Search results

great works flawlessly... this is a revolution in security... makes suphp and standard suexec look like bandaids thank you guys so much for this, it is a real game changer for the industry

I installed lsapi 6 when I installed lsws 4.2 here is the output when logged into a user inside cagefs: [root@sr1 ../php-5.3.x]# su - governme [governme@sr1 ~]$ php -v PHP 5.3.9 with Suhosin-Patch (cli) (built: Sep 20 2012 03:35:18) Copyright (c) 1997-2012 The PHP Group Zend Engine...

Okay this might shed some light on the problem: here is the output of test.php uid=498(apache) gid=500(apache) groups=500(apache) as you can see the "groups" only shows apache, so the suexec daemon is only picking up the primary group now lets look at the output of command line: $...

I had tried those before posting, also tried the forcegid option... it seems they work when in normal suexec mode, but they get ignored when in "CageFS without suxec" mode. Interesting thing is they seem hard coded, the web server runs as user: apache group: apache But when running in...

This is amazing, it solves security for both server and customer, no longer will people have to settle on a half arse bandaid solution like suexec or suphp tested and working though you might want to note, for it to work because it forces group nobody... on directadmin servers you must turn off...

Some other threads of people wondering why the rulesets dont work: some gone un-answered its like you guys are avoiding mod security like the plague http://www.litespeedtech.com/support/forum/showthread.php?t=5203 http://www.litespeedtech.com/support/forum/showthread.php?t=2697...

webizen, why do I feel like I am talking in cirlces with you guys... read my posts above I showed you many rules which none of them work... I have tried every single ruleset available on the internet. None of them work. SO why dont you as a company support your product and actually show us...

Sorry for the typos swype on my phone is being retarded

You mean mod security is not on your priority list... Like I stated you fail to provide any list of any rules that actually work with litspeed... if none of the available rules anywhere on the internet work with Litespeed.. How cam you claim you support mod security because you dont.. Nor are...

any update?

any update?

any update?

What we were asking is for lsapi php to be caged within cagefs... suexec = bad and this is why: any site running suexec is easily hacked because all files are writable by the user so an attacker can install backdoors all over the place even inject malicious code into good code etc The...

I know it currently needs to be enabled... That was not my request... I made a feature request... There is no bug report that needs to ne submitted... Please take the time to read the request.

Any of the rules in the owasp core ruleset... I disabled everything but the basic tires and no mater what I disabled.. litepeed choked. Follow the url I provided and try to load any of the rules you will see for yourself, none of thsm work

P.S. do some googling there is actually several hosting companies leaving litespeed because you give the impression that security is a joke and not to be taken seriously

We pay for litespeed as a product, it is not free it is not open source it is paid monthly and it is expensive, more expensive than any other component of web hosting except for the physical server itself. We expect litespeed to take security seriously especially since it is a paid product...

You state in the post I quoted that you dont support the wiki states that But yet you dont support even the basic core ruleset: https://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project it doesnt matter if I disable lua xml or even all of the configuration...

I love that this product costs $45 a month for a 2cpu license per server... but you cannot even get a response from the staff.... This was once a promising product and I am quickly losing faith in your company

You dont even support the basic rule sets for it much less any of the advanced ones you mentioned not supporting. We cannot even use the basic config