We are excited to offer cPFence Free Antivirus, designed specifically for Enhance servers. This version is valid only for the main control panel server with fewer than 5 websites, making it ideal for single-server setups with a few sites.

Key Details:

  • Free Forever: Includes malware detection, removal, and hourly updates.
  • Eligibility: Main control panel server only, with fewer than 5 websites.
  • Activation: Generate a key on your server (details here) and submit a ticket to activate your free license.

For larger setups or those needing advanced features, the paid version offers support for multiple servers, clusters, and advanced capabilities like WAF, IPDB, and WordPress Security.

Learn more:

Do you have any demo panel? I am currently using CPguard and would be happy to switch to yours.

    DracoBlue
    Thank you for your interest. While we don’t have a demo panel, you can start using the cPFence Free Antivirus right away, it’s completely free for life. Plus, if you're curious about the additional features in the paid version, we offer a 30-day free trial, so you can explore everything without any commitment. Let us know if you have any other questions.

    Why not create a standalone panel instead of waiting for Enhance to release their framework for integrating external applications?

    According to the roadmap, this feature is planned, but there’s no ETA. A simple panel that displays stats, graphs, and basic settings would be a great start!

      adil
      Thank you for the suggestion! We’ve definitely considered creating a standalone panel. However, since cPFence is designed to integrate seamlessly with existing Enhance installations , we’ve prioritized waiting for Enhance’s framework to ensure a smooth user experience without the need for extra installations or maintenance on your end. That said, we’re always open to feedback, and a simple standalone panel with essential features like stats and settings could be something we explore if there's enough demand.

      Right now, we’re focused on making cPFence the Swiss knife of security tools, providing a comprehensive solution for your security needs. We’d love to hear more of your ideas, so feel free to share any thoughts on how we can improve!

      DracoBlue I've switched 12 Enhance servers to cPFence from cPGuard. We still have cPGuard for cPanel until we can migrate cPanel better, but here are my observations after a week of cPFence:

      1. Support is fanatical. Quick and efficient and provides a fast version release when issues are encountered. (I have so much going on every single day so my typos are fast & furious, and often incorrect but they've been extremely patient with me!)
      2. cPGuard isn't really able to secure email only or database only Enhance servers but cPFence can.
      3. A couple servers had elevated load vs. cPGuard but in the subsequent releases they appear to be back to closer to normal. Three releases between Friday and Monday is phenomenal.

      cPGuard is awesome, but for Enhance cPFence is at the very least equivalent and built for Enhance / OLS & LS.

        I installed it, but bummer, I need a panel. Uninstalling for now and to cPGuard I go!

          briansmith84 I installed it, but bummer, I need a panel. Uninstalling for now and to cPGuard I go!

          Thank you for your feedback and for giving cPFence a try! We understand the need for a central management panel for some users; unfortunately, it’s not currently on our roadmap. If we do implement such a feature in the future, it will be optional, as many of our clients prefer avoiding active connections between a central management server and their own infrastructure.

          That said, the integration with Enhance’s UI is a priority for us and will be available as soon as Enhance releases the necessary API. We hope you’ll consider revisiting cPFence once this feature is live!

          MediaServe I've switched 12 Enhance servers to cPFence from cPGuard. We still have cPGuard for cPanel until we can migrate cPanel better, but here are my observations after a week of cPFence:

          Support is fanatical. Quick and efficient and provides a fast version release when issues are encountered. (I have so much going on every single day so my typos are fast & furious, and often incorrect but they've been extremely patient with me!)
          cPGuard isn't really able to secure email only or database only Enhance servers but cPFence can.
          A couple servers had elevated load vs. cPGuard but in the subsequent releases they appear to be back to closer to normal. Three releases between Friday and Monday is phenomenal.

          cPGuard is awesome, but for Enhance cPFence is at the very least equivalent and built for Enhance / OLS & LS.

          Thank you so much for sharing your experience and observations! We're thrilled to hear that cPFence has been a good fit for your Enhance servers. It’s great to know that the recent updates have improved performance, If you have any other suggestions or need assistance please let us know.

          I would advise against implementing a panel or dashboard. If you plan to use Enhance, it’s essential to at least know how to SSH into a server and run commands. Basic familiarity with the terminal and how to use it is also necessary.

          Additionally, creating a panel could introduce significant privacy concerns. I’m currently considering cPFence partly because it avoids the complications of GDPR compliance. Please avoid implementing anything that would force us to deal with these regulations.

          Instead, continue improving your product and focusing on its core strengths. We don’t need a panel. For those who do, cPGuard is already available.

            I am sorry to jump into this thread. But as I am seeing multiple such feedbacks in this forum, ivansalloum I would like to clarify that cPGuard Lite is standalone and not connected to our centralized portal. The Lite package has integrated UI with cPanel/DA and CLI for other panels ( including Enhance ) and standalone servers ( should help for people with GDPR concerns )....it is integrated with Enhance as well with well-documented CLI. Apologies again for using this thread to update this.

              opsshield The main issue is that cPGuard is based in India, which raises privacy concerns. Additionally, your legal documentation lacks clarity. After consulting with a GDPR expert and lawyer, here's what they said:

              • The company is based in India, which is not considered to have adequate data protection laws by the EU. Transferring personal data to India would require additional safeguards.
              • The license agreement states they collect and store sensitive data like IP addresses, usernames, passwords, etc. as "Support Data", but does not provide clear information on how this data is protected or for how long it is retained.
              • There is no mention of a Data Processing Agreement (DPA) or details on how they comply with GDPR requirements like data subject rights.
              • The agreement puts most of the responsibility for compliance on the customer, stating "You agree to comply with all applicable laws, regulations, rulings, and orders of the EU, US and other countries (including but not limited to the GDPR,PDPA etc)".
              • There is no clear information on appointing an EU representative or data protection officer as required by GDPR for non-EU companies.
              • The refund and liability policies seem to limit user rights in ways that may conflict with GDPR.
              • The data collection and usage policies are vague and do not provide the level of transparency required by GDPR.

              (I revised them using AI to make them simpler and easier to understand.)

                ivansalloum Thank you for the details....we understand the concerns and are in the process of rewriting the privacy statement. Here I added a note just to clarify that cPGuard Lite is an on-premise software and no sensitive data is transferred to us. We will amend the privacy doc soon to make it more clear. Thanks again for sending the details and let the thread stick with its original topic...thank you.

                ivansalloum
                xyzulu

                Hello,

                Thanks for your replies. As mentioned earlier, most of our clients prefer not to have a centralized portal (nothing against products that do, but this aligns with our business model and client base). That's why a central portal isn’t on our roadmap. As for the Enhance UI integration, it’s planned, but it will remain optional with the default setting turned off.

                We’re focused on making cPFence a Swiss Army knife-type tool that does much of the heavy lifting for server admins, and we’re eager to hear new ideas and feature suggestions to keep improving. Let us know if you have any other thoughts!

                  Shaijee

                  Yes, the free version does protect email inboxes against virus-infected attachments and spam or suspicious URLs, though the detection is not as fast as the paid version. So, don’t expect instant blockage like you would with the paid version. However, it’s still a solid option if your server isn’t highly mission-critical.

                  Regarding spam or suspicious URLs, we only quarantine emails containing URLs flagged by at least two reputable email spam block services, meaning they are very likely to be spam. You can also whitelist specific email addresses with this command:

                  cpfence --exclude-path /var/local/enhance/email/mailboxes/6f8a2f88-093e-4f8f-9e60-0da1c12d8bbc/info@domain.com/

                  Or you can go further and disable email protection entirely using this command:

                  cpfence --exclude-path /var/local/enhance/email/mailboxes/

                  This will exclude all email addresses from being flagged, offering more flexibility if needed.

                    cPFence

                    Does this moves the message to SPAM folder or delete it ?

                      adil

                      This moves the message to a quarantine folder. In most cases, 99% of the email detections are already in the spam folder, so cPFence simply moves them from the spam folder to a safe quarantine. The suspicious URLs in these emails are often reported to be part of phishing schemes designed to steal sensitive information, and users can be compromised if they click on these links or download infected attachments.

                      If the URL isn’t flagged by at least two reputable spam/phishing protection databases, cPFence will not touch it. As for malware in attachments, cPFence relies on its regular malware database to detect and block those threats. This extra step helps ensure your users are protected from potential email attacks.

                        cPFence Yes, the free version does protect email inboxes against virus-infected attachments and spam or suspicious URLs, though the detection is not as fast as the paid version. So, don’t expect instant blockage like you would with the paid version. However, it’s still a solid option if your server isn’t highly mission-critical.

                        Enhance uses Rspamd for spam protection by default. How does it work with, and does it need any additional setup to protect the mail system?

                        Also, does the free version include WAF or SSH protection?

                        cPFence This moves the message to a quarantine folder.

                        First, the email will be moved to SPAM. Then, cPFence will scan it and move it to quarantine.

                          Shaijee

                          cPFence doesn’t move infected emails to the spam folder—it simply scans all folders for infections and quarantines them as needed. In most cases, infected emails are already in the spam folder, but cPFence works across all folders to ensure nothing is missed.

                          As for your other questions, the free version doesn’t include WAF or IPDB / DDos protection; you'll need the paid version for that. Regarding SSH, cPFence doesn’t monitor SSH activity. We always recommend disabling password authentication altogether and using SSH keys only for better security.

                            Follow @enhancecp