Apache Symlink Protection: mod_ruid2 loaded in Apache

mod_ruid2 is enabled in Apache. To ensure that this aids in protecting from symlink attacks, Jailed Apache needs to be enabled. If this not set properly, you should see an indication in Security Advisor (this page) in the sections for “Apache vhosts are not segmented or chroot()ed” and “Users running outside of the jail”. If those are not present, your users should be properly jailed. Review Symlink Race Condition Protection for further information.

Use Imunify360 for complete protection against attacks on your servers.

Use Imunify360 for a comprehensive suite of protection against attacks on your servers.

• Multi-layered defense stops attacks with advanced firewall, herd immunity, Intrusion Prevention System, and more.
• Powered by AI with advanced detection of brute force attacks, zero-day, and unknown security threats.
• Proactive Defense™ recognizes malicious code in real-time and stops malware in its tracks.
• Easy management right inside your WHM interface.
• Patch Management via KernelCare and hardened PHP
• Learn more about Imunify360

Use KernelCare to automate kernel security updates without reboots.

KernelCare provides an easy and effortless way to ensure that your operating system uses the most up-to-date kernel without the need to reboot your server. After you purchase and install KernelCare, you can obtain and install the KernelCare “Extra” Patchset, which includes symlink protection.

Get KernelCare for $3.00/month.