1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Mod Ruid2 + mod security conflicts on cPanel

Discussion in 'Security' started by bhanuprasad1981, Mar 11, 2012.

  1. bhanuprasad1981

    Joined:
    Aug 5, 2008
    Messages:
    222
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    India
    seems some thing wrong with both working on server in modsec log i see bunch of messages:-

    Audit log: Failed to lock global mutex: Permission denied


    is there any solution for it ?
     
  2. cPanelTristan

    cPanelTristan Active Member
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,621
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
  3. Solokron

    Solokron Member

    Joined:
    Aug 8, 2003
    Messages:
    825
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Seattle
    I am seeing this issue as well. mod_security is working but the error_log if flooded with:
    ModSecurity: Audit log: Failed to lock global mutex: Permission denied
     
  4. Solokron

    Solokron Member

    Joined:
    Aug 8, 2003
    Messages:
    825
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Seattle
    SecAuditLogModeDir 0770
    SecAuditLogModeFile 0640

    are invalid and changing to concurrent just results in another error.
     
  5. LeadDogGraphics

    Joined:
    Feb 25, 2012
    Messages:
    97
    Likes Received:
    1
    Trophy Points:
    8
    Location:
    West Palm Beach, FL
    I to am just noticing this problem with my server running mod_ruid2. Would love to find more information about how to fix it if anyone knows.
     
  6. cPanelTristan

    cPanelTristan Active Member
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,621
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    Please post on the mod_security site asking for help with the error if the recommendations from their own site (provided previously) do not work.
     
  7. cele303

    cele303 New Member

    Joined:
    Jun 9, 2007
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    Hello

    Is there any solution for this ? I'm having the same problem on every server that has mod_PHP with ruid2 enabled

    Thanks
     
  8. cPanelTristan

    cPanelTristan Active Member
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,621
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    Have you posted on the mod_security site about it to ask as well?
     
  9. beiruthost

    beiruthost New Member

    Joined:
    Jul 27, 2004
    Messages:
    18
    Likes Received:
    0
    Trophy Points:
    1
    Should cPanel solve this issue by updating easyapache to make all necessary changes letting Mod Security working properly with Mod Ruid2 ! I created a ticket but same answers as in this thread ! when you support Mod Ruid so you should support results! all cPanel users are affected when rebuilding mod security and Ruid at the same time.
     
  10. cPanelTristan

    cPanelTristan Active Member
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,621
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    If you truly believe it is a bug we should be contacting mod_security to fix, please submit a bug report. If you did already submit a bug report, you are welcome to respond to that bug report ticket (those go to http://go.cpanel.net/bugs rather than the regular ticket queue) and mention that you'd like to request if we can contact mod_security about the issue.

    It is a flaw with mod_security in conjunction with mod_ruid2 and not with cPanel itself. Some components do not work with other components and, typically, we end up disabling those components when the other is selected. For example, we disable FrontPage and mod_mono when mod_ruid2 is selected. What I foresee happening if it isn't going to be fixed by mod_security is that we might end up disabling the option to even pick mod_security when using mod_ruid2 (if people feel this error is sufficient to make it unusable).
     
  11. LittleB

    LittleB New Member

    Joined:
    Apr 30, 2012
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    1
    Having the same issues.Any new info. on this?
     
  12. cPanelTristan

    cPanelTristan Active Member
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,621
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    Please submit a ticket as previously requested. I am not aware of anyone having done so at this point.
     
  13. LittleB

    LittleB New Member

    Joined:
    Apr 30, 2012
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    1
    Submitted a ticket here and over at the Mod Security site as well.
     
  14. Solokron

    Solokron Member

    Joined:
    Aug 8, 2003
    Messages:
    825
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Seattle
    Is there any resolution to this yet?
     
  15. java_dude

    java_dude Member

    Joined:
    Apr 23, 2004
    Messages:
    37
    Likes Received:
    0
    Trophy Points:
    6
    Any news on this yet? I'm interested in compiling Apache with both mod_ruid2 and ModSecurity but don't want to run into any issues.

    Does this issue actually affect ModSecurity/ruid2 at all, or is it just a log error being generated?
     
  16. WebEndev

    WebEndev New Member

    Joined:
    Aug 2, 2012
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Indiana, USA
    Good question. I would like to know also.
     
  17. java_dude

    java_dude Member

    Joined:
    Apr 23, 2004
    Messages:
    37
    Likes Received:
    0
    Trophy Points:
    6
    ^^

    Any information from cPanel staff?
     
  18. cPanelMichael

    cPanelMichael Well-Known Member
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    17,523
    Likes Received:
    26
    Trophy Points:
    48
    Overall, Mod_Security has been tested as being compatible with Mod_Ruid2. However, there are some instances where incompatibilities may arise. For example, some ASL rulesets used with Mod_Security attempt to store data in "/var/asl/data/". This may result in errors in cases where files were created or are locked by another user at the same time.

    Please submit a bug report if you find Mod_Ruid2 and Mod_Security to be incompatible in other scenarios:

    Submit A Bug Report

    The more reports we receive, the more likely it is the issue can be addressed appropriately.

    Thank you.
     
  19. java_dude

    java_dude Member

    Joined:
    Apr 23, 2004
    Messages:
    37
    Likes Received:
    0
    Trophy Points:
    6
    Thanks Michael, it's nice to hear from the cPanel team about issues like this before jumping in.

    I'll give it a go and see what happens. :)
     
  20. dmacleo

    dmacleo Member

    Joined:
    Jan 28, 2012
    Messages:
    44
    Likes Received:
    0
    Trophy Points:
    6
    seeing this too, however I looked at the prior links mentioned and its like greek to me.
    and since I do not speak greek... :)
    am I understanding right thats its basically chmod 2 folders?
     

Share This Page