The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Apache Jails using mod_ruid2 are not compatible with suPHP

Discussion in 'Security' started by joomir, May 3, 2017.

Tags:
  1. joomir

    joomir Registered

    Joined:
    Jan 31, 2013
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Reseller Owner
    Hi all,
    My php handler is suphp. how can i enable Jail Apache when my handler is suphp.
    when i enable Jail Apache i get this error:
    Updating “EXPERIMENTAL: Jail Apache Virtual Hosts using mod_ruid2 and cPanel® jailshell.” from “Off” to “On”.
    Apache Jails using mod_ruid2 are not compatible with suPHP.
    Choose a different PHP handler if you wish to enable this feature.
    There was an error updating “EXPERIMENTAL: Jail Apache Virtual Hosts using mod_ruid2 and cPanel® jailshell.”:
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    37,167
    Likes Received:
    1,295
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    Mod_Ruid2 is required to utilize the “EXPERIMENTAL: Jail Apache Virtual Hosts using mod_ruid2 and cPanel® jailshell.” feature. It's not possible to use that option with suPHP. That said, the following document is helpful if you are seeking out alternate methods of protection against symbolic link attacks:

    Symlink Race Condition Protection - EasyApache 4 - cPanel Documentation

    Thank you.
     
  3. quizknows

    quizknows Well-Known Member

    Joined:
    Oct 20, 2009
    Messages:
    982
    Likes Received:
    75
    Trophy Points:
    78
    cPanel Access Level:
    DataCenter Provider
    RUID pretty much eliminates the need for SuPHP anyway. The point of SuPHP is to run PHP as the user account; since RUID runs apache itself as the user account, forked PHP processes are already the correct user ID and thus SuPHP isn't needed.
     
Loading...

Share This Page