WP AutoShield®: One-Click WordPress Security from cPFence: Page 17 - Enhance Control Panel

WP AutoShield®: One-Click WordPress Security from cPFence

cPFence

ivansalloum then suddenly say you can’t give an ETA or share your plans. That’s not just a lack of transparency, it’s misleading communication. If you can’t be transparent, then don’t make promises you clearly can’t keep.

Sometimes technical issues come up that delay things, and teams can’t always deliver on promises, even with the best intentions. That’s exactly why Enhance has recently shifted to avoid giving ETAs or making fixed promises on the roadmap. Ironically, that’s what people were asking for, and now that they’re doing it, folks still aren’t happy.

Let’s be real, Enhance isn’t perfect, but no platform is. It clearly works well for a lot of us here, and that’s why we stick with it. At this point, there are only two routes: either help them grow and improve, or constantly tear them down and push newcomers away. Any reasonable person would choose to support improvement, and if it still doesn’t meet your needs, move on and find something that does. Simple as that.

Kosta

I feel like I don’t want anymore to keep developing my web hosting business, seeing how fu ed up are sysadmins with experience in this industry… reading all this unnecessary stuff.
Guys you are having psychological problems! Haha
Hope Adam can delete or give delete privileges to 3rd party devs, all this unnecessary stuff in this thread…

gmakhs

Kosta
Its a nice field to work on, but once your business grow your mindset will change too, and you will become much more protective for your business face and your clients websites which for a lot of them will be how they make their living, and its how you make yours

cPFence

gmakhs

Your problem is assuming software development is always straightforward, it’s not. Sometimes there are great ideas and solid plans, but during implementation, things just don’t go as expected. You try, fail, adjust, and try again until the result is good enough for production.

As a business owner, it’s your job to weigh those successes and failures and decide if the product fits your needs. But accusing people of being dishonest or misleading just because things took longer than expected? That’s not fair, and it’s not constructive.

cPFence

gmakhs the problem is not the delay but how you communicate it

That still falls under the successes and failures I mentioned earlier, including how things are communicated. If that level of communication doesn’t meet your needs, that’s fair, but in that case, it might be best to explore other alternatives that better align with what you’re looking for.

Now, can we please stop dragging unrelated discussions into the cPFence sales thread?! Let’s keep things on topic.

Kosta

@Adam please delete all this unnecessary posts mate.
cPFence how can I change the section Powered by cpfenceapp on footer login page for traffic dashboards.
Cpfence will have it on my main pages anyway where I am describing our stack…

cPFence

Once more, please avoid dragging unrelated discussions into the cPFence sales thread.

I hope the mods will help keep this thread focused on cPFence-related topics only.

Kosta

Next version will remove this footer text.

pratik_asabe

cPFence can the html version be real-time?

cPFence

pratik_asabe

No, the HTML version refreshes every 25 seconds in the background, but you’ll need to manually reload the page to see the updated analytics. The CLI version, on the other hand, is fully real-time.

cPFence

Version 3.3.48 (6th April 2025)

Added

- Auto login support for LogSpot (WHMCS integration):

The LogSpot module now supports auto-login from WHMCS, allowing your users to access their traffic reports instantly with one click—no manual password entry required. This feature uses the website UUID as the login key. The original password stored in the file still works alongside this method.
Note: Only enable this if you're comfortable with using the UUID as a login password.

How to activate auto login:
cpfence --ui → System Settings → cPFence LogSpot Module → Enable/Disable Website ID login

Download the updated WHMCS function for the Enhance module:
https://gist.github.com/cPFence/41c32ca43ecd1423ae9ff6d12437af8a

- Extended support for alternative document roots:
LogSpot now supports websites using /httpdocs in addition to /public_html. This is especially useful for sites imported from Plesk servers.

Improved

Removed the cPFence branding link from the LogSpot login page for a fully white-labeled experience.

Fixed

Resolved a false positive in the database scanning module when the Defender plugin is active on the website.

8Dweb

cPFence Wow. thank you for the addition of /httpdocs… That was a FAST turn-around!

cPFence

8Dweb

You’re welcome. Glad you found it useful. We’ve also optimized the LogSpot module further, now it’s lighter and snappier than ever.

8Dweb

@cPFence we also forked the WHMCS function to move the webmail declaration after the domain declaration. This works for those who use mail.<userdomain>.<tld> - as we do for the few remaining webmail customers on Enhance. I figure this will break for some hosts - dependent on how they setup packages/customers in Enhance… but it works in our case.

Excerpt:
$systemUrl = Setting::getValue('SystemURL');
$domain = $params['domain'];
$webmailLink = 'https://mail.{$domain}/';
$domainIP = gethostbyname($domain);
$serviceId = $params['serviceid'];

MediaServe

cPFence Very nice! Question is: We've enabled this for one server as a trial, but I don't see any date range control, which this particular client needs for royalty calc. We're only a few days in, so perhaps with more data there will be options to filter by date?

cPFence

MediaServe

No date filter is available at the moment, but it’s coming soon. The good news is, even with large log files, performance is incredibly fast. We’re using the 300MB cap on our own servers and still getting lightning-fast results with ridiculously low log parsing times.

alenguav

Is there any possibility of having a filter for PHP forms similar to this one in cpFence?

cPFence

alenguav

You can activate WP Login CAPTCHA in WP AutoShield settings to add math CAPTCHA to registration, comment, and contact forms.

Also, enable Spam AutoShield, to help block both outgoing and incoming spam effectively across your servers.

rdbf

Very low priority..... But, with Openlitespeed 1.8.3 now supporting

[Improvement] Log HTTP/3 in access log.

I checked the cpf_logs, but everything still reads as HTTP/1.1 and HTTP/2, while the browser (Ctrl+Shift+i / Network) is showing HTTP/3 everywhere. Any idea why that would be?

cPFence

rdbf

LogSpot doesn’t modify or interfere with the content of the logs, it simply "spots" and displays whatever logs Enhance provides, as-is. We haven’t upgraded to OpenLiteSpeed 1.8.3 yet to test this behavior, but we’ll check it out once we do.

cPFence

Version 3.3.49 (9th April 2025)

Added

- .htaccess injection detection:

cPFence now monitors and warns you of any suspicious .htaccess modifications, helping you identify potential malware or redirect injections early.

- New heuristic analysis module (beta):

Our new heuristic engine detects suspicious file behavior and structures, even in unknown or modified malware samples. This feature is in beta, and currently provides email alerts only (no auto actions). Please report any false positives to help us improve it further.

- Owl WatchDog extended to cover more services:

Owl now monitors the following additional services and will auto-restart them on failure and notify you by email:

SSH
CRON
Rspamd
Postfix
Dovecot
Pure-FTP

- New server status tool:

Quickly check the health of your system and services with:
cpfence --server-status
It provides a detailed overview including hostname, resource usage, IPv4/IPv6, running services, and uptime—all in one clear table.

Sample output:

  +----------------------------------------+---------------+-----------------------------------------------+
  | Check                                  | Status        | Details                                       |
  +----------------------------------------+---------------+-----------------------------------------------+
  | Hostname                               | OK            | server20.test.com                             |
  | Enhance Control Panel                  | OK            | Enhance Version 12.1.0                        |
  | Operating System                       | OK            | Ubuntu 24.04.2 LTS                            |
  | Kernel Version                         | OK            | 6.8.0-57-generic                              |
  | Server IPv4                            | OK            | 88.999.777.66                                 |
  | Server IPv6                            | OK            | 3a01:7f8:c018:646e::1                         |
  | CPU Usage                              | OK            | 31%                                           |
  | Memory Usage                           | OK            | 42%                                           |
  | Disk Usage (root)                      | OK            | 34%                                           |
  | Disk I/O (sda)                         | OK            | 0.40%                                         |
  | Inode Usage (root)                     | OK            | 17%                                           |
  | Uptime                                 | OK            | 16 hours, 58 minutes                          |
  | Load Averages                          | OK            | 0.75, 0.82, 0.84                              |
  | orchd.service                          | NOT INSTALLED | Enhance Orchd                                 |
  | appcd.service                          | ACTIVE        | Enhance Appcd v12.1.0                         |
  | pdns.service                           | ACTIVE        | PowerDNS                                      |
  | ssh.service                            | ACTIVE        | OpenSSH Daemon                                |
  | cron.service                           | ACTIVE        | Cron Scheduler                                |
  | postfix.service                        | ACTIVE        | SMTP Server                                   |
  | dovecot.service                        | ACTIVE        | IMAP/POP Mail Server                          |
  | rspamd.service                         | ACTIVE        | Spam Filtering                                |
  | pure-ftpd.service                      | ACTIVE        | FTP Server                                    |
  | mysql.service                          | ACTIVE        | Database Server                               |
  | Webserver                              | ACTIVE        | OpenLiteSpeed                                 |
  +----------------------------------------+---------------+-----------------------------------------------+

- Support access tool:

Need to share temporary access with cPFence support?

cpfence --add-support-key → Creates a temporary key valid for 6 hours to allow secure support access.

Improved

MonitorPro enhancement: now retains uptime history across cPFence upgrades to avoid duplicate alert emails.

Fixed

Resolved a false positive in the rootkit scanner related to the "bindshell" signature.

xyzulu

cPFence cpfence --server-status

If using Ansible and cPFence, ansible all -a "cpfence --server-status" will provide you some excellent information across all your servers

« Previous Page Next Page »