The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Exclamation, and - mod_ruid2 loaded in Apache.

Discussion in 'Security' started by dtctio, Sep 21, 2014.

  1. dtctio

    dtctio Member

    Joined:
    Sep 6, 2014
    Messages:
    11
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Website Owner
    Hi

    I have cPanel Recommended Profiles: Mod Ruid2 since I'm using suPHP PHP handler.

    I'm not reselling, rather will simply be hosting a WordPress Multisite.

    CENTOS 6.5 x86_64 vmware – mail
    WHM 11.44.1 (build 18)

    'EXPERIMENTAL: Jail Apache Virtual Hosts using mod_ruid2 and cPanel® jailshell' = ON

    'Jailed Apache is enabled'

    'Use cPanel® jailshell by default' = Mount limited /proc (RHEL/CentOS 6)+, Full /proc (RHEL/CentOS 5/xenpv) default

    Manage Shell Access = Jailed Shell ------ note: this relates to SSH root login, which I'm looking at separately.

    UPDATE:

    File ETag

    System Default: All
    PCI Recommendation: None

    ExecCGI ---- SELECTED
    FollowSymLinks ---- SELECTED
    Includes ----- Unticked
    IncludesNOEXEC ---- SELECTED
    Indexes ---- SELECTED
    MultiViews ----- Unticked
    SymLinksIfOwnerMatch ---- SELECTED


    Questions:

    Does the 'Include' refer to PHP Include Directive?

    cPanel Security Advisor shows a message as attached. Is this simply a notice, a reminder of sorts, or is it referring to an incomplete configuration?


    Kind regards

    Dylan
     

    Attached Files:

    #1 dtctio, Sep 21, 2014
    Last edited: Sep 21, 2014
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,787
    Likes Received:
    665
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    The "Includes" option you are referring to is for Apache, not PHP. Per it's description when enabled:

    Server-side includes provided by mod_include are permitted.

    The screenshot you attached is simply a notice. It's telling you that if "Jailed Apache" is not enabled, you will see those warning messages present in "Security Advisor".

    Thank you.
     
Loading...

Share This Page