opcache directadmin plugins

[MisterM]

Hello

As my subject indicates, is there a plugin that manages Opcache on the server as under plesk?

 

[Active8]

no, but you can make your own custom opchache.ini file if this is what you need:

First you copy file over.

cd /usr/local/directadmin/custombuild
mkdir -p custom/opcache
cp -p configure/opcache/opcache.ini custom/opcache/opcache.ini

Then make and save any changes to opcache.ini

Code:
nano custom/opcache/opcache.ini

Then run

Code:
./build opcache

Any changes in opcache setting will now survive any updates

 

[Richard G]

And if necessery you can also create a per php version custom opcache.ini file.

 

[johannes]

There is a nice GUI, you cannot do much, but at least invalidate/clear cache, and view live usage .. https://github.com/amnuts/opcache-gui

 

[TheTool]

Well my question would be why did DA decide to alter the default opcache values? Seems ridiculous to have to create a custom file to reinstate the default opcache values.

 

[Richard G]

Well my question would be why did DA decide to alter the default opcache values?

Most values are still default and if DA changes something then it's mostly to benefit DA installations and normally you don't need a custom file for opcache.

 

[TheTool]

My application requires the default values so unfortunately I have to create a custom file to have the default values. Hopefully they do not interfere with DA.

 

[Richard G]

What default values are you talking about then?
Because only these were changed (if even changed):
opcache.max_accelerated_files
opcache.revalidate_freq=0
opcache.validate_permission=1
opcache.enable_file_override=1
opcache.restrict_api=1 <-- this one was for security reasons.

Other things were not changed.

 

[TheTool]

Yes, those are the ones.

 

[zEitEr]

opcache.restrict_api=1 <-- this one was for security reasons.

Unless you get the error:

“Zend OPcache API is restricted by “restrict_api” configuration directive”

when need running OPcache functions: https://help.zend.com/zend/current/content/zendserverapi/zend_opcache-php_api.htm

 

[Richard G]

Unless you get the error:

Correct.
I myself didn't get any error notice, but I had to disable this setting to have my opcache GUI working in full, otherwise I would miss part of the output.
Anyway, I was just mentioning the things DA changed from default.

 

[Erulezz]

I also had that error restrict_api with Nextcloud but this "security feature" can easily be bypassed with for example cron job:

/usr/local/php83/bin/php -d memory_limit=512M -d opcache.restrict_api=""

So in theory that does nothing and users can call the api even if it's disabled in opcache.ini?

 

[zEitEr]

So in theory that does nothing and users can call the api even if it's disabled in opcache.ini?

Can the restriction be disabled when PHP is used as PHP-FPM for a website?

 

[Erulezz]

Can the restriction be disabled when PHP is used as PHP-FPM for a website?

Yes that’s my experience. New default OPCache settings, nextcloud was complaining about restricted API access. Warning went away with the directive in the cron job in my previous post, with no changes to server config