Logwatch

Logwatch is the classic log file email utility that emails a daily status of activity from Linux logs. On CentOS, the default install of logwatch does not have many fancy features enabled. I’ll show you how to configure logwatch!

First, install logwatch:

$ sudo yum install logwatch

 

(more…)

Continue ReadingLogwatch

FCGI w/ SuExec and Mod_Userdir Issues

Howdy,
 
  
With the recent push for servers to use FCGI as opposed to dso, cgi or suphp, we are seeing some issues regarding mod_userdir. With FCGI and SuExec, mod_userdir will not function as per cPanel’s documentation.

https://documentation.cpanel.net/display/ALD/Apache+mod_userdir+Tweak#Apachemod_userdirTweak-Enabledmod_userdirprotection

According to cPanel:

Enabled mod_userdir protection
Before you enable the mod_userdir module, be aware of the following information:

  • When you use FCGI as your PHP handler, you must disable suEXEC in order to run PHP scripts via the mod_userdir module.

    •  

    Warning: We strongly recommend that you do not disable suEXEC. 
It is extremely insecure to disable suEXEC.

  • Java servlets do not work with mod_userdir-based URLs. This is because Tomcat requires that you add additional directives to the virtual host.

    •  

  • open_basedir protection restricts PHP’s access to the home directory of the user who owns the base domain, not the home directory of the user account that a visitor accesses. If you enable open_basedir protection in WHM’s PHP open_basedir Tweak interface (Home >> Security Center >> PHP open_basedir Tweak) visitors cannot access some sites via the mod_userdir module.

    •  

  • Under certain conditions, a user can attack another user’s account if they access a malicious script through a mod_userdir URL.

    •  
    Websites that use the mod_rewrite or other directives in their .htaccess files will not function correctly when visitors view them through mod_userdir URLs.

    (more…)

    Continue ReadingFCGI w/ SuExec and Mod_Userdir Issues

    A Guide to Cloud Linux

    From rootusers.com

    The purpose of Cloud Linux is to improve the overall stability, reliability and performance of a shared server. Cloud Linux limits each individual account to a set amount of CPU and memory (RAM) resources. This means that rather than a server going under load and becoming slow for all users on it, only the account causing problems will be restricted. As Cloud Linux is becoming more common on shared hosting servers, it is important to know how to troubleshoot common problems that come up when using it to get the most out of your website and hosting environment.

    I’ve used Cloud Linux for over a year now and think it’s great when used correctly, this article includes everything I have learned while using it during that time. A lot of users don’t like it because they have experienced it cutting the performance of their websites. With this guide you will be able to pin point issues and then work on resolving them. Although this information is aimed towards the server administrator, users within the Cloud Linux environment will find useful information for checking logs to find problems with their websites.

    (more…)

    Continue ReadingA Guide to Cloud Linux