Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Security - mod_security and ruid2 (NOOB security question)

Discussion in 'EasyApache' started by symster, Apr 19, 2016.

  1. symster

    symster Registered

    Joined:
    Apr 12, 2016
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    the office nextdoor
    cPanel Access Level:
    Root Administrator
    hi,

    i'm trying to "do all the right things" on my new server.
    so i'm obligingly following the configserver security & firewall directions, and the security advisor directions.
    one of the tips is to enable mod ruid2 to get the jailcells going, and then - another tip is to get apache safe with mod_security.
    from documentation on this site, i see that this is like locking cain and abel in the same room with a pile of rocks and a bottle of rum, and there's no mediation in sight.

    be that as it may - i really just want to keep my little server safe, minimize attacks on websites and on mail functionality, with the least amount of infighting inside the server.

    what's the best practice course of action?
    what are the influencers when choosing my weapons between mod_security / mod ruid2?

    thanks!
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,659
    Likes Received:
    1,427
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello :)

    Some users prefer to use CageFS as a filesystem-level alternative to Mod_Ruid2+Jailshell:

    CageFS

    You can review the various options for protection against symlink attacks at:

    Symlink Race Condition Protection - EasyApache - cPanel Documentation

    You may also find the following documents helpful when attempting to secure your server:

    Tips to Make Your Server More Secure - cPanel Knowledge Base - cPanel Documentation
    How to Secure SSH - cPanel Knowledge Base - cPanel Documentation

    Thank you.
     
Loading...

Share This Page