Please provide more info about EasyApache FileProtect feature

Kent Brockman · Jan 31, 2017

Hello guys. Today I upgraded some servers to cPanel 11.62 to discover this new feature.

Note that I'm using EA4 in all of these servers and the "Enable File Protect" option is ON by default on Tweak Settings. After reading a couple links I arrived here (Apache Module: FileProtect - EasyApache - cPanel Documentation) where it's stated that this feature is to protect public_html folders but all the references in that page point towards EasyApache 3 (even when you run /scripts/enablefileprotect --help)

So, is this a feature exclusively working with EA3? How does it work under EA4? What permissions are exactly being modified?

Please ellaborate.
Thanks!

vacancy · Jan 31, 2017

Easyapache 3 is a function that is enabled by default.

As mentioned, an important function that public_html folders to be not read by other accounts. FileProtect provides better directory security.

With 11.58 and Easyapache 4, this function is turned disabled by default. I had to run the /scripts/enablefileprotect command to activate it.

With 11.62 this function was turned on by default.

It also added a symlink protect function for mod_php and mod_suphp with 11.62, a very nice improvement. (Apache configuration > Global Configuration > Symlink Protect set on )

Kent Brockman · Jan 31, 2017

Interesting. But what permissions are exactly being modified?

vacancy · Jan 31, 2017

Kent Brockman said:
Interesting. But what permissions are exactly being modified?

There will be no change that affects the running of accounts.

disable fileprotect - public_html owner username username
enable fileprotect - public_html owner username nobody

Kent Brockman · Jan 31, 2017

Thanks. That's what I exactly wanted to know.

cPanelMichael · Jan 31, 2017

Hello,

File Protect will check the permissions and ownership values on each user account's public_html directory and each addon domain's DocumentRoot directory and then set the values accordingly. It also takes into account the use of Mod_Ruid2, which changes how the ownership value is configured.

You can directly view the file that enables the File Protect option if you'd like see how it works in the background:

Code:

 cat /usr/local/cpanel/scripts/enablefileprotect

Thank you.

Thread starter	Similar threads	Forum	Replies	Date
B	403 Forbidden Please forward this error screen to magicist.co's WebMaster	Web Servers and Applications	1	Jun 24, 2022
L	Error CPU usage is currently at 95%. Please, sign in to fix this problem.	Web Servers and Applications	30	Mar 6, 2021
B	Please Help, My website is loading on someone else website	Web Servers and Applications	8	Aug 11, 2020
G	Please Help on Apache Optimization! Website Keeps Knock.	Web Servers and Applications	2	Aug 9, 2020
W	Action Failed Unable to auto-login. Please contact support.	Web Servers and Applications	3	Apr 30, 2020

Search

Search

Please provide more info about EasyApache FileProtect feature

Kent Brockman

Well-Known Member

vacancy

Well-Known Member

Kent Brockman

Well-Known Member

vacancy

Well-Known Member

Kent Brockman

Well-Known Member

cPanelMichael

Administrator