Checklist
- Keep software updated.
- Use CSF or another firewall.
- Disable password SSH login where practical.
- Use SSH keys and non-default security policies.
- Restrict WHM and administrative access.
- Enable cPHulk or equivalent brute-force protection carefully.
- Install malware scanning and monitoring.
- Remove unused services.
- Review root login history and sudo users.
Principle
Hardening is ongoing. New accounts, plugins, scripts, and staff access can create new risk over time.
Server owner responsibility
Owning a server includes updates, firewall, backups, monitoring, licenses, abuse response, mail reputation, DNS, and customer communication. Keep a written checklist so routine tasks are not handled from memory.
Quick support handoff
If this article does not solve the issue, open a support ticket with the domain, service name, exact error, time the problem started, and what changed recently.
