The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

mod_ruid2 - is it ready for production?

Discussion in 'Security' started by hostplugin, Aug 23, 2012.

  1. hostplugin

    hostplugin Registered

    Joined:
    Sep 2, 2011
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    I still haven't decided whether I should go for mod_ruid2 + nginxcp or suphp + nginxcp

    I know that mod_ruid2 is much faster than suphp, it's just I'm not sure if it's ready for production.

    Please advise.
     
  2. hostnex

    hostnex Well-Known Member

    Joined:
    May 2, 2008
    Messages:
    77
    Likes Received:
    1
    Trophy Points:
    8
    Location:
    Islamabad, Pakistan, Pakistan
    cPanel Access Level:
    Root Administrator

    Mod_ruid still needs time to be stable. if you are running Wordpress or Joomla based websites then Mod_Ruid will break them to work properly.
     
  3. hostplugin

    hostplugin Registered

    Joined:
    Sep 2, 2011
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    can you please explain a bit further? how mod_ruid2 breaks wordpress/joomla?
     
  4. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    Hello,

    This information is incorrect. The user in question enabled chroot with mod_ruid2 using RDocumentChRoot and Joomla will not accept a /tmp directory that isn't usable (and use a temporary directory in the user's /home/username path instead). Additionally, Wordpress does work, but the MySQL connection needs to be 127.0.0.1 rather than localhost if chrooted. These have been mentioned before in other threads.

    Here's the thread where one such discussion occurred:

    http://forums.cpanel.net/f185/how-p...ks-non-root-users-202242-p10.html#post1177901

    Here's another where the chroot issue wasn't mentioned as well when trying mod_ruid2 and again it had to be pointed out what the user had done:

    http://forums.cpanel.net/f185/mod_ruid2-vs-suphp-costs-vs-benefits-269601.html#post1146412

    Please provide full disclosure in what was done for the implementation. Indicating all these points when making claims is necessary:

    1) RDocumentChRoot was implemented with mod_ruid2, which is not a requirement
    2) Due to RDocumentChRoot chrooting to /home/username, the /tmp files weren't writable causing Joomla to fail (not Wordpress, Wordpress will allow /tmp to be unwritable)
    3) Due to RDocumentChRoot chrooting to /home/username, WordPress had to use 127.0.0.1 for MySQL connections rather than being able to use localhost. Wordpress does function under that environment.

    Future posts that do not mention RDocumentChRoot being the cause of any issues with mod_ruid2 for your specific implementation will be removed.

    As for a legitimate issue with the current default mod_ruid2 installation, mod_security does have an issue with errors and functioning properly with mod_ruid2 per some user setups. This has yet to be assigned an internal case as we have not received any bug report tickets to investigate it.

    Thank you.
     
Loading...

Share This Page