OVH Community, your new community space.

mod_ruid2 question


LawsHosting
05-09-2011, 14:56
Well, it was a painless switch-over last night, but would like to hear about about any security threats with the kernal, think I'm ok with the grsec patch but, you know.

Thanks
LawsHosting
04-09-2011, 09:34
Might as well ask here too (already asked in the DirectAdmin forum, even though this isn't related).

If I install mod_ruid2, will that affect anything mod_security wise or even block the usage of php values (eg. php_flag, php_value, etc) in htaccesses? I gather not but its better to ask than having broken scripts.

I also hear:
there are some security issues, for instance if attacker successfully exploits the httpd process, he can set effective capabilities and setuid to root. i recommend to use some security patch in kernel (grsec), or something..
The OVH kernal has grc patch, so I should be ok right?

PS. I'm not too keen on PHP_CGI, although I did try it once, some scripts behaved abnormally.

TIA