From the software formerly (and still officially known as apnscp), it’s the Apis Networks Control Panel: a hosting platform since 2002 engineered to help you achieve more. Once installed, apnscp’s adaptive firewall activates by protecting all facets from WordPress to SSH for added peace of mind. This is a multi-tenant platform in which each account is partitioned from one another and may be optionally controlled via resource enforcement. 1-click installation and automatic updates are provided for WordPress, Discourse, Ghost, Drupal, and Laravel.
ApisCP evolved from my time behind the helm with Hostineer/Apis Networks as a platform free from third-party licenses and as close to set-it-and-forget-it as one can achieve. It’s built for shared hosting, but nimble enough to stand on its own as a platform for your VPS. ApisCP is built to be self-healing, capable of correcting anomalies to keep your sites humming as efficiently as possible.
Black Friday saaaaaaaallleee!
ApisCP lifetime licenses are on sale for $99 through Monday via https://my.apnscp.com. Firm limit of 10 per user.
Even if you managed to grab a lifetime license, it’s a great opportunity to support development.
Monthly licenses/NOC resellers
Monthly licenses go on sale December 15 for $15/month per license. Volume discounts available over 10 licenses per month. Monthlies were slated to be part of the BF offering, but perfecting cPanel migrations took center stage to get existing clients off cPanel before the end of the year.
NOC partnerships are also open. Reach out to email@example.com for reseller pricing, commit rates, custom deployment pipelines, and determining the best fit for your fulfillment process.
Visit Customization utility to get started with a trial install. Configure the panel how you’d like (PHP 7.4 available 11/28). INSTALL.md for in-depth details. Trials are fully functional for 30 days. You can easily upgrade to a paid license within the panel or from command-line. Information is in LICENSE.md. Paid licenses are available through my.apnscp.com and on sale for $99 (normally $159).
- CentOS 7.5+
- 20 GB storage
- 2 GB RAM
apnscp can work on a 1 GB machine, but RAM is cheap nowadays - performance not so much. Whatever excess RAM can be utilized is utilized to boost throughput.
3.1, released October 27, introduced TimescaleDB that’ll serve as the backbone for predictive analytics going forward. Beyond highlighting abusive clients exceeding CPU and I/O limits, it serves as an aggregation service for instrumentation- PHP-FPM requests/second, maximum OPCache memory used, MySQL open tables/second, queries/second, mail flow rate, etc. Now we can take this data and perform hot optimizations based upon feedback to trim slack between services. Best of all, the longer your account resides on ApisCP the more intelligent it becomes.
Metric logging is presently an opt-in feature released in 3.1.10 with implicit activation scheduled for January 2020.
cpcmd scope:set cp.config telemetry enabled 1 will activate metrics logging.
Metrics are stored in appldb.metrics within PostgreSQL.
env DEBUG=1 cpcmd -d domain.com test:metrics performs a simple metric fetch.
Secondly, rspamd will be fleshed out tremendously including DKIM/ARC signing and outbound rate-limiting per domain/authenticated source. There’s some wizardry involved with logical replication of data from PostgreSQL to Redis that will be implemented in the first half of 2020.
Geeky technical details
- Frontend: PHP7, Laravel interoperability
- Backend: PHP7, MySQL, PostgreSQL
- Customizable: Yes, via Laravel Blade. See Customizing.md
- Platform management: Ansible
- Stack: via Stackshare
- Audited: yes, via Rack911. Disclosure report.
- API: yes, 2,500+ commands via SOAP. Drop-in modules alter API schema, which SOAP enforces strict error checking.
- Filesystem isolation: yes, via synthetic roots mounted with OverlayFS (called BoxFS)
- Resource enforcement: yes, via cgroups
- PHP-FPM: yes, suid and jailed prior to pool launch. Uses socket activation to stagger launch of boot thus mitigating a Thundering Herd effect. Pools sleep when appropriate to conserve memory. Each account pool is isolated from neighboring accounts.t
- Design architecture: API driven-development + principle of least-privilege with elevated backend broker. Backend throughput ~10k API commands/second
- DNS support: PowerDNS, CloudFlare, Route53, DigitalOcean, Linode, and Vultr.
- Billing support: WHMCS (third-party). Reach out to me (firstname.lastname@example.org) if you’d like to author a Blesta module.
- Backups: Bacula
- Imaging support: yes, hydration completes in ~3 minutes. A desiccated image provides brute-force protection too!
- Multi-php: no, but may be compiled and shared via a synthetic root. Bear in mind the consequences of running potentially abandoned, 5+ year old code. Good code should persist with little change. Bad code (and thus vulnerable code) requires tender loving care. Bad code may expose your server to malicious actors.
It’s a panel that I’ve developed for the last 17 years to do more with less. It even comes with @Wolveix’s seal of approval.