mod_evasive causes error 500 in WHM

itmonitor

September 05, 2017 17:06

Hello, not sure this is the right forum. When enabling mod_evasive on Centos 7.3 WHM 66.0.18 it will result in an error 500 when accessing the WHM login page through its web address. The login will work fine when accessing the WHM login page through the server IP. Any ideas how to solve this?

Comments

8 comments

cPanelMichael

September 06, 2017 17:27
Hello, Could you verify how you enabled Mod_Evasive? There's an experimental version available for EasyApache referenced under the comments section at: Mod_evasive support in easyapache4 Thank you.
0
itmonitor

September 06, 2017 19:06
Hello, thank you. I did not enable it through command line, but through EasyApache4 WHM [server] EasyApache | 0 - Image Removed. Please Attach Images - . At first I thought it was due to enabling 2FA. As I was unable to find the reason, the hosting company investigated and found out that
Here is the error I am seeing in a stack trace of Apache when trying to use the cPanel service aliases (/whm, /cpanel): ======================== 2294 20:51:39.558223 writev(2, [{"*** Error in `", 14}, {"/usr/sbin/httpd", 15}, {"': ", 3}, {"double free or corruption (!prev)", 33}, {": 0x", 4}, {"00007fe098bdd940", 16}, {" ***\n", 5}], 7) = 90
0
cPanelMichael

September 07, 2017 16:08
Hello, It looks like we are investigating this further as part of ticket number 8843445. I'll monitor this support ticket and update this thread with the outcome once it's closed. Thank you.
0
cPanelMichael

September 11, 2017 19:30
Hello, To update, it looks like our Technical Support Department was unable to reproduce the issue. The ticket was closed after no additional responses. Thank you.
0
itmonitor

September 17, 2017 13:49
Hi. I enabled now 2FA into WHM and it will break the WHM page - Removed Please Attach Images - 500 Internal Server Error. Had to disable 2FA to get WHM working again. Yes, I believe there is a bug here that should be investigated. If you want input on my part to solve this, please get back to me.
0
cPanelMichael

September 18, 2017 17:53
New Hi. I enabled now 2FA into WHM and it will break the WHM page - Removed Please Attach Images - 500 Internal Server Error. Had to disable 2FA to get WHM working again. Yes, I believe there is a bug here that should be investigated. If you want input on my part to solve this, please get back to me.

Are you able to reply to re-open ticket 8843445? It was closed without a response to last message sent by our Technical Analysts. Thank you.
0
itmonitor

September 19, 2017 08:29
Thank you. I re-opened the ticket.
0
itmonitor

September 20, 2017 21:55
Thank you Michael. The CPanel support found out that the issue was caused by a malformed JSON array in the users file for WHM's two factor authentication system, on
# cat /var/cpanel/authn/twofactor_auth/tfa_userdata.json "{}"
that was corrected to
# echo '{}' > /var/cpanel/authn/twofactor_auth/tfa_userdata.json # cat /var/cpanel/authn/twofactor_auth/tfa_userdata.json {}
Hope this helps others that may have the same issue. rgs IM
0

Please sign in to leave a comment.

Comments

Didn't find what you were looking for?