mod_ruid2 may be broken on Rocky Linux 8
I just spent way too long tracking this down and wanted to share in case anyone else hits it.
New cPanel server on Rocky Linux 8. (kernel-4.18.0-477.13.1.el8_8.x86_64)
It installed mod_ruid2 by default. Using mpm-prefork.
WHM and cPanel web services work fine.
Any web request to the hostname or the one vhost that I have always return 500 Server Error and the httpd child process aborts. Every hit.
I eventually discovered that turning off mod_ruid2 solves the aborting problem, but web server returns 403 Forbidden because user 'nobody' cannot read anything.
-
Hey there! Let me do some testing with this and I'll get back with you soon! 0 -
I wasn't able to reproduce this on a test machine. I created a server running cPanel 112 on RockyLinux 8, created one vhost with a basic PHP Info page, and I was able to load that page normally with mod_ruid2 installed and running. No odd errors were present in the browser or in the Apache error log. I also am not seeing any similar behavior when I searched our ticket system, so it does seem like this may be an isolated issue with your environment. 0 -
I wasn't able to reproduce this on a test machine. I created a server running cPanel 112 on RockyLinux 8, created one vhost with a basic PHP Info page, and I was able to load that page normally with mod_ruid2 installed and running. No odd errors were present in the browser or in the Apache error log. I also am not seeing any similar behavior when I searched our ticket system, so it does seem like this may be an isolated issue with your environment.
Good to know, thanks for following up.0 -
Sure thing! 0 -
This happened to me on a system running either Almalinux 8 or Centos 7.9, it crashed and I had to reinstall whm cpanel and migrate the backups again
0 -
Is it recommended to activate this mod_ruid2 function?
enable jail apache
0 -
Raphael Araujo - we do recommend that, yes. You can find some additional details about that option here: https://support.cpanel.net/hc/en-us/articles/360047967413-Why-does-Security-Advisor-report-Apache-vhosts-are-not-segmented-or-chroot-ed-
0
Please sign in to leave a comment.
Comments
7 comments