Apache vhosts are not segmented or chroot()ed

[WorkinOnIt]

Hello

To follow on from the discussion on a previous thread here... Apache vhosts are not segmented or chroot()ed

I am currently using suphp and wonder what would be a good replacement? FCGI? I mostly run Wordpress / Woocommerce sites. What are the main differences - would I need to make significant adjustments in an already set up server, or would it be better to set up a new server and start again?

I have previously used CloudLinux and it is quite good at allowing the admin to specify the usage of resources per account.

Does the cPanel system (Jail Apache and mod ruid2) allow any settings for containing resources, or is it simply a security config?

 

[ServerHealers]

The mod_ruid2 handler would be fine to achieve that security enhancement, and changing PHP handler usually be straight forward and won't cause any issues. If in case, anything went wrong then you could easily switch back to SuPHP to bring everything back normal. The option "EXPERIMENTAL: Jail Apache Virtual Hosts using mod_ruid2 and cPanel® jailshell." is there for years in cPanel, and had no issues with it enabling, however, I'd suggest doing it in a test server first before pushing to production ready server because it is still in experimental status.

This option won't allow resource allocation like on CloudLinux OS LVE, rather this is just a security enhancement at the Apache VirtualHost layer.