Security advisor warning about enabling suexec
Hi,
I just upgraded my OS from Ubuntu 20 to 22 and cpanel from 118 to 126, all latest.
Now the security advisor is stating:
"
Important
suEXEC is disabled.
Enable suEXEC on the “Configure PHP and suEXEC” page.
"
Clicking the link of “Configure PHP and suEXEC” leads to a plain text error of "The EasyApache4 Technology Preview needs to be configured via command-line tools. The WHM user interface does not currently support this Technology Preview."
Going to the "MultiPHP Manager" page shows I use only one PHP version, PHP-FPM is enabled and the php handler is suphp.
So, what should I do here?
-
Hey there! Is it possible that your server has the WHM >> Tweak Settings >> Enable File Protect option turned on? If so, you could keep that enabled and just install mod_suexec through EasyApache 4 to resolve the issue.
0 -
Thank you cPRex.
I see there is an alternative for suexec called ruid2, that is considered faster than suexec but may be incompatible with mod_security (I have mod-security2 enabled).
I read it here - https://www.domainindia.com/login/knowledgebase/689/-Mastering-Apache-Execution-Models-The-Ultimate-Comprehensive-Guide.htmlWhat should I choose between the two? (I use the CP solo edition)
0 -
Those compatibility issues have been resolved for some time, so you're free to choose whatever option you think will work best for your system.
0 -
Great, thank you.
And if I will choose to use ruid2 - the security advisor scanner won't alert me again that suexec is missing (as I will remove it)? it will know that ruid2 is replacing it?
0 -
Correct - it should detect that and then stop the warning.
0 -
Awesome, thanks a lot!!!
0 -
You're very welcome!
0
Please sign in to leave a comment.
Comments
7 comments