Archive for January, 2014

libgcc_s.so.1 must be installed for pthread_cancel to work

Most of time received libgcc error when the server running out of memory will cause this error. Very your current cpanel memory limit

# grep -i maxmem /var/cpanel/cpanel.config
maxmem=256

Simply increase the memory limitation to 512M, save the file, and run ‘/usr/local/cpanel/whostmgr/bin/whostmgr2 –updatetweaksettings’ to save the updated settings. For the memory to take effect, all that is typically required is a cPanel restart.

If still have this errors then check with apache RLimit in httpd configuration.

# grep RLimit /usr/local/apache/conf/httpd.conf
RLimitMEM 157286400
#

Advertisements

cPanel Plugin Registration

Posted: January 4, 2014 in cPanel

In cPanel & WHM 11.38.1, the AppConfig system was expanded. You can now use the AppConfig system to register and display WHM Plugins.

Note: By default, registration is required for WHM addons and is strongly recommend for cPanel & Webmail addons.

Note: Registration is only required if the admin has disabled the Allow apps that have not registered with AppConfig to be run when logged in as a reseller to WHM tweak setting (Home >> Server Configuration >> Tweak Settings). This option defaults to on in version 11.38.1.

You must use AppConfig to register your plugin’s urls, entry url, name, and display name.

Example Errors
The following error will display when you installed mod security plugin.

HTTP error 401
cgi/addon_modsec.cgi

WHM is configured to disallow execution of unregistered applications when logged in as root or a reseller with the “all” ACL. To enable this functionality you must do one of the following: Register this addon using /usr/local/cpanel/bin/register_appconfig (AppConfig), Enable the “Allow apps that have not registered with AppConfig to be run when logged in as root or a reseller with the “all” ACL in WHM” option in “Tweak Settings”, or add permit_unregistered_apps_as_root=1 to /var/cpanel/cpanel.config, and run /usr/local/cpanel/etc/init/startcpsrvd
cPanel Plugin Registration
Create folder if it does not exist.

mkdir /var/cpanel/apps
chmod 755 /var/cpanel/apps

Create a configuration (.conf) file for your plugin. For mod security,

vi addon_modsec.conf

# name
name=addon_modsec

# Service that will serve this app
service=whostmgr

# Physical path: /usr/local/cpanel/3rdparty/Foo.php
# Literal URL path: $server:$port/$cpsession/3rdparty/Foo.php
url=/cgi/addon_modsec.cgi

# System user to run process as
user=root

# Required acls
acls=any

# Display name as show in the service ui
displayname=addon_modsec
Then register mod security plugin

/usr/local/cpanel/bin/register_appconfig addon_modsec.conf

Thats all…

In order to unregister, use this command

/usr/local/cpanel/bin/unregister_appconfig addon_modsec.conf

/usr/local/cpanel/bin/show_appconfig — This script displays a YAML-formatted list of applications that are registered with AppConfig and their settings.

Install custom Modules

Posted: January 4, 2014 in cPanel

We can use custom modules such as Apache and PHP modules also known as “Opt Mods” and “optmods” through the EasyApache system. You can access these modules from both the command line and the WHM interface. EasyApache will compile these custom modules as well as all the other modules you select into PHP and Apache.

How to install custome module
Use the following steps at the command line to install custom modules.

cd /var/cpanel/easy/apache/custom_opt_mods/

Download your custome module for example mod_GeoIP

wget http://docs.cpanel.net/twiki/pub/EasyApache/EasyApacheCustomModules/custom_opt_mod-mod_geoip.tar.gz

tar -zxvf custom_opt_mod-mod_geoip.tar.gz

Easy apache

/scripts/easyapache

Remove custom module
In order to remove a custom module from the server, delete the files associated with that custom module folder. after that run EasyApache.

You can refer custom modules documentation for more information.

WHM — Navigate to Home >> Software >> EasyApache (Apache Update) >> Help >> Cpanel::Easy Framework POD
or
/scripts/easyapache –perldoc

If you have problems when you build Apache with custom modules, execute the /scripts/easyapache –skip-custom-optmods command to revert back all the default settings.

Available Modules

mod_auth_mysql

mod_GeoIP

mod_wsgi

GD with JIS-mapped Japanese font support

Turkish locale patch for PHP5

suPHP PAM patch

mpm-itk

PHP4

mod_reqtimeout

mod_remoteip

mod_pagespeed

cPanel Security Advisor Addon

Posted: January 4, 2014 in cPanel

This security advisor addon has only been tested on 11.38. Installing this addon is easy, using Git. Git is a powerful version control tool cPanel. It’s also included with cPanel & WHM and the tool used here to check out the cPanel Security Advisor. Git is also distributed with CentOS/RHEL, but cPanel has it’s own version based on the perl modules that cPanel installs.

Feature

Collect feedback on what security items we can enable by default without causing problems.
Provide a way for cPanel to directly provide advice on how to secure your server on a single page.
Highlight new security features as they are added to cPanel/WHM.

How to install cpanel security advisor addon ?
Download security advisor git

/usr/local/cpanel/3rdparty/bin/git clone https://github.com/bdraco/addon_securityadvisor.git

cd addon_securityadvisor/pkg

./install

Next, log into WHM and go to the Plugins section on left menu to locate the Security Advisor Tool.

Clicking through that link will automatically run the cPanel Security Advisor, and the test will only take a moment.

It’s important to know that each security decision you are making here, is a risk versus reward situation. If you choose to take the risk, it’s important to know consequences and to be best prepared.

cPanel Security Advisor is very basic and if possible, you can use CSF security check options to check the cpanel security.

Uninstall cPanel security addon.
cd /usr/local/cpanel/3rdparty/bin/addon_securityadvisor/pkg/

./uninstall