Mod Ruid2 + mod security conflicts on cPanel

[bhanuprasad1981]

seems some thing wrong with both working on server in modsec log i see bunch of messages:-

Audit log: Failed to lock global mutex: Permission denied


is there any solution for it ?

 

[cPanelTristan]

Hello,

I do not see discussion of this on Mod_Security's site but I do about MPM ITK which has similarities to mod_ruid2. The important discussions are these:

Apache mod-security
https://www.modsecurity.org/tracker/browse/MODSEC-82
Global mutex - Permission Denied

Thanks!

 

[Solokron]

I am seeing this issue as well. mod_security is working but the error_log if flooded with:
ModSecurity: Audit log: Failed to lock global mutex: Permission denied

 

[Solokron]

SecAuditLogModeDir 0770
SecAuditLogModeFile 0640

are invalid and changing to concurrent just results in another error.

 

[LeadDogGraphics]

I to am just noticing this problem with my server running mod_ruid2. Would love to find more information about how to fix it if anyone knows.

 

[cPanelTristan]

Please post on the mod_security site asking for help with the error if the recommendations from their own site (provided previously) do not work.

 

[cele303]

Hello

Is there any solution for this ? I'm having the same problem on every server that has mod_PHP with ruid2 enabled

Thanks

 

[cPanelTristan]

Have you posted on the mod_security site about it to ask as well?

 

[beiruthost]

Have you posted on the mod_security site about it to ask as well?

Should cPanel solve this issue by updating easyapache to make all necessary changes letting Mod Security working properly with Mod Ruid2 ! I created a ticket but same answers as in this thread ! when you support Mod Ruid so you should support results! all cPanel users are affected when rebuilding mod security and Ruid at the same time.

 

[cPanelTristan]

If you truly believe it is a bug we should be contacting mod_security to fix, please submit a bug report. If you did already submit a bug report, you are welcome to respond to that bug report ticket (those go to http://go.cpanel.net/bugs rather than the regular ticket queue) and mention that you'd like to request if we can contact mod_security about the issue.

It is a flaw with mod_security in conjunction with mod_ruid2 and not with cPanel itself. Some components do not work with other components and, typically, we end up disabling those components when the other is selected. For example, we disable FrontPage and mod_mono when mod_ruid2 is selected. What I foresee happening if it isn't going to be fixed by mod_security is that we might end up disabling the option to even pick mod_security when using mod_ruid2 (if people feel this error is sufficient to make it unusable).

 

[LittleB]

Having the same issues.Any new info. on this?

 

[cPanelTristan]

Please submit a ticket as previously requested. I am not aware of anyone having done so at this point.

 

[LittleB]

Submitted a ticket here and over at the Mod Security site as well.

 

[Solokron]

Is there any resolution to this yet?

 

[Deleted member 26294]

Any news on this yet? I'm interested in compiling Apache with both mod_ruid2 and ModSecurity but don't want to run into any issues.

Does this issue actually affect ModSecurity/ruid2 at all, or is it just a log error being generated?

 

[WebEndev]

Any news on this yet? I'm interested in compiling Apache with both mod_ruid2 and ModSecurity but don't want to run into any issues.

Does this issue actually affect ModSecurity/ruid2 at all, or is it just a log error being generated?

Good question. I would like to know also.

 

[Deleted member 26294]

^^

Any information from cPanel staff?

 

[cPanelMichael]

Overall, Mod_Security has been tested as being compatible with Mod_Ruid2. However, there are some instances where incompatibilities may arise. For example, some ASL rulesets used with Mod_Security attempt to store data in "/var/asl/data/". This may result in errors in cases where files were created or are locked by another user at the same time.

Please submit a bug report if you find Mod_Ruid2 and Mod_Security to be incompatible in other scenarios:

Submit A Bug Report

The more reports we receive, the more likely it is the issue can be addressed appropriately.

Thank you.

 

[Deleted member 26294]

Thanks Michael, it's nice to hear from the cPanel team about issues like this before jumping in.

I'll give it a go and see what happens.

 

[dmacleo]

seeing this too, however I looked at the prior links mentioned and its like greek to me.
and since I do not speak greek...
am I understanding right thats its basically chmod 2 folders?