Securing OpenPanel

This section describes the best practices and settings that can increase the security of your OpenPanel server and, thus, protect it from various types of attacks and loss of sensitive data:

For Server Administrators (OpenAdmin):

• Enable Basic Access Authentication for OpenAdmin
• Configure CorazaWAF rules
• Change OpenPanel or OpenAdmin ports
• Restrict access to OpenAdmin
• Check passwords agains weakpass.com lists
• Changing the OpenPanel Administrator Username
• Securing OpenPanel and the Mail Server With SSL/TLS Certificates
• Restricting access to Features based on Hosting Plans
• Setup Fail2ban for email
• Setup DKIM for emails
• Enable CSF Blocklists
• Limiting Connections with CSF
• Rate-limiting failed Openpanel logins
• Change SSH root user password
• Change SSH port
• Configure SSH Keys
• Disable OpenAdmin access

For Website Administrators (OpenPanel):

• Enabling WAF protection per domain
• Configure Automatic Backups
• Fix Files Permissions
• Scan website files for Malware
• Suspend a Compromised Website
• Setting up Multi-Factor Authentication in OpenPanel
• Configure Automatic SSL
• Reviewing Account activity log
• Reviewing Active Sessions
• Viewing Login History