jerdoggmckoy

Active Member
Jun 3, 2013
36
0
6
St Paul, MN
cPanel Access Level
Root Administrator
Hey, I'm about to run the EasyApache recompile. Is it recommended, and what are some pros or cons to including / installing the following:

  • Mod Security (I have ConfigServer Security & Firewall)
  • SourceGuardian Loader
  • Xcache for PHP
  • Zend Optimizer for PHP

Thanks in advance for any help!
 

cPanelMichael

Technical Support Community Manager
Staff member
Apr 11, 2011
47,911
2,234
363
cPanel Access Level
DataCenter Provider
Twitter
Hello :)

Yes, EasyApache is the recommended method to update your versions of Apache/PHP, or to enable additional Apache/PHP modules.

You can find documentation on Mod_Security at:

EasyApache - Mod_Security

As for the other modules, you can search for them using the "Search" feature on these forums, as there are several results discussing these modules.

Thank you.
 

jerdoggmckoy

Active Member
Jun 3, 2013
36
0
6
St Paul, MN
cPanel Access Level
Root Administrator
Thank you very much for the help. I had however spent plenty of time searching before I created this post. The problem is that almost anything related to the specifics of these various modules is pertaining to conflicts with certain php versions or errors the users are experiencing. I haven't found anything that really breaks down, yes you want "X" because it will help you with this & no, you don't want "Y" as it will cause you a headache if someone serves you vegetables without knowing about it, etc. =)

I thought someone might be able to just offer a quick basic breakdown of add, don't add, add, etc.

Thanks in advance for any additional help or input!
 

ThinIce

Well-Known Member
Apr 27, 2006
352
9
168
Disillusioned in England
cPanel Access Level
Root Administrator
You might be better off looking at the actual developer docs / website for each module. Mod security is very handy if you have lots of different customer applications (some of which are going to be vulnerable) to protect against general patterns of attack (indeed it labels itself a firewall of sorts for this reason). Pros are the additional protection to web applications, cons are increased load and investigating and resolving false positives (where the ruleset you choose to use blocks a legitimate activity in a web app, resulting in a 406 error).

Source guardian and zend are required if you wish to allow your users to use scripts that have been encoded with them. Generally this will be commercial software although the encoding may also have been done for performance reasons, you might find that clients with encoded software never update it, because they have to pay for the new version although this is a generalisation.

Xcache - php cache to speed up page loading time, may or may not interfere with other caching plugins / decoders installed. May be not necessary or very necessary depending on the sites you host.

Unfortunately it really does depend on who your clients are and what they'll require vs what you want to provide them with. Generally speaking easy apache will disable anything that a new choice directly conflicts with but if you're not sure it's best NOT to compile things in until you know you need, understand and have tested them