How To Remove Suphp
i have many problem from this
i want to remove it
i had recompiled apache without it but it still working
View Complete Thread with Replies
Sponsored Links:
Related Forum Messages:
Remove Empty Folders And Remove From A Db
ive got a site which auto creates subdomains and installs a script automaticly and inserts details into a mysql db. i have had some issues recent so have loads (talking 100s) of folders that are empty which i need to remove, and to remove the details of said folder from db also. any ideas how i can do this, using plesk control panel so removing the subdomain via plesk cli may be the best way in that respect but the db is external to plesk so that would not be edited
View Replies!
View Related
Suphp
I use "suphp" on 3 servers I own with apache 2.2.6 and suddenly yesterday (15 hours ago) one of the servers show "Internal server error" on all sites. Tried rebuilding apache and php 4 times with no fix until I came to try handling php with cgi instead. (I always like to track who is using apache processes) well. getting to this fix was after 10 hours of all sites not working on the server. now (5 minutes ago) I go to http://www.suphp.org to read their docs for solution to find this Quote: Internal Server Error The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator, hostmaster@marsching.com and inform them of the time the error occurred, and anything you might have done that may have caused the error. More information about this error may be available in the server error log. Apache Server at www.suphp.org Port 80 Why did this suddenly arise while No changes were done on server software or config? I believe this happens after the first coming apache restart or something but dunno what was the reason yet maybe suphp.org guys have to update us when their site comes back online
View Replies!
View Related
SuPHP Along With Suhosin
we have installed suPHP along with suhosin on server to prevent upload of illegal scripts but still we are having problems with scripts used for phishing web sites! We have a lot of Joomla users and other php apps installed on server.
View Replies!
View Related
SuPHP Or EAccelerator
I have a Linux server for shared hosting in which I am using Cpanel/WHM. I have PHP running as suPHP which I believe is for security. The problem I am facing is a lot of PHP based websites create load on the server and consume as much as 10% of the CPU and sometimes some script even consumes 50% CPU. I think I can reduce the load caused by the PHP scripts by installing eAccelerator. However, it does not work with PHP running as suPHP. Can anybody tell me which one should I choose of the both? Is there any other way to reduce the load on the server?
View Replies!
View Related
Suphp On Webmin With Debian 5
I have just installed my vps with webmin on debian 5 and I need a guide to how to configure my system to use suphp, Ive googled it but not come back with any clear guide. I better add Ive plunged in at the deepend and after the secuity breach at Vaserv, I can not take the easy option and install lxadmin any longer.
View Replies!
View Related
SuPHP On A Dedicated Server
I'm running a dedicated server (ie my site only) which is primarily a vbulletin powered site. I was wondering if it is beneficial in running PHP as suPHP along with suhosin? A lot of articles I see seem to be aimed at shared setups where there are other users with various (possibly) untrusted scripts. It is a WHM/cPanel managed server which by default is set to run PHP5 as DSO (Apache module). suexec is installed however this only affect CGI scripts correct? I recently had a (paid) security audit completed and I asked the question about suhosin. The reply I got was: Quote: You do not need suhosin as you do not run suPHP we enforce posix acl's which will prevent vulnerable scripts from being able to download to the system easily and prevent the automated attacks. You can try this by installing a phpshell and you will see it's not very effective, only php functions are really of any use (such as readfile() and so on) but it will prevent things like wget xxx. Should I recompile Apache (via EasyApache) with suPHP and suhosin or just leave as is?
View Replies!
View Related
Register_globals With Suphp And SuEXEC
my server is centos and cpanel, i setup it with suphp and suEXEC, and i set the register_globals as off on server, now,i had a website need register_globals on, i search many articles and try to edit php.ini and .htaccess, but all still show FATAL ERROR: register_globals is disabled in php.ini, please enable it! or 500 internal error could anyone teach me how to solve the issue?
View Replies!
View Related
Broke Something When Playing Around With Suphp
suphp and spent the better part of the day configuring a new server and then upgrading it to suphp in preparation for a migration next week. However, I broke the links to var/www/html in the process and I don't know at what point it broke to know how to fix it. I have a couple of links that usually work to this directory: lax.powermonster.net/test.bin and [url] Both of which now come up to a 404 error from my main site: powermonster.net.
View Replies!
View Related
Suphp Working With Vsftpd
I am setting up a shared Server with apache2 and php5 + suhosin +suPHP + vsftpd. The Directory Structure is: 1. DocumentRoot /var/www/virtual/website1 /var/www/virtual/website2 /var/www/virtual/website3 ............etc 2. For each website I would create a system account and tie it to each virutal host(as required by suPHP) chown -R John:group1 /var/www/virtual/website1 chown -R Mary:group1 /var/www/virtual/website2 chown -R Ben:group1 /var/www/virtual/website3 ...........etc <VirtualHost 192.168.100.44> DocumentRoot /var/www/virtual/website1 ServerName www.website1.com suPHP_UserGroup John group1 </VirtualHost> <VirtualHost 192.168.100.45> DocumentRoot /var/www/virtual/website2 ServerName www.website2.com suPHP_UserGroup Mary group1 </VirtualHost> ........etc 3. I setup vsftpd with chroot to each virtual host. This works very nice as long as each client has only one ftp account. But if a client(website1) wants to have multiple ftp accounts( ex. john, john100, john200), they would mess up the file ownership when they upload and change files. Since suPHP executes PHP scripts with the permissions of their owners (suPHP_UserGroup John group1, suPHP would complain their setid is mismatched because the John100 is not the suPHP_USERGROUP owner(John). I have tried Virtual Hosting with Vsftpd and Mysql, that didn't work because all the virutal users would be acting as one user (guest_username=virtualftp) when they upload and change files. I am wondering if there is ways to allow multiple ftp accounts for each Virutal host working together with suPHP. Or It is possible for ftp user to change ownership once they log in.
View Replies!
View Related
SuPHP Bytes The Dust
After upgrading to Apache2, installing suPHP and mod_userdir, and enabling open_basedir, I can still browse other users webroot with a c99 shell script. to increase protection without needing safe_mode on?
View Replies!
View Related
Phpsuexec,,,suphp Issue
My server has update to WHM 11.11.0 cPanel 11.15.0-R17665 CENTOS Enterprise 5 i686 on standard - WHM X v3.1.0 apache 1.3.37 and now the server run without phpsuexec so i try to recompile apache with php security and suphp module but the php.ini files still didn't work in the client's sites and there is alot of scripts want php.ini files for safemode = off , etc even the top process show me nobody not users to know who spam or other tings i run this command /usr/local/cpanel/bin/rebuild_phpconf --current and i got php has not yet been configured with EA3 with the new update cpanel i can't run php.ini files anymore
View Replies!
View Related
Alternative To SuPHP (phpsuexec) For Plesk
As all we know suPHP or phpsuexec are coded to let apache run the script with file's owners name and not the "nobody" 1- Plesk does not support phpsuexec but its possible to setup suPHP on plesk! Any comment, suggestion experience? 2-My alternative I create a group for each single user named "apacheUSERNAME" and will assign both apache and the user to this group. Then I will change the group for any file/directory that needs 777 permission.But instead 775. Again suggestions are appreciated 3-Final comparator should be server load; How will be the server performance(load) with or without suPHP or phpsuexec
View Replies!
View Related
Apache 2.2, PHP 5, SuPHP, Forcetype
Forcetype does not appear to run correctly with Apache 2.2 and SuPHP. Most information suggests changing ForceType application/x-httpd-php To: ForceType x-httpd-php This does not work for me and php code is being displayed as text instead of being parsed by apache.
View Replies!
View Related
How Does A SuPHP Upgrade Mess Up A Website
One of my client's website is now hosed. When I go to all of the html pages, I get a message box that says You have chosen to open [blank line] which is a: text/x-server-parsed-html. The blank line means there is nothing there no filename. An email from the webhost said that a suPHP upgrade(?) caused this. The only PHP file I have is one that reads text files to put up on a News page. I am confused as to exactly how a suPHP upgrade which I have never heard of until today can cause this much damage.
View Replies!
View Related
Enabled Suphp But Still Can Read /etc/passwd
It there any good way to stop using from reading /etc/passwd? I have suPHP enabled and open_basedir enabled by WHM too. But it seems susphp ignores open_basedir restrictions? Here is virtual host config: <VirtualHost x.x.x.x:80> <IfModule concurrent_php.c> php4_admin_value open_basedir "/home/xxx/:/usr/lib/php:/usr/php4/lib/php:/usr/local/lib/php:/usr/local/php4/lib/p$ php5_admin_value open_basedir "/home/xxx/:/usr/lib/php:/usr/local/lib/php:/tmp" </IfModule> <IfModule !concurrent_php.c> <IfModule mod_php4.c> php_admin_value open_basedir "/home/xxx/:/usr/lib/php:/usr/php4/lib/php:/usr/local/lib/php:/usr/local/php4/li$ </IfModule> <IfModule mod_php5.c> php_admin_value open_basedir "/home/xxx/:/usr/lib/php:/usr/local/lib/php:/tmp" </IfModule> <IfModule sapi_apache2.c> php_admin_value open_basedir "/home/xxx/:/usr/lib/php:/usr/php4/lib/php:/usr/local/lib/php:/usr/local/php4/li$ </IfModule> </IfModule> ServerName xxx.com ServerAlias www.xxx.com DocumentRoot /home/xxx/public_html ServerAdmin webmaster@xxx.com UseCanonicalName Off CustomLog /usr/local/apache/domlogs/xxx.com combined CustomLog /usr/local/apache/domlogs/xxx.com-bytes_log "%{%s}t %I . %{%s}t %O ." ## User xxx # Needed for Cpanel::ApacheConf <IfModule mod_suphp.c> suPHP_UserGroup xxx xxx </IfModule> <IfModule !mod_disable_suexec.c> SuexecUserGroup xxx xxx </IfModule> ScriptAlias /cgi-bin/ /home/xxx/public_html/cgi-bin/ DocumentRoot /home/xxx/public_html ServerAdmin webmaster@xxx.com UseCanonicalName Off CustomLog /usr/local/apache/domlogs/xxx.com combined CustomLog /usr/local/apache/domlogs/xxx.com-bytes_log "%{%s}t %I . %{%s}t %O ." ## User xxx # Needed for Cpanel::ApacheConf <IfModule mod_suphp.c> suPHP_UserGroup xxx xxx </IfModule> <IfModule !mod_disable_suexec.c> SuexecUserGroup xxx xxx </IfModule> ScriptAlias /cgi-bin/ /home/xxx/public_html/cgi-bin/ # To customize this VirtualHost use an include file at the following location # Include "/usr/local/apache/conf/userdata/std/2/xxx/xxx.com/*.conf" </VirtualHost> Scripts are running with user's UID, and that is fine, but it can still read /etc/passwd file for example. How to fix that? Is it really open_basedir value is ignored by susphp? It works fine if I remove suphp and run scripts with nobody uid.
View Replies!
View Related
Smooth Migration From Mod_php To Suphp
When cpanel has apache 2.2 available. I am planning on switching my servers over to it and to SuPHP from mod_php. There are hundreds of accounts on my different servers and I am worried about the transition. I know cpanel has a permission conversion script, but I dont completely trust it. The biggest issue to me though, is all the users that have php_values and flags in their htaccess files that would then be needed converted to php.ini's. Has anyone created a conversion script for doing this in an automated fashion? I might not even convert my full servers to this and just do with the partial ones (less than 25%), but I really think it would benefit the customers and myself with the nice added layer of protection of suphp.
View Replies!
View Related
DirectAdmin./SUPHP (Anyone Run This Combo)
A server I have runs DA. On this server I switched php to SUPHP. This combo has worked 99% good so far except for one big pain in the ***. When ever a new domain, sub domain or a pointer domain is added I get a php_admin_flag error and Apache will not restart untill I rem out all instances of php_admin_flag lines in the httpd.conf file. Code: Stopping httpd: [FAILED] Starting httpd: Syntax error on line 31 of /usr/local/directadmin/data/users/****/httpd.conf: Invalid command 'php_admin_flag', perhaps mis-spelled or defined by a module not included in the server configuration [FAILED] Has anyone solved this? Apperantely the new version of DA was suppose to fix this but I upgraded DA today and at the end I ended having to rem out all php_admin_flag instances for all domains on that server which = good times.
View Replies!
View Related
SuPHP + CGI PHP And Zombie Processes
OS: CentOS 5 Software: Apache 2 / PHP CGI 5.8 / suPHP Today I took the leap and switched to suPHP, rather than the Apache module. This is just what suited us best for hosting our own websites, keeping them more isolated from eachother bar a certain shared directory. All is great, apart from I'm now noticing Zombie processes all of the time. These processes do seem to go away though, if I watch top the amount of Zombie processes will go up and down between 0 and 10. Code: 17471 gnation 15 0 0 0 0 Z 1 0.0 0:00.03 php-cgi <defunct> 17463 gnation 16 0 0 0 0 Z 1 0.0 0:00.02 php-cgi <defunct> 17467 gnation 16 0 0 0 0 Z 1 0.0 0:00.02 php-cgi <defunct> Are these processes a problem, considering they do leave after a while? I've read up about Zombie processes and it would seem that as long as they are closing at some point, instead of hanging around, then that's fine. Is this supposed to happen in my setup?
View Replies!
View Related
Will Cgi Suphp Affect The Code Running
i have a server with whm/cpanel, i use the "Apache Update" to compile the php4Aphp5 of the server, and i set the "PHP 5 Handler" as cgi, some account tell me his php script can not login any more, i want to ask,if i changing to cgi will affect it? if yes, how can i solve it?
View Replies!
View Related
Php 5 Handler Dso Vs Cgi Vs SuPHP
I wanted to ask an advice which php handler is the most secure to have on a shared server: dso vs cgi vs SuPHP I currently have dso with Suexec on and few accounts are getting phishing sites uploaded so I read that SuPHP is safer. What do you recommend? If I do change the server to SuPHP should I enable Suexec as well in the whm: Configure Suexec and PHP?
View Replies!
View Related
SuPHP - 600 Permissions Mess Up Css/images
I'm using suphp to secure a shared web hosting server and am confused about one issue I'm having. It is my understanding that using suphp, you should be able to chmod 755 all directories and chmod 600 all files since apache runs the .php files as the user. However, when I chmod 600 all files, the formatting of the sites gets messed up. It loses all css and if you try to view image files in the browser you get a permission denied error. Why is that? As a temporary solution, I can chmod 644 all files and then 600 only sensitive files like config files (wp-config.php for WordPress for example), but I'd rather just chmod 600 everything. Can anyone explain why 600 doesn't work? With 644 permissions, any user could upload a script like: Code: <?php $filename = realpath("/home/user/public_html/wp-config.php"); $handle = fopen($filename, "r"); $contents = fread($handle, filesize($filename)); fclose($handle); echo '<textarea name="textareaName" rows="46" cols="103">'.$contents.'</textarea>'; ?> and view another users's file if it is 644.
View Replies!
View Related
Suphp Creating 500 Internal Server Error
On my VPS SUPHP with PHP 5.2.9 and MySQL 5.0.77 is running absolutely fine. Suddenly without making any change on the server today i got a 500 internal server error. I don't think there is any permission problem. Now i change the PHP5 Handler to "cgi" so everything is normal but if i change that to suphp then showing "500 internal server error" anyone can tell the reason of the problem.... Apache suexec is "on" but off also doesn't make any change? There is any cache/temp file folder for suphp which is filled or some other problem?
View Replies!
View Related
Prevents Users From Overriding System Php.ini In SuPHP Mode
this is simple steps to Prevents users from overriding system php.ini in suPHP mode .... in CPanel servers first : you must make sure that suphp is installed as default handler than just edit your httpd.conf file or php.conf file ( will be better to use php.conf ) now add this line : Quote: suPHP_ConfigPath /usr/local/lib or ( Zend ) Quote: suPHP_ConfigPath /usr/local/Zend if you need to use only php.ini config file : Quote: suPHP_Config /usr/local/lib/php.ini
View Replies!
View Related
Remove Xen Xps
I have setup a xen VPS some time back. I need to remove it permanently. I have used the commands virsh destroy <domainID> as well as xm destroy <domainID>. However they only performs a shutdown. I can restore it back! I want to remove / wipe it permanently and memory consumed is given up then and reflected in the core server.
View Replies!
View Related
Remove History Command
Is there any way so that i can remove a specific command from history. 628 ll 629 cat bash.sh 630 man mail 631 exit 632 history You see my history command displays output as this. I need to remove the 630 th command. Is this possible ? I can use history -r but, it will remove all the commands executed in the session. I need a command to remove a specific thing from history.
View Replies!
View Related
Yum Remove Command
I had some issues with PHP compilation seems to be issue with zlib. So I decided to remove it. What happened then is something like nightmare... The command yum remove zlib removed zlib + all dependencies without asking me what to remove. So it removed majority of packages including yum itself. How can I force yum to not remove dependencies when I uninstall some package?
View Replies!
View Related
Remove CPanel Garbage....
I hate cpanl. It's bloated, slow, and just twice as hard to do anything(over command line). Anyways, how can I turn this crap off...it seems like ever time I reboot something comes back and changes conf files(installs older version of programs) and stuff like that. I've shut off any cpanel stuff I can find in the services startup and removed all crons but is there anything else? I get emails like cpsrvd failed @ Fri Jun 22 10:25:38 2007. A restart was attempted automagicly.
View Replies!
View Related
Is Logwatch Important? Can I Remove It
I'm running out of disk space on /var and it seem /var/cache/logwatch has almost 4GB of space. Can I remove everything inside and uninstall logwatch? How do I remove logwatch from the system and any affect of the system functionality. DirectAdmin CentOS4.4
View Replies!
View Related
|
TRACKER
