Which is best: Suphp vs. mod_ruid2

nobaloney said:
Do you believe this to be good?
Click to expand...
Not really I think. I rather use the noexec,nosuid,nodev,rw just to be sure.
There are other ways hackers can abuse the system, so making /tmp readonly only takes care of the most basic attempts to execute scripts in /tmp as far as I understood. However... I was glad I had it because these kind of attempts is made often enough through bad or leak joomla (or other CMS) installations or addons (amongst other things) as well on cpanel servers as on DA servers. So the noexec is really a basic part of security imho.

zEitEr said:
I've never faced such an issue. How much is that actual for a standart set of software (LAMP) on Directadmin powered server? Do you know which exact services do require it?
Click to expand...
I've had it once. This was not on a default service but had to do with Centovacast or shoutcast or something like that if I remember correctly.
However, it is pointed to on several forums so I made that just to be sure. In that case I can't get into problems and don't have to search for why it's occuring.
I'm not sure anymore if I ever faced it on a default DA installation, I just put it in by default like this.
 
I hope we are safe here with /tmp mounted with noexec
Click to expand...
Yes but only combined with good other security measures like a good firewall, mod_ruid2, etc.. but that's nothing new to you, I just mention it for new users reading this.
 
So if suPHP is EOL, what can I use safely with Custombuild 2.0 with also using 2 php version.

mod_ruid2 is only allowed for 1 php running version if I understand correctly
 
You must log in or register to reply here.
Back
Top