Apache vhosts are not segmented or chroot()ed

WorkinOnIt

Well-Known Member
Aug 3, 2016
312
54
78
UK
cPanel Access Level
Root Administrator
Hello

To follow on from the discussion on a previous thread here... Apache vhosts are not segmented or chroot()ed

I am currently using suphp and wonder what would be a good replacement? FCGI? I mostly run Wordpress / Woocommerce sites. What are the main differences - would I need to make significant adjustments in an already set up server, or would it be better to set up a new server and start again?

I have previously used CloudLinux and it is quite good at allowing the admin to specify the usage of resources per account.

Does the cPanel system (Jail Apache and mod ruid2) allow any settings for containing resources, or is it simply a security config?
 
Last edited by a moderator:

ServerHealers

Well-Known Member
Sep 21, 2015
100
57
78
India
cPanel Access Level
Root Administrator
The mod_ruid2 handler would be fine to achieve that security enhancement, and changing PHP handler usually be straight forward and won't cause any issues. If in case, anything went wrong then you could easily switch back to SuPHP to bring everything back normal. The option "EXPERIMENTAL: Jail Apache Virtual Hosts using mod_ruid2 and cPanel® jailshell." is there for years in cPanel, and had no issues with it enabling, however, I'd suggest doing it in a test server first before pushing to production ready server because it is still in experimental status.

This option won't allow resource allocation like on CloudLinux OS LVE, rather this is just a security enhancement at the Apache VirtualHost layer.
 
  • Like
Reactions: cPRex