Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Exclamation, and - mod_ruid2 loaded in Apache.

Discussion in 'Security' started by dtctio, Sep 21, 2014.

  1. dtctio

    dtctio Member

    Joined:
    Sep 6, 2014
    Messages:
    11
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Website Owner
    Hi

    I have cPanel Recommended Profiles: Mod Ruid2 since I'm using suPHP PHP handler.

    I'm not reselling, rather will simply be hosting a WordPress Multisite.

    CENTOS 6.5 x86_64 vmware – mail
    WHM 11.44.1 (build 18)

    'EXPERIMENTAL: Jail Apache Virtual Hosts using mod_ruid2 and cPanel® jailshell' = ON

    'Jailed Apache is enabled'

    'Use cPanel® jailshell by default' = Mount limited /proc (RHEL/CentOS 6)+, Full /proc (RHEL/CentOS 5/xenpv) default

    Manage Shell Access = Jailed Shell ------ note: this relates to SSH root login, which I'm looking at separately.

    UPDATE:

    File ETag

    System Default: All
    PCI Recommendation: None

    ExecCGI ---- SELECTED
    FollowSymLinks ---- SELECTED
    Includes ----- Unticked
    IncludesNOEXEC ---- SELECTED
    Indexes ---- SELECTED
    MultiViews ----- Unticked
    SymLinksIfOwnerMatch ---- SELECTED


    Questions:

    Does the 'Include' refer to PHP Include Directive?

    cPanel Security Advisor shows a message as attached. Is this simply a notice, a reminder of sorts, or is it referring to an incomplete configuration?


    Kind regards

    Dylan
     

    Attached Files:

    #1 dtctio, Sep 21, 2014
    Last edited: Sep 21, 2014
  2. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,214
    Likes Received:
    1,936
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello :)

    The "Includes" option you are referring to is for Apache, not PHP. Per it's description when enabled:

    Server-side includes provided by mod_include are permitted.

    The screenshot you attached is simply a notice. It's telling you that if "Jailed Apache" is not enabled, you will see those warning messages present in "Security Advisor".

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice