TetraHost Bangladesh

The Official Company Blog

21 Oct

How to Install and Configure CSF (ConfigServer Security & Firewall) on a Linux cPanel Server [Updated for 2025]

If you’re managing a cPanel server, ConfigServer Security & Firewall (CSF) has long been one of the most popular and trusted security tools. It provides a simple way to configure your server’s firewall (iptables) and manage login failures, port access, and intrusion attempts — all through a friendly WHM interface.

However, as of August 31, 2025, the developers of CSF have officially discontinued active support and maintenance. The good news?
They’ve released CSF as open source under the GPLv3 license, which means you can still install, use, and even modify it freely.

In this guide, we’ll walk you through the latest method to install CSF on a Linux cPanel server, configure it properly, and ensure it’s ready for production.

Important Notes Before Installation

  • CSF is no longer maintained by ConfigServer. Use it at your own discretion.
  • The latest open-source GPLv3 version is still fully functional.
  • CSF does not work with firewalld, so you must remove it before installation.
  • Always take a server snapshot or backup before modifying firewall configurations.

Step-by-Step Guide to Install CSF on cPanel Server

Step 1: Log in to your server via SSH

Use your terminal or an SSH client like PuTTY to log in as the root user.

ssh root@your-server-ip

Step 2: Go to the root directory

Change to the root directory:

cd /root

Step 3: Remove firewalld (if installed)

CSF and firewalld cannot run together. Remove firewalld with:

yum remove firewalld -y

Step 4: Download the latest open-source CSF package

The open-source version is now available on GitHub:

wget https://github.com/waytotheweb/scripts/raw/refs/heads/main/csf.tgz

Step 5: Extract the CSF files

Unpack the downloaded file:

tar -xzf csf.tgz

Then move into the extracted folder:

cd csf

Step 6: Run the installer

For cPanel servers, use the installation script:

./install.cpanel.sh

This script automatically integrates CSF with WHM and configures the essential ports.

Configure CSF from WHM

Once installation completes, log in to your WHM panel and go to:

WHM » Home » Plugins » ConfigServer Security & Firewall

From here, you can manage your firewall rules, open or close ports, and configure login failure alerts.

Verify Installation

To confirm that CSF and LFD are running properly, use these commands in SSH:

csf -v
systemctl status lfd

You should see CSF version details and that LFD (Login Failure Daemon) is active.

Why Still Use CSF in 2025?

Even though it’s discontinued, CSF remains one of the most feature-rich firewall management tools for cPanel environments. It offers:

  • IP blocking and whitelisting
  • Brute-force protection via LFD
  • Port scanning detection
  • Email alerts for suspicious activity
  • Easy WHM integration

Since it’s now open source, the community can continue to patch, improve, or fork it for future use.

Final Thoughts

While CSF may no longer receive official updates, it’s still a powerful and reliable firewall solution for cPanel servers.
If you’re looking for a free, configurable, and battle-tested security tool, installing the open-source version of CSF is still worth it — especially if you understand basic Linux server management.

However, for long-term stability, keep an eye on community forks or consider alternatives like CSF-ng (if developed), UFW, or iptables directly.

References

15 Sep

How to Safely Backup Your Website Data on cPanel

At TetraHost, we understand that your website data is important to you. Whether it’s files, emails, or databases, having a backup gives peace of mind in case something unexpected happens. That’s why we make it easy for you to download and secure your own backups, and we also maintain backups on our side for extra protection.

In this article, we’ll walk you through the different ways you can back up your website data using cPanel, and we’ll also share how we help keep your data safe.

1. Downloading a Full Backup from cPanel using Backup

The easiest way to take a complete backup of your website is through the Full Backup option in cPanel. This backup includes your website files, databases, emails, and settings.

Steps:

  1. Log in to your cPanel account.
  2. Go to Backup.
  3. Under Full Backup text click on Download a Full Account Backup.
  4. Here under Generate a Full Backup text select Backup Destination as Home Directory Backup which should be selected already and under Email Address text box give your email address where a confirmation email will be sent once the server completes backup generation of your account.
  5. Use Generate Backup text box to start the backup generation process in backup.

Note: A full backup cannot be restored directly from cPanel by the user, but it’s very useful to keep as a safety copy. It will be stored under your home directory(/home/username) which you can access and download from File Manager. If you ever need to restore, our support team can help.

2. Downloading a Full Backup from cPanel using Backup Wizard

The easiest way to take a complete backup of your website is through the Full Backup option in cPanel. This backup includes your website files, databases, emails, and settings.

Steps:

  1. Log in to your cPanel account.
  2. Go to Backup or Backup Wizard.
  3. Click on Download a Full Website Backup.
  4. Save the file to your computer or external storage.

Note: A full backup cannot be restored directly from cPanel by the user, but it’s very useful to keep as a safety copy. If you ever need to restore, our support team can help.

3. Manually Backing Up Website Files

If you only want your web content (for example, your HTML, PHP, or WordPress files), you can use the File Manager in cPanel.

Steps:

  1. Open File Manager in cPanel.
  2. Select your website folder (usually public_html).
  3. Use the Compress option to zip the files.
  4. Download the zipped file to your device.

This method is quick if you want to keep a copy of your website files only.

4. Backing Up Databases with phpMyAdmin

Your website databases (for example, WordPress or other CMS data) can be backed up separately.

Steps:

  1. Open phpMyAdmin from your cPanel.
  2. Select the database you want to back up.
  3. Click Export ? choose Quick and SQL format.
  4. Download the file to your device.

This ensures you have a safe copy of your website’s data and content stored in the database.

5. Email Backups

If you use cPanel emails, you can back them up by:

  • Downloading mail folders from File Manager (inside the “mail” directory), or
  • Setting up your email account in an email client (like Outlook or Thunderbird), which downloads and stores a copy of your emails locally.

6. Our Automatic Backups with R1Soft

Along with the options above, we also maintain backups of customer data using R1Soft backup software. This allows us to restore your data in case of accidental deletion, corruption, or other issues. Our team is always here to assist you if you ever need help with recovery.

7. Other Good Practices for Backup

  • External Storage: Keep an extra copy of your backups in an external hard drive or cloud storage service (like Google Drive, Dropbox, or OneDrive).
  • Regular Schedule: Try to take backups regularly—especially before making big updates or changes to your site.
  • Test Your Backups: Occasionally restore a backup on a test environment to make sure everything works properly.

Final Thoughts

Your data is safe with us, but it’s always a good idea to keep your own copies too. With cPanel, you have easy tools to download and manage your backups anytime. And remember, our team is always here to help if you need support.

At TetraHost, your website’s safety and security are our priority.

07 Sep

Upcoming Domain Price Adjustment – Effective October 4, 2025

Upcoming Domain Price Adjustment

Effective October 4, 2025

We would like to inform you that, due to global market changes and rising operational costs, our domain registration, renewal, transfer, and restore prices will be adjusted.

The new pricing will take effect on October 4, 2025.

Please note: The registry has not yet confirmed the final price. As soon as we get to know the price, you will be notified immediately.

We remain committed to providing reliable services at competitive rates and appreciate your continued trust in TetraHost Bangladesh.

CONTACT SPPORT

If you have any questions, feel free to reply to this email or open a support ticket.

12 Aug

How to Enable Ping (ICMP) on Windows Server 2019

By default, Windows Server 2019 blocks ICMP (ping) requests through the Windows Firewall. This means if someone tries to ping your server from another machine, they’ll get no response — even if the server is online.

Enabling ping can be useful for network troubleshooting, monitoring, or confirming that a server is reachable.
In this guide, we’ll show you how to allow ping (ICMP) traffic in Windows Server 2019 using Windows Defender Firewall.

Step 1: Open Windows Defender Firewall with Advanced Security

  1. Log in to your Windows Server 2019 as an administrator.
  2. Press the Windows key and type firewall in the search box.
  3. Click Windows Defender Firewall with Advanced Security from the search results.

Step 2: Go to Inbound Rules

  1. In the left-hand menu, click Inbound Rules.
  2. You’ll now see a list of predefined firewall rules.

Step 3: Enable the ICMP (Ping) Rule

  1. Scroll through the list and find the rule named:
    File and Printer Sharing (Echo Request – ICMPv4-In).
    • This rule allows IPv4 ping requests.
  2. Right-click the rule and select Enable Rule.

If you also want to allow IPv6 ping requests, enable the rule:
File and Printer Sharing (Echo Request – ICMPv6-In).

Step 4: Test the Ping

  1. Open Command Prompt on another computer.
  2. Type: ping IP-ADDRESS-OF-THE-SERVER (example: ping 10.10.10.10)
  3. Press Enter.
    • If the firewall rule is enabled, you’ll see Reply from… messages.
    • If the rule is disabled, you’ll get Request timed out.

You have successfully enabled ping (ICMP) on your Windows Server 2019.
Remember, while ping is useful for diagnostics, enabling it can expose your server to unnecessary network probes. Consider allowing ping only from trusted IP addresses for security.

12 Aug

How to Enable Remote Desktop (RDP) on Windows Server 2019

Remote Desktop Protocol (RDP) allows you to connect to your Windows Server 2019 from another device. This is useful for server management, remote assistance, or accessing files and applications without being physically present at the server.

By default, RDP is disabled in Windows Server 2019 for security reasons. This guide will show you how to enable it and give users the necessary permissions.

Step 1: Enable Remote Desktop in Server Manager

  1. Log in to the server using an account with administrator rights.
  2. Open Server Manager.
    • You can find it in the Start menu, or it may open automatically after login.
  3. In the left panel, click “Local Server”.
  4. On the right, find the Remote Desktop section and click the text that says “Disabled”.
  5. In the System Properties window:
    • Select “Allow remote connections to this computer”.
    • (Optional) Click “Select Users…” to add other accounts that can connect via RDP.
  6. A warning will appear saying this will enable the necessary firewall rules. Click OK.
  7. Close the window and refresh Server Manager — the Remote Desktop status should now show Enabled.

Step 2: Allow RDP Through Windows Firewall (if needed)

In most cases, enabling Remote Desktop in Server Manager will automatically update the firewall rules.
If you still can’t connect, check the firewall settings:

  1. Open Windows Defender Firewall from the Start menu.
  2. Click Allow an app or feature through Windows Defender Firewall.
  3. Ensure Remote Desktop is allowed for the appropriate network profiles.

Step 3: Grant User Permissions for RDP

By default, members of the Administrators group can connect using RDP. If you want to allow other users:

  1. Press Windows + R, type compmgmt.msc, and press Enter to open Computer Management.
  2. Go to Local Users and Groups ? Users.
  3. Double-click the user account you want to allow.
  4. In the Member Of tab, add the user to the Remote Desktop Users group.
    (This is the standard method; the Dial-in tab is for VPN access, not RDP.)
  5. Click OK to save.

Step 4: Connect to the Server via RDP

Now that RDP is enabled and permissions are set:

  1. From another computer, open the Remote Desktop Connection app (mstsc).
  2. Enter the IP address or hostname of your Windows Server 2019.
  3. Log in using the account you configured.

? You’ve successfully enabled RDP on Windows Server 2019.
For better security, consider:

  • Changing the default RDP port.
  • Limiting access to trusted IP addresses via firewall.
  • Using strong passwords and enabling Network Level Authentication (NLA).

26 Apr

How to Check PHP Version and Settings on a cPanel Server

Want to know which PHP version your site is using or check settings like memory limit, upload size, etc.? Here’s a quick way to do it using a phpinfo() file.

Step 1: Create a phpinfo.php File

  • Log in to cPanel and go to File Manager.
  • Inside public_html or go to the desired folder, create a new file named phpinfo.php.
  • Edit it and add:
<?php phpinfo(); ?>

Step 2: View It in Your Browser

Visit https://yourdomain.com/phpinfo.php — this shows:

  • PHP version
  • Active php.ini settings
  • Installed PHP extensions

Step 3: Delete the File

For security, delete phpinfo.php after you’re done.

26 Jan

Important Update: Domain Pricing Changes Effective 1st February 2025

We would like to inform you of an upcoming change in the pricing for a few domain extensions. Starting from 1st February 2025, the prices for registration, transfer, and renewal will be updated as follows:

Extension NameRegistration (BDT)Transfer (BDT)Renewal (BDT)
.COM150015001600
.NET150015001600
.ORG150015001600

Key Details:

  • New Domain Registrations: The updated pricing will apply immediately to all new domain registrations.
  • Domain Renewals: For existing domains, the new renewal pricing will come into effect from 1st February 2025.

We understand that pricing changes can be inconvenient, and we are committed to providing you with the best value and support for your domain needs. If you have any questions or need assistance with renewing your domains ahead of the price change, please don’t hesitate to contact us.

Thank you for your understanding and continued trust in our services.

15 Dec

Server Issue – hera.ihostman.com

Server Name: hera.ihostman.com
IP Address: 23.29.115.2

Default Nameservers:

  • ns5.ihostman.com
  • ns6.ihostman.com

Dear Valued Customer,

If your accounts are hosted on this server, please be informed that the web server is currently inaccessible.

On December 15, 2024, around 11:00 AM, we noticed the server became unreachable. Upon investigation, we found that the server could not boot into the disk. After resolving the boot issue and restarting the web server, we observed that the server was operating extremely slowly.

Further investigation revealed that one of the NVMe drives has a disk failure and is no longer operational. Despite exploring several alternatives, none were successful. Therefore, we have decided to migrate the data to a new server.

We have already procured new server hardware and initiated the operating system setup. Once the setup is complete, we will install the required software and begin the data migration process.

Key Points to Note:

  1. No Data Loss Expected: All data will be safely migrated to the new server.
  2. No IP or DNS Changes: The IP address remains unchanged, eliminating the need for DNS propagation.
  3. Estimated Completion Time: We aim to complete the migration process within the next 48 hours.
  4. No action is required from Customer end. We will complete the process and let you know.

Once the migration is complete, all services should be operational as they were prior to this incident.

Please rest assured that our team is working around the clock to resolve this issue as quickly as possible.

We will provide updates as soon as there is more progress. For any questions or concerns, feel free to contact us via:

We sincerely apologize for the inconvenience caused and appreciate your understanding.

— TetraHost Support Team

10 Dec

Important Announcement: cPanel Price Adjustments for 2025

As we approach the new year, we want to keep you informed about an important update regarding cPanel licensing costs. Starting January 1, 2025, cPanel will adjust its prices for the sixth consecutive year. This change affects hosting providers like TetraHost and, in turn, necessitates updates to our pricing.

We understand price increases are never welcome news, but we’re committed to transparency and doing everything possible to minimize the impact on your hosting plans. Let’s walk through what these changes mean for you and how we can help you adapt smoothly.

What’s Changing?

Here’s how the cPanel pricing update will affect TetraHost customers:

Shared Hosting Customers

Good news: No changes! Your pricing remains the same.

Reseller Hosting Customers

  • 40 BDT per month per cPanel account or
  • 460 BDT per year per cPanel account.

VPS and Dedicated Server Customers

If you’re on a VPS or Dedicated server with cPanel License:

  • Contact us for your updated cPanel license price at support@tetrahostbd.com or call +8801913377417 | +8801711825320.
  • Looking for alternatives? We also support other control panels and can guide you through a switch to reduce costs while maintaining performance.

Why Does cPanel Keep Raising Prices?

Over the past several years, cPanel has shifted its pricing model to align with the number of cPanel accounts being managed. This means higher prices for hosting providers, especially those with account-heavy setups. While this strategy is aimed at improving infrastructure and services, it inevitably affects hosting providers and customers alike.

At TetraHost, we’ve done our best to absorb these increases over time. However, the cumulative impact means adjustments are now unavoidable to sustain the quality of services you rely on.

How We’re Supporting You

We know that any price change can be disruptive, which is why we’re here to help you every step of the way:

  1. Advance Notifications: We will notify all affected customers well before the changes take effect, ensuring you have time to plan accordingly.
  2. Flexible Options: Need fewer cPanel accounts or exploring alternative solutions? We can help you streamline your plan or transition to a different control panel.
  3. Customer Support: Our support team is ready to answer your questions or assist with any adjustments to your hosting setup.

Your Next Steps

To ensure you’re prepared for the new pricing, here’s what you can do:

  • Reseller Hosting Customers: Review your account usage and let us know if adjustments are needed.
  • VPS and Dedicated Server Customers: Reach out to us for detailed pricing or to discuss alternative control panel options.
  • General Inquiries: Have concerns or questions? We’re here to help at support@tetrahostbd.com or +8801913377417 | +8801711825320.

Together, We’ll Keep Your Hosting Smooth

While price changes can be challenging, our commitment to delivering high-quality hosting services remains unwavering. We’re confident we can help you navigate this adjustment with minimal impact on your business.

Thank you for trusting TetraHost as your hosting provider. We’re grateful for your partnership and look forward to supporting your growth in 2025 and beyond.

14 Nov

Send Emails the Secure Way: A Guide to SMTP Authentication

In today’s web hosting environment, email functionality is essential for communication, whether for notifications, user verification, or marketing. However, to maintain security and reliability, we have disabled the native php mail() function on our hosting servers. This decision was made to enhance security, reduce spam, and ensure better deliverability of emails.

Why Is the PHP Mail Function Disabled?

  1. Security Concerns: The php mail() function is often exploited by malicious users or scripts to send spam or phishing emails. These activities can damage the reputation of our hosting servers and lead to blacklisting by major email providers.
  2. Lack of Authentication: The php mail() function does not inherently support authentication, making it easier for emails to be spoofed. This can compromise trust in your emails and affect user engagement.
  3. Poor Deliverability: Emails sent using the php mail() function are more likely to end up in spam folders or be outright rejected by receiving servers due to lack of proper authentication headers.

To address these issues, we recommend using SMTP (Simple Mail Transfer Protocol) for sending emails from scripts. SMTP supports authentication and allows you to send emails through a secure, authenticated channel, ensuring that your emails are delivered reliably.

Benefits of Using SMTP Authentication

  • Enhanced Security: SMTP requires authentication before sending emails, reducing the risk of unauthorized use and spam.
  • Better Deliverability: Emails sent using authenticated SMTP are more trusted by receiving servers, improving their chances of landing in the inbox.
  • Traceability: SMTP provides better logging and tracking options, making it easier to troubleshoot email delivery issues.

Example of an Email Script Using SMTP Authentication

Here’s a simple PHP script that uses the PHPMailer library to send an email via SMTP:

<?php
use PHPMailer\PHPMailer\PHPMailer;
use PHPMailer\PHPMailer\Exception;

require 'path/t1o/PHPMailer/src/Exception.php';
require 'path/to/PHPMailer/src/PHPMailer.php';
require 'path/to/PHPMailer/src/SMTP.php';

// Create a new PHPMailer instance
$mail = new PHPMailer(true);

try {
    // Server settings
    $mail->isSMTP();
    $mail->Host = 'locallhost'; // Set your SMTP server
    $mail->SMTPAuth = true;
    $mail->Username = 'your-email@domain.com'; // SMTP username
    $mail->Password = 'your-password'; // SMTP password
    $mail->SMTPSecure = PHPMailer::ENCRYPTION_STARTTLS; // Enable TLS encryption
    $mail->Port = 587; // TCP port to connect to

    // Recipients
    $mail->setFrom('from@domain.com', 'Mailer');
    $mail->addAddress('recipient@domain', 'Recipient Name');

    // Content
    $mail->isHTML(true);
    $mail->Subject = 'Test Email';
    $mail->Body    = 'This is a test email sent using SMTP authentication.';

    // Send the email
    $mail->send();
    echo 'Message has been sent';
} catch (Exception $e) {
    echo "Message could not be sent. Mailer Error: {$mail->ErrorInfo}";
}
?>

Users can download the PHPMailer library from the following sources:

  1. Composer (Recommended):
    • Run the following command in the terminal to install PHPMailer using Composer:
      composer require phpmailer/phpmailer
  2. GitHub:
    • Visit the PHPMailer GitHub repository to download the latest release as a ZIP file.
    • Extract the files and include them in your project.
  3. Official PHPMailer Website:

Steps to Implement SMTP in Your Script

  1. Configure SMTP settings: Update the SMTP host, username, password, and port as per your server’s configuration.
  2. Secure Your Credentials: Always store your SMTP credentials securely, using environment variables or secure storage practices.

By using SMTP authentication, you help maintain the security and deliverability of your emails. This practice ensures that your emails reach your recipients without issue and preserves the reputation of our hosting servers.