General

Navigation:  Imunify360 User Interface > Settings >

General

Previous pageReturn to chapter overviewNext page

Go to Imunify360 → Settings → General. The following sections are available:

 

Installation

DoS Protection

Auto White List

Incidents Logging

Error Reporting

 

Installation

 

Here you can install and uninstall the following components:

HardenedPHP

Nginx CAPTCHA

Invisible Captcha

KernelCare

 

SettingsGeneralInstallation

 

 

HardenedPHP

 

To install or uninstall HardenedPHP click on a button related. Please find additional information about HardenedPHP in this article.

During HardenedPHP installation process the installation log will appear and will update automatically.

 

Note. Hardened PHP is free on the servers with Imunify360 installed.

 

kc_install_log

Nginx CAPTCHA

 

Overview

 

This feature allows administrator to use Nginx server for returning CAPTCHA page as a set of static assets. With Nginx, CAPTCHA works faster and administrator has an ability to add whitelisted domains via command line interface.

It is possible to enable Nginx CAPTCHA feature via Imunify360 user interface (UI) and via command line interface (CLI).

 

Requirements

 

Nginx CAPTCHA is available in Imunify360 version 2.6.0 and later.

mod_remoteip module is required;

For cPanel EasyApache4 server the mod_remoteip module is installed automatically during Nginx CAPTCHA installation

For other hosting panels or non-panel server the mod_remoteip module has to be installed before Nginx CAPTCHA activation by appropriate control panel means.

 

How to install Nginx CAPTCHA

 

Go to Imunify360 → Settings → General → Installation → Nginx CAPTCHA and click on Install Nginx CAPTCHA button. Confirm the installation in the pop-up.

 

NginxCaptchaEnable

 

How to check if Nginx CAPTCHA is currently installed

 

Go to Imunify360 → Settings → General →Installation → Nginx CAPTCHA. The red Remove Nginx CAPTCHA button means that Nginx CAPTCHA is enabled.

 

NginxCaptchaIsEnabled

 

 

How to uninstall Nginx CAPTCHA

 

Go to Imunify360 → Settings → General → Installation → Nginx CAPTCHA and click on Remove Nginx CAPTCHA button. Confirm the action in the pop-up.

 

RemoveNginxCaptcha

 

 

Invisible Captcha

 

To install or uninstall Nginx Captcha click on a button related. Invisible Captcha automatically determines if a user is human. The system falls back to captcha solving if the algorithm determines that a user may not be human. Please find more details here.

 

KernelCare

 

To install or uninstall KernelCare click on a button related. Please find additional information about Hardened PHP here.

Note. KernelCare is free on the servers with Imunify360 installed.

 

Click Save changes button on the bottom of the section to save changes.

 

DoS Protection

 

DoS Protection section allows to enable or disable DoS protection. Tick checkbox Enable Dos Protection.

It is possible to configure how Imunify360 will behave:

 

Max Connections - allows to setup the number of simultaneous connections allowed before IP will be blocked.

Check delay - allows to setup period in seconds between each DoS detection system will be activated and will check a server for DoS attack.

 

SettingsGeneralDoSProtection

 

Click Save changes button on the bottom of the section to save changes.

 

Auto White List

 

Auto White List section allows to automatically add admin IP to the White List each time when he logs in to hosting panel and enters Imunify360 user interface.

In Timeout field enter the number of minutes - the IP will be removed from the white list automatically after this time.

Note 0 means adding IP to the White List permanently.

 

SettingsGeneralAutoWhiteList

Click Save changes button on the bottom of the section to save changes.

 

Incidents Logging

 

In this section it is possible to control what kind of incidents will be shown in the Incidents page.

Move the slider to change your preferences.

 

SettingsGeneralIncidentsLogging

 

There are 15 available levels related to OSSEC and ModSecurity severity levels:

 

Log level

ModSecurity

OSSEC

1

7 - DEBUG

01 - None

2

6 - INFO

02 - System low priority notification

3

5 - NOTICE

03 - Successful/Authorized events

4

4 - WARNING

04 - System low priority error

5

4 - WARNING

05 - User generated error

6

3 - ERROR

06 - Low relevance attack

7

3 - ERROR

07 - “Bad word” matching.

8

3 - ERROR

08 - First time seen

9

3 - ERROR

09 - Error from invalid source

10

3 - ERROR

10 - Multiple user generated errors

11

3 - ERROR

11 - Integrity checking warning

12

2 - CRITICAL

12 - High importancy event

13

2 - CRITICAL

13 - Unusual error (high importance)

14

1 - ALERT

14 - High importance security event.

15

0 - EMERGENCY

15 - Severe attack

 

Autocleanup configuration allows to keep the Incidents page clean by default. The possible settings are as follow:

 

Keep incidents for the last days - set the number of days Imunify360 will keep the incidents.

Keep maximum incidents count - set maximum quantity of the incidents to keep on the server.

Auto-refresh time for Incidents page - set Incidents page auto-refresh time in seconds.

 

Click Save changes button on the bottom of the section to save changes.

 

Error Reporting

 

Tick Enable Sentry error reporting checkbox to send reports to Imunify360 error reports server.

SettingsGeneralErrorReporting

 

Click Save changes button on the bottom of the section to save changes.