One click forced HTTPS and better Imunify360 integration along a few updates in this version of cPanel.
One-Click HTTPS Redirection of Website has been added to the “Domains”-interface. If you have a valid SSL, you can now enable the force of HTTPS redirection by one click (at the moment, this only works for your main domain and not add-on domains)
Password Strength Algorithm has been improved in both cPanel and WHM (for VPS-users)
Protection has been increased with better integration of the Imunify360 application (which we have been using since 2017).
Additional new things is that SpamBox will now be on by default on all new accounts aswell as a few bug fixes and small corrections around the cPanel Email functions as mailbox creation and adding and editing autoresponders.
All our web hosting packages have daily backups included totally free 30 days back in time. See our guide for this here on how to restore.
We always recommend that our customers set up backups on their installations as well. Below are some methods and plugins that can run a manual or scheduled automatic backup of your WordPress installation.
Why Backup WordPress?
Many people often think on backup, but rarely do anything about this and have to learn it on the hard way. Therefore, it can be smart to always have the habit of setting up backup from the start of each website.
There are many threats on the internet that will continue to attack and try to find holes in your WP installation. Often it’s one of the reasons below that makes it important to make backup:
An update of the plugin or template fails and crashes the site
Fault from the user(s) due to negligence
Virus and malware inserted by hackers
How often should one backup?
It depends entirely on whether the website is updated regularly with content or not. If a website is updated daily, backup should also be performed daily. If content is updated a couple of times a year, monthly backup will suffice.
For major updates of plugins and templates, we always recommend taking a manual backup before the updates are performed.
Which backup solution should I choose?
There are many good solutions and which one fits you and your WordPress installation will vary. So it might be good to test some to see which ones work well and is not suited to your WordPress website.
This is the most known and most commonly used backup plugin for WordPress. It is used by more than 2 million installations.
We tested UpdraftsPlus and set up monthly backups for Google Drive. The WordPress installation is 85MB in size on the server. After backup to Google Drive, it uses about 13MB as backup files. Recovery also worked fine without any error messages and went smoothly.
It is quite possible to upgrade to the Pro version of UpdraftPlus for more features and capabilities, but most of our customers will do well with the free version. Overview of the free version and the Pro version can be found here.
Slightly less known plugin for backup, but we have tested it and many of our customers are using it.
After a local backup, the installation of 85MB was compressed to 6.13MB in one backup file. We tested recovery and it was fast and without error messages. In addition, it is simple and intuitive so it is easy to understand for most people.
The free version only gives access to external storage to Dropbox. If you want Google Drive, OneDrive and the like, you need to upgrade to the Platinum version.
Softaculous in cPanel
In cPanel we have an auto installation of scripts such as WordPress etc. Softaculous has developed several tools that make it easier for our users. Some worth mentioning are automatic updates of plugins, templates and WP itself. In addition, there are functions such as cloning, staging and backup.
We have created a guide on how to backup WordPress inside Softaculous here. It is possible to select the destination on the backup to: local (webserver), Google Drive, Dropbox, FTP, FTPS and SFTP.
The advantage of this solution is that it is a free solution for all our customers. In addition, some of our consultants will have better experience and can help if problems arise.
In this version it’s mostly enhancements, security and bug fixes. The “Email Authentication” have been changed to “Email Deliverability” and you will find everything related to DKIM, SPF and PTR-records here aswell as a scanner which checks if your settings is valid, smart to use to avoid spam-checks.
SpamAssassin have been updated with alot of renewed code, resulting in a up to 60% faster handling of the spam checks for incoming e-mail, giving you a smoother delivery and work day.
“Email Accounts” and other sections have also been updated to meet the responsive requirements for your phone and tablets. It’s easier to navigate on smaller devices.
We have started handling any malicious code found on your web hosting account faster and better while also warning you by email. The system is gradually being used on more and more servers and will soon cover all web hosting servers. When the system is in use on all servers you will get a warning within minutes if something is found on any of your accounts.
Why are we doing this?
Malicious code represent a risk to all clients on a server as well as other users online. Hackers can do any of the following with malicious code:
Extract all data you have stored in the account/website or insert code to continually have access to your data without you or your clients knowing about it.
Send spam or phising emails (which will blacklist the IP addresses of the server and result in email delivery problems for all users on the server).
Attack other servers online/your visitors to spread virus/malware or participate in DDoS attacks.
Run code to overload the server to impact yours and other websites on the server.
When we find mailcious files we will follow these steps (where next step is only performed of the previous failed):
Check backup for clean file and automatically restore.
Clean file for mailcious code.
Put file in quarantine.
Put in other words; We try to do the least invasive to your website first and use the more drastic actions only when needed. Due to the risk malicious code represents we have to go to these lengths to keep you, your visitors and the Internet as a whole safe.
What system are you using?
The system we use is called Imunify360 and is provided by CloudLinux (who also provide us with the OS we use on all our web hosting servers). We have been using Imunify360 since CloudLinux launched the system in the beginning of 2017 and have been working together on how it should work since. We finally feel the system is mature enough to use more actively and integrated with our own systems. That is why we start handling these files now.
Imunify360 does a lot more than just finding malicious code in files. Among other it:
Stops attacks on your website with a web application firewall (WAF).
Stops brute force attacks (attempts to find out your password) on services such as SSH, IMAP and more.
Patches software on the server which has known vulnerabilities such as the kernel (without having to reboot the server).
Stops processes running malicious code while also tracking down the orgin of the attack in the logs.
Finds blacklisted domain names.
Imunify360 is in other words an important part of the security of our web hosting servers, and will gradually become more important as the software evolves.
Where can I see the files that have been found?
You have full access to the files and log in the control panel (cPanel) as shown in the guide Malware scanner in Imunify360. You will also be able to restore files from quarantine and white list files identified as malicious when they should not have been (false positive).
Some files mentioned in the emails we send might have been found a long time ago. We could have chosen not to report these, but we do in case they might be important for you. In such old incidents it might also be that the files mentioned are not in your log as Imunify360 did not log these in the same way as they do now.
What should I do if files are found on my web hosting account?
You should first check if your website is working as it should. If the files have been restored from backup or cleaned it should not be necessary to do anything. If they are put in quarantine or deleted you should check if the website solution you use have that file and if it contains malicious code. Ask the provider of the solution or us if you are in doubt.
Back in 2016 we partnered with Symantec (now Digicert) to deliver free SSL certificates to our customers. AutoSSL, cPanel`s solution for free SSL certificates, was also recently launched at the time. However we chose to work with Symantec instead as we believed their solution would be best for our customers.
The two solutions differed in that Symantec`s solution envisioned that you start with a free SSL certificate and add extra functionality as you grow. In other words – the SSL certificate is tailored to your needs. The AutoSSL solution had a very different strategy where the goal was only to deliver free SSL certificates for domains hosted on cPanel. However, at that time AutoSSL was not very well integrated into cPanel and there were issues with the solution.
Why free SSL certificates with AutoSSL
Symantec did unfortunately never live up to what they envisioned and what we envisioned for our customers. There have barely been changes since we started working together. Meanwhile AutoSSL has continually improved in terms of usability and integration in cPanel. As a result of that – the sooner the better – we had to acknowledge that we chose wrong solution back in 2016. We have now discontinued working with Symantec to deliver free SSL certificates and we have already made AutoSSL available to all our customers on all web hosting packages. The last remains of free SSL from Symantec will be removed from our website in a matter of days.
Advantages with AutoSSL
The advantages for you with the new solution is that:
All (sub) domains on the web hosting account will be covered instead of just a single (sub) domain
The certificates are issued/renewed automatically instead of you having to manually issue/renew them on our website
Parked domains is also covered by free SSL certificates now. This is particulary handy for those using the 1-page website builder on their domain name.
The forwarding package is also covered by free SSL certificates now
If you forget to renew a SSL certificate it will be automatically replaced by a free SSL certificate (so that you avoid having an error on your website for all visitors)
You will get free SSL certificate also for mail.yourdomain.com (where yourdomain.com is your domain name) and will be able to setup your email client with SSL using the hostname mail.yourdomain.com instead of cpanelX.proisp.no (where X represents the server number)
Other useful addresses such as webmail.yourdomain.com and cpanel.yourdomain.com can be accessed with https without any warnings as they will also be covered.
You might ask yourself if there is any disadvantages with the new solution when you see the list of advantages. Yes, there is. We don’t get to show you the advantages paid SSL certificates can do for you beyond what the encryption only free SSL certificates delivers. You also don’t get to setup your own SSL certificate specifically tailored to you like Symantec envisioned. But, fear not 🙂 We will eventually add tips about paid SSL where suitable based on analysis of your needs. For example during diagnose of your web hosting – in time.
What about you who already have SSL from Symantec?
If you have:
Only free SSL certificate this will be automatically replaced when it expires.
Free SSL certificate with site seal we will replace this with a PositiveSSL certificate at the same price as your site seal. You will in other words get a paid certificate with 30% discount. The disadvantage is that you have to change site seal, but if you need help to do that we are more than happy to assist.
Free SSL certificate with wildcard (Basic SSL Plus) we will replace this with a PositiveSSL wildcard certificate at the same price. You will in other words get a paid certificate with discount.
How often are free SSL certificates issued?
The new solution issues/renews SSL certificates once per night for all (sub) domains on all web hosting packages that doesn’t already have SSL certificates or have certificates that are about to expire. You can follow the guide “Install free SSL certificate with AutoSSL” if you need to issue a free SSL certificate before it is issued automatically.
Feel free to contact us if you have any questions or comments regarding the change 🙂
We’ve been using R1soft backup as backup solution for all our services since 2007. The solution worked well for us initially. Much was promised in terms of upcoming new features for our clients. What was promised was unfortunately never delivered no matter how many times we pointed this out.
In addition to the fact that the product has not developed significantly over the years, we’ve also experienced an increasing number of errors with the solution. Anyone can have errors, but for us the amount became larger than what we considered acceptable. Every second counts when we need to restore from backup and having to deal with errors in the middle of a disaster recovery can significantly delay when we are back to normal operations.
Choosing new backup solution
In the past year, we have tested many backup solutions to find the one that provides the best user experience and functionality for our customers. At the same time, it has also been important that the performance must be at least as good as before. Acronis’ backup solution differed significantly from the other solutions and became the natural choice, although the solution is 3 times as expensive for us as our previous solution. Don’t worry – you won’t have to pay more. There is a saying “You get what you pay for …” and it seems to be the case here 🙂
Acronis delivers solutions to more than 5 million end users and 500 000 businesses in more than 150 countries worldwide. They have won numerous awards for their solutions since its inception in 2003.
Here are some of the advantages compared to R1soft backup:
Faster backup restore (testing was up to 10 times faster)
It is now possible to restore email addresses, forwarding etc. (which is then correctly set up on the server)
Imunify360 (security software on our servers) will automatically replace files that are infected by malware from backup if there are uninfected files there
When logging in via cPanel you do not have to enter your username and password as you sometimes had to before
Improved logging so you can see what’s restored and when it’s finished
Generally less errors during restore operations
As of April 15, all web hosting accounts will be covered by Acronis backup. Unfortunately, in the transition there will be smaller backup entries available via cPanel. If you need older backups, please contact support so we can restore this for you during this period. This is not ideal for either you or us, but we hope for your understanding in our efforts to improve our service to you. We apologize in advance for the inconveniences it causes for customers who want to restore from older backups.
The transition to Acronis will also enable us to offer you more related solutions. We will publish more information about this as it is launched.
Every customer would like to see their support ticket resolved as fast as possible. When contacting our support team you should include as much relevant information as possible. By doing this our support team will be able to solve your issue and give you a reply faster.
We offer VIP support for all Pro Premium and Enterprise web hosting or as an add on service for any other service or product we offer.
1. Check knowledgebase and run diagnose
The first thing you should do when experiencing any issues with one of our services, is to check the knowledgebase for solutions. If you do not find the answer there, you can run a diagnose via the client portal. This will give you information on any issues with your services.
2. Use descriptive title
If you did not find the solution to your problem in the knowledgebase or by running a diagnose, you should contact our support team.
The first information we receive regarding your problem is the title of your problem. Please try and describe the problem as clearly and precise as possible. Using titles as “Help! Everything is offline” or “Important!!!!” gives us no information on what the problem is regarding.
Use titles such as “Outgoing email is not working for any accounts” or “Disc space is full”. These titles will give our support team essential information on what the problem is regarding from the beginning.
3. Only give us information related to the issue
At times clients gives our support team an extreme amount of information when contacting us. Remember that the more unrelated information you give us, the more information our support team will need to read through and the longer time it takes them before they can start working on the issue.
In other words, the more information related to the issue, less time is spent scanning for relevant information.
Here are some examples of relevant information you should let us know:
What domain name is the problem regarding
Which service (website, email, DNS, database) is the problem regarding
Here are examples of relevant information you should include when you have issues regarding email:
Is webmail working?
Which email client are you using?
Which operative system are you using?
Is the issue regarding incoming-, outgoing email or both?
Is the issue regarding one specific email account or all the email accounts?
If the issue is only concerning one account, please state the account.
Have you received any error messages? What is the content of these?
4. Grant access and permission
To solve an issue our support team will often need to reproduce the issue. This requires a form for login. You should therefore give us access to the account if it is required to reproduce the issue or to solve the issue.
Sometimes it may be necessary to change configuration or the account to solve the issue. If you already know this when contacting us, you should give our support team permission to execute these actions. You will then save the time spent with us asking you for permission and waiting for your reply.
5. Use the same support ticket when updating your issue
If you need to update your support ticket with more information, you should use the same ticket code. If you send us a new support ticket, our support team will spend time collecting information from different support tickets regarding the same issue.
In case you have solved your issue before you have received an answer from us, we always appreciate if you update your support ticket so we can close it.
6. Priority support
All our Premium and Enterprise web hosting has VIP support included and will have priority support. You can easily upgrade your web hosting from Pro Start or Pro Medium if you would like to have the benefits of Pro Premium web hosting. Alternatively you can order VIP support as an add on service for any other service or product we offer for only 3€ per month. VIP support cover all services and products in your account.
When you have an issue with your web hosting or any other service at PRO ISP you should always check our knowledgebase first. If you do not find the solution to your problem here, try running a diagnose.
If you are still experiencing the issue, you can contact our support team via email, live chat and phone. Please provide relevant information, give us access and permissions to give our support team all the tools they need to solve your issue in one reply.
We include VIP support for all Pro Premium and Enterprise web hosting or as an add on service for any other service or product we offer.