Solokron

Well-Known Member
Aug 8, 2003
851
1
168
Seattle
cPanel Access Level
DataCenter Provider
We have a client abusing the temporary address. We are unable to enable Apache mod_userdir Tweak unfortunately due to a sitebuilder. Any ideas how we can prevent the alias on a single or per account basis?
 

cPanelDavidG

Technical Product Specialist
Nov 29, 2006
11,212
13
313
Houston, TX
cPanel Access Level
Root Administrator
We have a client abusing the temporary address. We are unable to enable Apache mod_userdir Tweak unfortunately due to a sitebuilder. Any ideas how we can prevent the alias on a single or per account basis?
The mod_userdir tweak can be done on a per-account basis in the latest versions of cPanel 11.
 

nicklas

Well-Known Member
Dec 22, 2005
117
0
166
cPanel Access Level
Root Administrator
How, because I can't get it enabled per account, sadley enough it need to be for the whole server disabled.

I have, cPanel 11.25.0-R46156 - WHM 11.25.0 - X 3.9
 

cPanelDavidG

Technical Product Specialist
Nov 29, 2006
11,212
13
313
Houston, TX
cPanel Access Level
Root Administrator
How, because I can't get it enabled per account, sadley enough it need to be for the whole server disabled.

I have, cPanel 11.25.0-R46156 - WHM 11.25.0 - X 3.9
Can you clarify your question? Are you asking about disabling mod_userdir for the entire server or how to enable/disable mod_userdir on a per-account basis?
 

nicklas

Well-Known Member
Dec 22, 2005
117
0
166
cPanel Access Level
Root Administrator
Sorry for not being so clear.

I want one account having this IP/~username working for.
But it doesn't work like that, I can only get it working when allowing it for the whole server. That is not really a good thing.

How to get that fixed?
 

cPanelDavidG

Technical Product Specialist
Nov 29, 2006
11,212
13
313
Houston, TX
cPanel Access Level
Root Administrator
Sorry for not being so clear.

I want one account having this IP/~username working for.
But it doesn't work like that, I can only get it working when allowing it for the whole server. That is not really a good thing.

How to get that fixed?
The mod_userdir protection applies to the username of the domain preceeding /. This means if you go to example.com/~dave (where example is the username for example.com), you need to disable mod_userdir protection for user: example (not dave).

The mod_userdir protection is in place to prevent many things, one item being bandwidth leeching. So if user dave had a bandwidth intensive website, if they changed their links from their domain to example.net/~dave (where example.net is any domain on the server), the user associated with example.net is penalized with the bandwidth consumption instead of user dave.

You will only be able to get IP/~username (where IP is a shared IP, thus impossible to associate with a single user) to function if you disable mod_userdir protection for all users.
 

nicklas

Well-Known Member
Dec 22, 2005
117
0
166
cPanel Access Level
Root Administrator
Alright, let's see if I get this in my gray cells.

To give one user IP/~username access, I need to give the whole server, so all accounts can use this IP/~username access. Nah, that is really weird... as you mentioned before it could be done per user.

Is there any difference in having a shared IP and a static IP for the hosting package, and what about a reseller account with his own shared IP?

Please explain ALL other dangerous effects by allowing this, I understand the bandwidth issue, but I really do need to know what else for danger is involved and what to expect when enabling this for the whole server.

I really want to get the grasp of this.

Thanks.
 

cPanelDon

cPanel Quality Assurance Analyst
Staff member
Nov 5, 2008
2,545
12
268
Houston, Texas, U.S.A.
cPanel Access Level
DataCenter Provider
Twitter
Sorry for not being so clear.

I want one account having this IP/~username working for.
But it doesn't work like that, I can only get it working when allowing it for the whole server. That is not really a good thing.

How to get that fixed?
Try the following steps:
  1. Access the following menu path: WHM: Main >> Security Center >> Apache mod_userdir Tweak
  2. Tick the check-box labeled Enable mod_userdir Protection
  3. Untick all check-boxes under the column heading Exclude Protection
  4. Locate the virtual host that you wish to use from the list under column heading Host.
  5. Input the desired cPanel account username, or usernames as a space-separated list, under the column heading Additional Users.
  6. Click Save, at the bottom of the page, to submit and finalize changes.
 

luigidelgado

Well-Known Member
Nov 6, 2010
119
5
68
Mexico
cPanel Access Level
Root Administrator
Twitter
Not Working for me neither. I have 3 cPanel servers none of them working for this tweak.
1. I have Enable mod_userdir Protection.
2. I have Unticked all check-boxes under the column heading Exclude Protection except for the domain I want to enable a temporary access to see its account before migration.
3. I have Input under Additional Users the desired cPanel account username (EX: if my example.com user is named: user1 y input: user1) . Here in fact the list will show example.com (user1).

NO LUCK! I still have a green/bluish screen orange letters with 404 Not Found error. Am I missing something here?

ALL 3 Servers the same, 11.28 completly updated. I've been trying to find a solution for this for about a month havn't find the solution.
 
Last edited:

cPanelTristan

Quality Assurance Analyst
Staff member
Oct 2, 2010
7,607
40
248
somewhere over the rainbow
cPanel Access Level
Root Administrator
Please also enable for the "DefaultHost (nobody)" and add user1 there under "Additional Users" field.