Hi, I'd like to suggest a new feature to server owner's security, to block other domains visibility from whois services. at the moment, anyone can go to any whois service (i.e. http://reverseip.domaintools.com) and by typing domain name, or the IP address can check what other domains are hosted on this server. i think, to privacy of users and server owners, this is a lack. it may be just an additional feature, but i'm sure people would love to see this as an option to disable this from public view.

It would be nice if we could have a Force SSL option from the control panel for wordpress. Then you would not have to install a ssl plugin or add rules to HTACCESS

Please consider allowing us to choose Server access to specific countries at the Server Level. If our WP sites or other applications (even our clients) are selling only within the US, why should we not block access to all other countries trying to access the server. There are so many daily hack attempts from countries outside the US, but even if this were not the case, allowing the user to manage Country Access (perhaps by blocking IP ranges) would greatly reduce the effect of DDOS attacks and also reduce server load from unrelated or unnecessary website visits. Thanks!

Don't rely on cloudflare

As an agency hosting a magnitude of customers through Cloudways we would like to see the ability to get Cloudways Bot alerts and email alerts for the following:

• Cloudways Login


• SSH Login (IP/Location etc)


• SFTP Login


• Changes to application/server configiration

It'll be nice that you enable the restore of single files/directories or just the database not forcibly the whole thing.

be able to upgrade or downgrade php versions per app, that overrides server default

The shellinabox service that runs on port 4200 is not secure enough, for a number of reasons:
* it accepts non-TLS traffic
* no multifactor authentication
* no battle-tested frontend webserver like nginx before it

Instead of fixing all of these, perhaps just allow to disable this service like you allow for other services.

Our different colleagues need sign in cloudways frequently, so we suggest if can close the different IP verify

I would suggest that ips be blocked automatically by Cloudways when they were hitting on the site of yours continuously

ImunifyAV is free and nowadays, almost pre-install by default for many hosting companies. You can easily check if your files are infected by malwares. Please add it to Cloudways

After enabling SSL in my sites, I run multiple tools to scan for vulnerabilities and imisconfigurations. Every one of them is telling me that those protocols are insecure, deprecated and should be disabled. I asked support to do it server wide, but they said it can only be done manually on app basis. To me this is unacceptable, since this should be approached from a server perspective as a whole.

Please support TLS 1.3 since it's faster and more secure. Chrome 70 and Firefox 63 officialy support it now.

https://www.ietf.org/blog/tls13/

There are probably many needed enhancements to the firewall. One that would be especially helpful would be to block traffic that doesn't originate through the CDN.

For example, with Cloudflare, hackers can sometimes use historical dns records to discover your server's origin IP address. They can then circumvent Cloudflare's ddos and firewall features.

An option in the Cloudways firewall to only accept traffic through the CDN would eliminate this whole class of vulnerabilities.

I made contact via suppot chat and ask if it was possible to install GoAccess on my server for a visual and accurate log view.
Since it was not possible all i can do is suggest to make a section on server panel to analyse server logs and have a clear vision of traffic and load.

Gabriel G.

For those with 2FA, allow someone to whitelist their work ip address for XX days, so that 2FA is only required when time expires or access is from a new ip.

... ie block access to Russian IP addresses.

even better if we could choose countries to block rather than having to input entire IP ranges