cPGuard integration work in progress

MediaServe

@Adam has helped me much with Enhance API advice. (Is there a better way to search the Swagger document?!)

I've provided the cPGuard team with access to our Enhance server, details about how to get the necessary data from the API with example calls, and they're ready to start their integration work.

I started this thread to avoid adding this information to the BitNinja Integration thread, and I have a quick question that I'll try to not bug Adam with, as we have yet to contribute revenue with all the support he's been providing.

I've seen a thread that provides the OLS restart command (docker exec openlitespeed /usr/local/lsws/bin/lswsctrl restart). What's the Apache equivalent? I mean "docker restart apache" does work, but is there a more graceful command similar the OLS one?

Tried "docker exec apache /usr/local/apache2/bin/apachectl restart" and that responded with "AH00558: httpd: Could not reliably determine the server's fully qualified domain name, using 199.99.88.13. Set the 'ServerName' directive globally to suppress this message"

Might work I suppose but I figured I'd query the community.

mendozal

MediaServe That's nice. More options for Enhance users!

Does this work?

docker exec apache service apache2 restart

MediaServe

Nope, result is "apache2: unrecognized service"

I think what I'm using is probably okay, except the Apache configuration is warning about missing directives. FYI I didn't mention that the cPGuard team is looking for the best instructions for restarting Apache. Something probably used after cPGuard installation.

Adrien

MediaServe I was reading all the literature I could find online explaining the difference between Imunify 360, Bitninja and cPGuard.
Seems footprint/load is very low with cPguard.

ss88us

MediaServe You are looking for the following:

docker exec apache apachectl -k stop

docker exec apache apachectl -k start

docker exec apache apachectl -k restart

docker exec apache apachectl -k graceful this one is a graceful restart.

MediaServe

Adrien Realistically, I think all three do basically the same things, and integrating all three will be a boon to enhance!

My experience has lately been all cPGuard for a few years, and it has strengths and sometimes a few rough edges.

Strengths IMO include 1) a central portal that can see your stats in one place and configure individual servers, rather than visiting each server, and 2) the best pricing. The rough edge currently is (optional) emailing clients on a recurring configurable basis when Wordpress has anything that is out of date (core, plugins, themes and even warnings for publicly available things like wp-config.php saved to a different file extension and publicly accessible, or mysql dumps in publicly accessible http locations.) It's actually a strength, but it has trouble identifying which Wordpress is affected where there are multiples on the same account, at least with cPanel (but they're working on improving that.)

They also have great captcha protection for Wordpress to ward off bots that get through, and you can require that on customizable directories as well.

I'm sure other solutions have their own strength and weaknesses, and honestly if everything is roughly the same, the best in terms of price with revenue to support properly is the winner for me.

MediaServe

ss88us Thank you! I'll give cPGuard the "docker exec apache apachectl -k graceful" one.

prasad0889

@MediaServe Does cPGuard provide outgoing spam protection?

MediaServe

prasad0889 Not exactly. For cPanel there is an RBL that can be installed/enabled in the Exim configuration, which could play into spam filtering, but it's not something that I would imagine a selling point. It's more about blocking known bad actors, stopping further abuse with the WAF, captcha protected directories, real-time malware scanning, etc.

MediaServe

prasad0889 I neglected to mention that the RBL I was talking about is installed and managed by cPGuard. That wasn't made clear.

josedieguez

this is getting very interesting, let us know any update on the cPGuard implementation 🙂

MediaServe

Yesterday evening cPGuard estimated a two week time frame until Enhance integration. I'll post here again when I have more details or progress reports.

MediaServe

I woke up to an email announce that cPGuard installed their integration on Enhance, so I'm ready to begin testing with a client's couple of migrated websites. I'll keep you updated on the progress.

Adrien

MediaServe Thanks mate and well done!

prasad0889

@MediaServe, That's good news! Let us know how it is working!

jaysays

Great to hear. Keep posting.

josedieguez

i have migrated some servers (cpanel and DA) from IM360 to CPGuard, to try it out. and for now, i'm very happy with it.

paul-bob

Hey guys

Here we have a new update:

Hello Paulo,

Yes, everything will work on Enhance panel except the WAF because they do not support ModSecurity with Apache. The Litespeed package will support ModSec, but we are still working on its integration. All other modules will work fine with enhance panel. We can assist you to complete teh installation if you wish to test this.

Please get back to us for any further assistance.

Nilav
Product Executive
OpsShield

paul-bob

Hey @Adam any ETA to ModSecurity here?

MediaServe

Tomorrow I'll have a LiteSpeed server so the cPGuard team can integrate that as well. I think as @paul-bob said, the Enhance Apache integration is done and working. I helped them figure out the final piece of the integration Friday (website suspension via the API) and I haven't yet heard that was finished, but it probably is and I'll find out tomorrow.

Adrien

MediaServe That's excellent news! The upcoming integration with LiteSpeed is definitely something I look forward to. Thank you for keeping us informed and all the good work that will benefit all of us.

mendozal

MediaServe do you know if the litespeed integration would include openlitespeed?