Best Practices

Updated: 18 December 2023

To maintain a secure and efficient cPanel environment, consider these best practices:

General Tips

1. Strong, Unique Passwords

Ensure passwords are complex, including a mix of numbers, symbols, and both upper and lower case letters. Avoid common words and phrases.

2. Regular Software Updates

Regularly update cPanel, CMS, plugins, and scripts to patch vulnerabilities.

3. Encrypted Connections

Always use HTTPS to access your cPanel for secure, encrypted communication.

4. Consistent Data Backups

Make backups, and test them regularly to ensure they can be restored.

5. Two-Factor Authentication (2FA)

Add an extra verification layer by requiring a second form of identification.

6. Regular Monitoring and Auditing

Review access and error logs regularly for suspicious activities or unauthorized access attempts.

7. Security Awareness

Educate all users about best security practices to guard against threats like phishing and social engineering.


Don’t write down your password, memorize it. In particular, don’t write it down and leave it anywhere, and don’t place it in an unencrypted file! Use unrelated passwords for systems controlled by different organizations. Don’t give or share your password, in particular to someone claiming to be from computer support or a vendor unless you are sure they are who they say they are. Don’t let anyone watch you enter your password. Don’t enter your password on a computer you don’t trust. Use the password for a limited time and change it periodically.