Community Forums
Connect with us on LinkedIn
Community Notice
+ Reply to Thread
Results 1 to 8 of 8
  1. #1
    Member
    Join Date
    Feb 2004
    Location
    Spain
    Posts
    17

    Arrow Select or Not Select PHP SueExec Support, that's the question...

    Can Anybody help me?.

    I don't updated Cpanel yet because I'm not sure if I must check PHP SuExec checkbox before rebuild apache. Is it necessary to correct the bug?. The last time I compiled apache with su exec support, many php scripts failed and don't worked and .htacess php flags were ignored.

    Please tell me please if compiling apache following cpanel instructions (without php su exec support) will fix the security issue or if am I obligated to select PHP Suexec

    Thanks a lot for your nice help

  2. #2
    Member
    Join Date
    Mar 2003
    Posts
    345

    Default

    You dont have to select Php SuEXEC if you dont want to. i would recommend running PHP SuEXEC for security purposes but it is not required to correct the current vuln.

  3. #3
    cPanel Partner NOC cPanel Partner NOC Badge
    Join Date
    Mar 2003
    Location
    NC
    Posts
    725
    cPanel/Enkompass Access Level

    Root Administrator

    Default

    The bug was not selecting it and as long as you run atleast current you are fine. The only version that has trouble is stable right now. I would suggest upgrading to release/current then running easyapache and adding support if you use or want it.

  4. #4
    Member
    Join Date
    Feb 2004
    Location
    Spain
    Posts
    17

    Default

    OK, Thank you very much for your help. ...I have read thousands of posts trying to know if was estrictly necessary to select php suexec support, but when I tested it last time, I discovered that many PHP Scripts were failing, and .htacess php flags were ignored having php su exec support enabled.

    Appart from this, do you know more "restrictions" if I select php su exec support instead of not selecting it?

    Exactly, what's the difference between using or not using it?.

    I know PHP Su Exec support run scripts by the user id, but what kind of possible problems will have If I don't use it?

    Thank you again for u help

  5. #5
    Member
    Join Date
    Jun 2003
    Posts
    55

    Default phpsuexec or not?

    NOT! Forget about PHPSUEXEC!

    Don't even waste your time there.

    PHP is PHP. Perl is Perl. CGI is CGI. And PHP will just be user nobody and group nobody running on your computer.

    I tried PHPSUEXEC and it created quite a mess. It seems PHP is okay for mundane and civilian purposes as-is.

    ER

    Now, suexec (for cgi-bin, like perl, is a must and is honky-dory). Suexec and PHPsuexec are different, as you must already know.

  6. #6
    Super Moderator This forum account has been confirmed by cPanel staff to represent a vendor. chirpy's Avatar
    Join Date
    Jun 2002
    Location
    Go on, have a guess
    Posts
    13,495

    Default

    I can't agree less. We have phpsuexec running on all of our servers and never had a problem with any custome - you just have to make sure that you have your file ownerrships and permissions correct.
    Jonathan Michaelson

    Need your cPanel servers secured and tuned?
    cPanel Server Configuration, Security, Recovery and Antivirus/AntiSpam Services
    Developers of the most effective (and free) Firewall & Security Solution for cPanel Servers - csf
    http://www.configserver.com

  7. #7
    Member
    Join Date
    Jun 2003
    Posts
    55

    Default OK! I'll give it a second look.

    Having phpsuexec working well would reduce the risk of security and privacy breaches considerably.

    Thanks for replying in favor of phpsuexec with such conviction. I needed someone really stating firm results to go deeper into this issue.

    I'll have a second look since I really hate to see all php scripts running like user nobody and group nobody.

    ER

  8. #8
    Super Moderator This forum account has been confirmed by cPanel staff to represent a vendor. chirpy's Avatar
    Join Date
    Jun 2002
    Location
    Go on, have a guess
    Posts
    13,495

    Default

    Having used suexec for so many years, I think it's only sensible security to run phpsuexec these days. I understand that phpsuexec was flawed at its introduction.

    The number of threads on here with people asking about all the spam emails from nobody has convinced me that any pain in running it outweighs the risks of not.

    There is also an alternative that some use called suphp:
    http://www.suphp.org/Home.html

    Never needed to try it myself.
    Jonathan Michaelson

    Need your cPanel servers secured and tuned?
    cPanel Server Configuration, Security, Recovery and Antivirus/AntiSpam Services
    Developers of the most effective (and free) Firewall & Security Solution for cPanel Servers - csf
    http://www.configserver.com

Similar Threads & Tags
Similar threads

  1. Cannot Select PHP Version
    By hightekhosting in forum cPanel and WHM Discussions
    Replies: 10
    Last Post: 03-11-2009, 02:10 PM
  2. Replies: 0
    Last Post: 03-11-2008, 08:21 PM
  3. give ads to select users or under a select user
    By kistler in forum cPanel and WHM Discussions
    Replies: 2
    Last Post: 03-28-2006, 06:00 AM
  4. Howcome we cannot select php modules at time using easyapache
    By jackie46 in forum cPanel and WHM Discussions
    Replies: 3
    Last Post: 01-16-2006, 07:29 AM
  5. Allow user to select between PHP 4 and 5 in Cpanel
    By Netmaking in forum cPanel and WHM Discussions
    Replies: 5
    Last Post: 01-03-2006, 04:30 PM
Linkedin       Facebook       Twitter       RSS       Flickr       YouTube