Mod Ruid2 + mod security conflicts on cPanel

bhanuprasad1981

Well-Known Member
Aug 5, 2008
222
0
66
India
seems some thing wrong with both working on server in modsec log i see bunch of messages:-

Audit log: Failed to lock global mutex: Permission denied


is there any solution for it ?
 

cPanelTristan

Quality Assurance Analyst
Staff member
Oct 2, 2010
7,607
41
348
somewhere over the rainbow
cPanel Access Level
Root Administrator

Solokron

Well-Known Member
Aug 8, 2003
852
2
168
Seattle
cPanel Access Level
DataCenter Provider
I am seeing this issue as well. mod_security is working but the error_log if flooded with:
ModSecurity: Audit log: Failed to lock global mutex: Permission denied
 

Solokron

Well-Known Member
Aug 8, 2003
852
2
168
Seattle
cPanel Access Level
DataCenter Provider
SecAuditLogModeDir 0770
SecAuditLogModeFile 0640

are invalid and changing to concurrent just results in another error.
 

cPanelTristan

Quality Assurance Analyst
Staff member
Oct 2, 2010
7,607
41
348
somewhere over the rainbow
cPanel Access Level
Root Administrator
Please post on the mod_security site asking for help with the error if the recommendations from their own site (provided previously) do not work.
 

cele303

Member
Jun 9, 2007
7
0
151
Hello

Is there any solution for this ? I'm having the same problem on every server that has mod_PHP with ruid2 enabled

Thanks
 

beiruthost

Member
Jul 27, 2004
17
0
151
Have you posted on the mod_security site about it to ask as well?
Should cPanel solve this issue by updating easyapache to make all necessary changes letting Mod Security working properly with Mod Ruid2 ! I created a ticket but same answers as in this thread ! when you support Mod Ruid so you should support results! all cPanel users are affected when rebuilding mod security and Ruid at the same time.
 

cPanelTristan

Quality Assurance Analyst
Staff member
Oct 2, 2010
7,607
41
348
somewhere over the rainbow
cPanel Access Level
Root Administrator
If you truly believe it is a bug we should be contacting mod_security to fix, please submit a bug report. If you did already submit a bug report, you are welcome to respond to that bug report ticket (those go to http://go.cpanel.net/bugs rather than the regular ticket queue) and mention that you'd like to request if we can contact mod_security about the issue.

It is a flaw with mod_security in conjunction with mod_ruid2 and not with cPanel itself. Some components do not work with other components and, typically, we end up disabling those components when the other is selected. For example, we disable FrontPage and mod_mono when mod_ruid2 is selected. What I foresee happening if it isn't going to be fixed by mod_security is that we might end up disabling the option to even pick mod_security when using mod_ruid2 (if people feel this error is sufficient to make it unusable).
 

cPanelTristan

Quality Assurance Analyst
Staff member
Oct 2, 2010
7,607
41
348
somewhere over the rainbow
cPanel Access Level
Root Administrator
Please submit a ticket as previously requested. I am not aware of anyone having done so at this point.
 

Solokron

Well-Known Member
Aug 8, 2003
852
2
168
Seattle
cPanel Access Level
DataCenter Provider
Is there any resolution to this yet?
 
D

Deleted member 26294

Guest
Any news on this yet? I'm interested in compiling Apache with both mod_ruid2 and ModSecurity but don't want to run into any issues.

Does this issue actually affect ModSecurity/ruid2 at all, or is it just a log error being generated?
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,904
2,237
463
Overall, Mod_Security has been tested as being compatible with Mod_Ruid2. However, there are some instances where incompatibilities may arise. For example, some ASL rulesets used with Mod_Security attempt to store data in "/var/asl/data/". This may result in errors in cases where files were created or are locked by another user at the same time.

Please submit a bug report if you find Mod_Ruid2 and Mod_Security to be incompatible in other scenarios:

Submit A Bug Report

The more reports we receive, the more likely it is the issue can be addressed appropriately.

Thank you.
 
D

Deleted member 26294

Guest
Thanks Michael, it's nice to hear from the cPanel team about issues like this before jumping in.

I'll give it a go and see what happens. :)
 

dmacleo

Active Member
Jan 28, 2012
44
0
56
cPanel Access Level
Root Administrator
seeing this too, however I looked at the prior links mentioned and its like greek to me.
and since I do not speak greek... :)
am I understanding right thats its basically chmod 2 folders?