrange the tabs by right clicking the tabs and clicking "Arrange split view". Currently, split view is limited to two tabs.

There are paid versions but I tested the free version on an old laptop. The install was not particularly intuitive, you need to create a free account, login to download the 0patch agent, and once installed, you must also login to the agent. Once installed though, it worked.

0patch - No more patching headaches The tiny micropatching solution that fixes the way we fix vulnerabilities and joins software vendors, users and security researchers in the same team

As noted in an earlier post, support for Windows 10 has now ended and if you want to stick with Windows, you can purchase an extended year of support from Microsot. There is another option though and there's a free version: 0patch.com/pricing.html

Supplement Testing Results: Independent Lab Analysis | SuppCo Tested Independent lab testing reveals quality gaps in 22 out or 44 supplements purchased from Amazon.com. Our investigation shows which brands deliver on their promises and which fall short, and include a p...

SuppCo Tested | What We Learned Testing 44 Supplements Purchased on Amazon.com
supp.co/articles/sup...

from ChatGPT:
1890–1910s: Ragtime, Blues
1910–1920s: New Orleans, Dixieland, Chicago
1930–1940s: Swing, Big Band, Kansas City
1940s: Bebop
1950s: Cool Jazz, Hard Bop
1960s: Modal, Free, Latin
1970s: Fusion, Jazz-Funk
1980s–90s: Smooth, Acid, Nu Jazz
2000s–Today: Neo-Traditional, Experimental, Lo-Fi

from Gemini:
Late 1800s-1910s: Blues & Ragtime
1910s-1920s: Early Jazz / New Orleans
1930s-1940s: Swing / Big Band
1940s-1950s: Bebop
1950s: Cool Jazz
Late 1950s-1960s: Hard Bop, Modal, Latin
1960s-1970s: Free Jazz / Avant-Garde
1970s: Fusion (Jazz-Rock)
1980s-Present: Contemporary Jazz

Off my usual topics but was curious about the different forms of #Jazz, so I asked Gemini and ChatGPT to respond. Detailed results were great but too long to post here so here's a summary.

Ukraine Dog Rescue Donate to save Dogs & Cats

rescue-team.rolda.org

Perfmatters - The #1 Web Performance Plugin for WordPress Slow WordPress sites have higher bounce rates and fewer conversions. The perfmatters plugin was created by web performance geeks to speed up your site!

Perfmatter's Black Friday sale is live. Use code BLACKFRIDAY and save 30% off. perfmatters.io?ref=537&camp...

#wordpress #perfmatters #blackfriday