All Topics | cPanel & WHM Feature Requests

Mail SNI: support "mail." and other subdomains without requiring a wildcard

Completed Alex @. ● Security ● Comments: 5 ● Reply ago by benny@cpanel.net

14 votes

Notification when an account is suspect of being compromised

Open Discussion Feature I. ● ago ● Security ● No Comments

6 votes

Vote

Login Branding

Open Discussion TinyHostingLtd ● Security ● Comments: 1 ● Reply ago by Josh F.

4 votes

Vote

A better community powered Malware protection

Open Discussion shojib ● Security ● Comments: 1 ● Reply ago by EHR

4 votes

Vote

Comodo WAF as a ModSecurity Vendor

Open Discussion pointaction ● Security ● Comments: 17 ● Reply ago by Hosted P.

46 votes

Vote

Having the option to enable or disable password age in WHM Security Center

Open Discussion Abacus D. ● ago ● Security ● No Comments

1 vote

Vote

Add Support for TLS 1.3

Completed ciao70 ● Security

140 votes

enhance scanning facilities

Open Discussion feanor ● ago ● Security ● No Comments

3 votes

Vote

Implement Content-Security-Policy header for ports 2083, 2087 and 2096 to pass CPI scans

Open Discussion Flyer ● ago ● Security ● No Comments

6 votes

Vote

"nofollow" on language buttons on cPanel and webmail login

Open Discussion Rihan ● Security ● Comments: 1 ● Reply ago by tch

4 votes

Vote

DCV (AutoSSL, Market, etc) to Act Differently based on Apache Version

Completed Marcelo P. ● Security ● Comments: 5 ● Reply ago by benny@cpanel.net

13 votes

Require SSL with option to redirect to SSL cert name or serverhostname)

Open Discussion Ivan L. ● Security ● Comments: 6 ● Reply ago by Brandin A.

10 votes

Vote

Option to allow passwords with username in them

Not Planned Shaun R. ● Security ● Comments: 1 ● Reply ago by benny@cpanel.net

2 votes

Vote

Reseller AutoSSL interface

Open Discussion Mike ● Security ● Comments: 6 ● Reply ago by benny@cpanel.net

40 votes

Vote

Fix password generation algorithm / password meter

Open Discussion Gary S. ● Security ● Comments: 13 ● Reply ago by Monarobase

38 votes

Vote

Force email password change on 1st login

Completed SitesPT ● Security ● Comments: 8 ● Reply ago by benny@cpanel.net

8 votes

Default php.ini should be correctly hardened

Completed point_and_click ● Security ● Comments: 4 ● Reply ago by cPanelJacob

3 votes

Geo Filtering added to the cpHulk Brute Force

Open Discussion Scott L. ● Security ● Comments: 2 ● Reply ago by Silent N.

13 votes

Vote

Whitelist IP Feature

Open Discussion Mike ● Security ● Comments: 1 ● Reply ago by J. M.

3 votes

Vote

Show which account/script is sending spam emails

Open Discussion kabatak ● Security ● Comments: 8 ● Reply ago by webdeve d.

13 votes

Vote

Security Advisor notifications should include process name, not just PID

Open Discussion Pete S. ● Security ● Comments: 1 ● Reply ago by Nuno

11 votes

Vote

Update ModSecurity Vendor OWASP to OWASP ModSecurity Core Rule Set (CRS) 3.1

Open Discussion Gregory B. ● Security ● Comments: 1 ● Reply ago by Max-PlotHost

18 votes

Vote

Update ModSecurity Vendor OWASP to OWASP ModSecurity Core Rule Set (CRS) 3

Completed Eric B. ● Security ● Comments: 11 ● Reply ago by benny@cpanel.net

19 votes

Clouldflare SSL working without disabling Cookie IP Validation

Not Planned Incredo S. ● Security ● Comments: 1 ● Reply ago by benny@cpanel.net

4 votes

Vote

No more passwords or password errors -- Account Key, which uses push notifications to mobile device

Open Discussion Eugene A. ● Security ● Comments: 1 ● Reply ago by TCB13

1 vote

Vote

The ability to customize the WHM & Cpanel port & url

Open Discussion Daniel K. ● ago ● Security ● No Comments

9 votes

Vote

Force SSL overall but disable for an individual domain

Open Discussion GeoffT ● Security ● Comments: 1 ● Reply ago by GeoffT

1 vote

Vote

Add/Modify Package - hourly mail limits

Open Discussion sparek-3 ● Security ● Comments: 1 ● Reply ago by hbouma

4 votes

Vote

Ability to whitelist specific files from being flagged as suspicious by ClamAV

Open Discussion spaceman ● Security ● Comments: 1 ● Reply ago by Gingerweb

4 votes

Vote

ModSecurity Vendor Load - Unique key to SecRemoteRules

Open Discussion Malware E. ● Security ● Comments: 1 ● Reply ago by Malware E.

4 votes

Vote

cPanelIDs in Marketplace configuration for Resellers

Open Discussion Ozzy S. ● ago ● Security ● No Comments

1 vote

Vote

Re-instate the option to disable gzip compression in cpsrvd

Open Discussion Amuraritei A. ● ago ● Security ● No Comments

1 vote

Vote

Stop showing other website domain names in every cpanel account

Open Discussion Web H. ● ago ● Security ● No Comments

2 votes

Vote

Captcha challenge for layer 7, or application-layer attack protection

Open Discussion jmginer ● ago ● Security ● No Comments

2 votes

Vote

Customized days to renew for the cPanel SSL provider to solve time conflict with expiry monitor

Need More Information Krysis ● ago ● Security ● No Comments

2 votes

Vote

Disable 2 Factor Authentication from certain IPs

Open Discussion Will H. ● ago ● Security ● No Comments

5 votes

Vote

Brute force detection for mysql users

Open Discussion Serg P. ● ago ● Security ● No Comments

6 votes

Vote

Allow Lets encrypt to work on older android devices after jan 2021

Already Exists Monarobase ● Security ● Comments: 1 ● Reply ago by Kenneth P.

1 vote

Vote

Per user WHM login restriction via IP

Open Discussion Webafrica ● Security ● Comments: 1 ● Reply ago by Brad S.

13 votes

Vote

Different Maximum Password Age for webmail under "Configure Security Policies"

Open Discussion Peter A. ● ago ● Security ● No Comments

4 votes

Vote

Destroy All Login Data on Login Fails

Open Discussion dave ● ago ● Security ● No Comments

1 vote

Vote

Ability to disable main FTP account when using 2FA

Open Discussion kabatak ● ago ● Security ● No Comments

6 votes

Vote

Improve Certificate Status Indication in cPanel

Open Discussion Austin L. ● ago ● Security ● No Comments

15 votes

Vote

AutoSSL: Remote DNS Challenge Validation for CDN Users

Open Discussion Jason P. ● ago ● Security ● No Comments

11 votes

Vote

Support & Interface for Linux Malware Detect (Maldet / LDM) & ClamAV

Open Discussion Greg ● ago ● Security ● No Comments

16 votes

Vote

Add "disable_functions" to MultiPHP INI Editor, Basic Mode

Open Discussion Marcelo P. ● ago ● Security ● No Comments

1 vote

Vote

Support IPv6 CIDR ranges and/or IPv6 wildcards for Security Questions, SourceIPCheck Security Policy

Open Discussion Donald H. ● ago ● Security ● No Comments

4 votes

Vote

cpHulk block county's ips

Open Discussion George P. ● ago ● Security ● No Comments

4 votes

Vote

Notify sysadmin when customer SSL Certificate near expiration, and again after expiration

Open Discussion Scott N. ● Security ● Comments: 5 ● Reply ago by Scott N.

11 votes

Vote

Remove all expired certificates from Security - TLS/SSL - Certificates (CRT)

Open Discussion NetVicious ● Security ● Comments: 1 ● Reply ago by Michael R.

4 votes

Vote