cpanel and webmail issues after 404

[Nishant80]

I recently installed cloudlinux and converted a cpanel server to cloudlinux OS. Now if we access domain.tld/cpanel OR domain.tld/webmail, it shows 404. Note that it still opens through port numbers though.

Help appreciated.

 

[iseletsk]

Do you have cagefs installed?
What appears in /etc/httpd/logs/error_log when you hit those pages?

 

[Nishant80]

Do you have cagefs installed?
What appears in /etc/httpd/logs/error_log when you hit those pages?

Yes, I installed CageFS too. httpd error logs show the usual stuff of files missing. Do you want me to grep something specific?

 

[iseletsk]

Could you please:

Run:
cagefsctl --disable-cagefs
And check if after that, those urls works.

Also, please, post the output of following commands
rpm -q cagefs
rpm -qa | grep bsock
service proxyexecd status
grep redirect.cgi /etc/cagefs/proxy.commands
grep redirect.cgi /usr/local/cpanel/logs/error_log
grep -i cagefs /var/log/messages

 

[Nishant80]

Thank you for your reply.

It works after disabling CageFS.

1. rpm -q cagefs = cagefs-5.0-5.el6.cloudlinux.x86_64

2. root@server [~]# rpm -qa | grep bsock
bsock-0.09-1.el6.x86_64
bsock-libs-0.09-1.el6.x86_64

3. Proxyexecd = proxyexec (pid 52808) is running...

4. root@mars [~]# grep redirect.cgi /etc/cagefs/proxy.commands
REDIRECT_CGI=/usr/local/cpanel/cgi-sys/redirect.cgi
WREDIRECT_CGI=/usr/local/cpanel/cgi-sys/wredirect.cgi
WHMREDIRECT_CGI=/usr/local/cpanel/cgi-sys/whmredirect.cgi
UNI_REDIRECT_CGI=/usr/local/cpanel/cgi-sys/universal-redirect.cgi
SWHMREDIRECT_CGI=/usr/local/cpanel/cgi-sys/swhmredirect.cgi
SREDIRECT_CGI=/usr/local/cpanel/cgi-sys/sredirect.cgi

4. grep redirect.cgi /usr/local/cpanel/logs/error_log = Nothing

5. grep -i cagefs /var/log/essages
Jul  8 20:22:57 server cagefs.command.server[510936]: incorrect GID: uid=784(username) gid=782(username) groups=782(username)
Jul  8 20:22:57 server cagefs.command.server[510945]: incorrect GID: uid=784(username) gid=782(username) groups=782(username)
Jul  8 20:22:57 server cagefs.command.server[510950]: incorrect GID: uid=784(username) gid=782(username) groups=782(username)
Jul  8 20:23:25 server cagefs.command.server[511195]: incorrect GID: uid=705(username) gid=703(username) groups=703(username)
Jul  8 20:23:25 server cagefs.command.server[511208]: incorrect GID: uid=705(username) gid=703(username) groups=703(username)
Jul  8 20:23:43 server cagefs.command.server[511281]: incorrect GID: uid=784(username) gid=782(username) groups=782(username)
Jul  8 20:24:20 server cagefs.command.server[511563]: incorrect GID: uid=699(username) gid=697(username) groups=697(username)
Jul  8 20:24:44 server cagefs.command.server[511650]: incorrect GID: uid=751(username) gid=749(username) groups=749(username)
Jul  8 20:25:01 server cagefs.command.server[511813]: incorrect GID: uid=834(username) gid=832(username) groups=832(username)
Jul  8 20:26:08 server cagefs.command.server[512328]: incorrect GID: uid=674(user) gid=672(username) groups=672(username)

Note that there is a huge output for grep -i cagefs /var/log/messages. I just copied some of them.

Could you please:

Run:
cagefsctl --disable-cagefs
And check if after that, those urls works.

Also, please, post the output of following commands
rpm -q cagefs
rpm -qa | grep bsock
service proxyexecd status
grep redirect.cgi /etc/cagefs/proxy.commands
grep redirect.cgi /usr/local/cpanel/logs/error_log
grep -i cagefs /var/log/messages

 

[iseletsk]

Could you please submit a ticket at helpdesk.cloudlinux.com? I am not sure what it might be.

 

[iseletsk]

You might want to submit a ticket so we could take a look & fix it. One of the reasons we have seen for such issue was hacked server where /usr/bin/id had been modified