Notification: Users with CloudLinux CageFS disabled

Amiga500

• May 15, 2024 14:45

We just received this notification:

Apache Symlink Protection: Users with CloudLinux CageFS disabled

There appear to be users with cagefs disabled on this server. CageFS in combination with other features of Cloudlinux can further increase security. For further information see the CageFS Documentation and the cPanel documentation on Symlink Race Condition Protection. You have 146 uncaged users.

Is this something new?  I haven't seen this until now.  Should we take action?  A little insight into what CageFS is and if it's really needed, required, etc....Can this notification be suppressed, or the feature turned off?

Thank you!

• 

  cPRex Jurassic Moderator

  • May 15, 2024 15:33

  Hey there!  CageFS is what allows you to set per-user limits on the system, so one user isn't able to take an entire server offline.  More details on what CageFS is can be found here:

  https://support.cpanel.net/hc/en-us/articles/1500009717042-What-is-CageFS

  If you have users excluded it may be because of this:

  https://support.cpanel.net/hc/en-us/articles/5304054187927-How-to-exclude-users-from-CageFS

  so you'd want to make sure that isn't the case.

  0
• 

  Amiga500

  • May 15, 2024 16:49

  Looks like our system has CageFS disabled for new accounts. 

  How important do you think having CageFS enabled is?  Does it really help? Pros/Cons?

   

  0
• 

  cPRex Jurassic Moderator

  • May 15, 2024 16:50

  I'm not sure I can outline it any better than the docs linked, but it's definitely a good thing to have enabled on shared servers.

  0

Please sign in to leave a comment.