WP AutoShield®: One-Click WordPress Security from cPFence: Page 13 - Enhance Control Panel

WP AutoShield®: One-Click WordPress Security from cPFence

cPFence

On each server, and for full benefit, make sure it’s installed on your main control panel server as well. Some features like cPFence Multirun, cPFence MonitorPro (for full automation), and ApiMachine won’t function properly unless cPFence is active on the main CP. At minimum, install it on your main CP and all app/email servers.

opsshield

cPFence I believe this isn’t the first time I’ve had to step in on one of your threads to address incorrect or misleading information about our software or company. I kindly ask that you avoid mentioning our software/company unless you're certain the information you're sharing is accurate.

We understand that discussions can vary in perspective, but it's important to ensure facts are correct to avoid confusion for other readers. I'm sorry to have to post this publicly, but we feel it's necessary to clarify any false claims made about our software or company in public forums.

cPFence

opsshield

Do you mean the post where we said we couldn’t find a physical address on your About Us page?
https://community.enhance.com/d/1970-cpfence-free-antivirus-now-available-for-enhance-users/51
If that’s what you're referring to as “misleading,” that was simply an accurate statement based on what was publicly visible on your "About us" at the time.

We don’t recall posting any incorrect -or even specific- information about your product or company beyond that. But if you believe otherwise, feel free to share a link so we can review it and avoid any confusion going forward.

As for the ClamAV mention, our source was your own website:
https://www.opsshield.com/enhance.html
You state:

Does cPGuard require ClamAV?
Yes, cPGuard’s scanner engine requires ClamAV version 100+ installed on the server. Since it is an essential package we have included it in our package as a dependency and will be installed along with cPGuard from additional source

So if there’s confusion, perhaps updating your own site for clarity would be more productive than updating our sales page.

opsshield

cPFence "that was simply an accurate statement based on what was publicly visible on your "About us" at the time." - The OP asked about YOUR address and details and you came up with "About Us" page from nowhere and compared it with our website ( makes an impression that we do not have our address details in our website either ). I do not know why you brought up our web page for a comparison where we have an explicit page "Conact Us" page with physical address and location map. So it's even better to stick with your website and your pages when someone asked about YOUR information than bringing incorrect information about other website.

"As for the ClamAV mention, our source was your own website:" - I want to clarify that I did not decline this in my original post either. What I said was that we are not using it in the way you described.

It was never my intention to explain anything about our software in your sales thread. We're not interested in comparisons and prefer to focus on our own work. So kindly spare us from any unnecessary mentions. I hope this will be the end of the discussion, as this is your thread, and I will not make any further interruptions.

cPFence

Seeing new and exclusive modules pop up in cPFence has become a habit for our clients—because we just keep shipping. We’re focused on giving server owners real tools to solve real problems. Today, we’re proud to announce our latest: the Spam AutoShield module. This powerful new addition is built to give you total spam control across your entire Enhance server environment, without breaking a sweat.

How to Get Started?

First, upgrade Rspamd and activate its WebUI by following this guide:
Upgrade Rspamd Guide
Then, activate Spam AutoShield with:
```
   cpfence --activate-spam-autoshield
```

New Helper Tool: Username-Based Symlinks for /var/www

Create cPanel-style paths like /var/www/username for easier navigation—super handy for sysadmins and developers.

Create symlinks:
```
  cpfence --create-user-homelinks
```
Remove symlinks:
```
  cpfence --remove-user-homelinks
```

More info on our change logs page.
https://cpfence.app/changelogs/

xyzulu

cPFence Create cPanel-style paths like /var/www/username for easier navigation

A better, in my opinion, suggestion is to have the symlinks /var/www/domain.com/ rather than username. Just my own opinion of course.

cPFence

cPFence cpfence --create-user-homelinks

If you want this tool to automatically pick up newly added or removed users/sites, just set up a cron job like this:

/opt/cpfence/app/setup/cpfmain --create-user-homelinks > /dev/null 2>&1

The tool is designed to add or remove symlinks as needed to keep your setup always up to date.

8Dweb

xyzulu I can see that, but if there are aliases, sub-domains, add-ons it might be an issue. I wish it could be both... 😉

cPFence

xyzulu

Thank you for the suggestion. We might consider adding a new helper tool for this in the future, though it’s not as straightforward to implement as the username-based approach.

Kosta

Ban him and delete post lol

xyzulu

Kosta flag it instead of posting

standtech

Kosta Ban who ?

cPFence

xyzulu flag it instead of posting

standtech

A spammer registered and posted here, but the content has already been deleted.

gmakhs

When files are moved into quarantine what prevents them from running server wide since they are transfered using root ?

cPFence

gmakhs

Files quarantined by cPFence are moved to an isolated directory that’s not web-accessible or executed by any service. Ownership and permissions are preserved, files are renamed to prevent accidental execution. Even though root moves them, they’re not executable, not publicly accessible, and can’t run unless the admin manually restores and reactivates them.

gmakhs

cPFence that's great !

After studying your knowledge base though I see that cpfence is good at detecting sites with issues, but it's not clear to me how it prevent sites from being hacked in real time .

It seems also that scripts like WP hardening need to be run manually every now and then ?

From your kb
To enable Malware Real-Time Protection, use the following command:

cpfence --enable-MRTP

This command activates real-time protection against malware, ensuring immediate detection and response.

What response means ?
Does it just notify and quarantine the file ?
Does it block the malware?
Do I still need to do manual action ?

cPFence

gmakhs

If you enable auto-quarantine, the malware detection module will automatically scan, quarantine infected files, and email you a notification when issues are found, no manual action needed.

As for WP AutoShield, all features run entirely on autopilot. No need to re-run hardening manually. You can read more about it here:
https://cpfence.app/wp-autoshield-one-click-security-for-high-performance-secure-hosting/

Even if a client misconfigures something, WP AutoShield will auto detect and fix issues daily. Our Owl module also monitors all running processes and blocks malware in real time.

That said, advanced users still have access to a powerful arsenal of manual tools if needed, but for most, the default autopilot mode is more than enough and fully recommended.

gmakhs

cPFence
So if I understand correctly, if the file that changed to include the malware is part of the website theme or wordpress core , cpfence will quarantine it and brake the website.

But it doesn't prevent the change from happening correct ?

cPFence

gmakhs

Yes, that's correct. The cPFence Malware Protection module doesn’t lock files to prevent changes, it monitors and scans in real time, and if malware is detected, it will auto-quarantine the file (if auto-quarantine is enabled), even if it’s part of a theme or core file.

On the other hand, the goal of the WP AutoShield module is to automatically enforce strict boundaries and security rules daily, making it significantly harder for attackers to succeed in the first place.

gmakhs

cPFence can you elaborate please ?

As I understand hardening is changing permissions , but the default ones already are safe, so if the user haven't changed them it's the same , or am I wrong ?

cPFence

gmakhs

Hardening goes far beyond just permissions. A default WordPress installation is still exposed to multiple risks and will likely get compromised sooner or later if left as-is.

You can read more on the link I shared earlier, and also on WordPress’s official hardening guide.

WP AutoShield handles all of this automatically. Even if a user later changes something that weakens security, the module will detect and re-apply best practices daily to keep the site protected.

« Previous Page Next Page »