Tweet
Hello,
CLOUDLINUX 6.5 x86_64 installed on Cpanel 11.40.1.
cagefs version: 5.2-21
Effective kernel version is 2.6.32-458.23.2.lve1.2.48.el6
php is running as suphp
enabling cagefs for user with a wordpress site gives error 500 in browser, and error log file shows:
SoftException in Application.cpp:602: Could not execute script "/home//public_html/wp/index.php"
Caused by SystemException in API_Linux.cpp:444: execve() for program "/usr/bin/php" failed: Permission denied
Premature end of script headers: index.php
user has regular shell (bash) access and is able to login with disabled cagefs. If it gets enabled:
lve_suwrapper: /bin/bash: Permission denied
cagefsctl -e gives:
lve_suwrapper: /bin/bash: Permission denied
ls -la /home/cagefs-skeleton/bin/bash /home/cagefs-skeleton/usr/bin/php
-rwxr-xr-x 1 root root 903336 Jul 18 2013 /home/cagefs-skeleton/bin/bash*
lrwxrwxrwx 1 root root 20 Feb 3 15:46 /home/cagefs-skeleton/usr/bin/php -> /etc/cl.selector/php
grep cagefs /proc/mounts gives:
/dev/vda6 /home/cagefs-skeleton ext4 rw,nosuid,noexec,noatime,relatime,barrier=0,data=o rdered,jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda1 /home/cagefs-skeleton/var/lib/mysql ext4 rw,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
tmpfs /home/cagefs-skeleton/dev/shm tmpfs rw,nosuid,noexec,relatime 0 0
devpts /home/cagefs-skeleton/dev/pts devpts rw,nosuid,relatime,gid=5,mode=620,ptmxmode=000 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/apache/domlogs ext4 rw,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda1 /home/cagefs-skeleton/var/run/proxyexec/cagefs.sock ext4 rw,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda3 /home/cagefs-skeleton/opt ext4 rw,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda3 /home/cagefs-skeleton/lib ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/lib ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda3 /home/cagefs-skeleton/lib64 ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/lib64 ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/include ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/share/locale ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/share/terminfo ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/share/zoneinfo ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/share/vim ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/lib/perl5 ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/lib/php ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/cpanel/Cpanel ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/cpanel/3rdparty/perl ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/cpanel/3rdparty/lib ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/cpanel/3rdparty/share ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/cpanel/3rdparty/php ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/cpanel/whostmgr/docroot/cgi/softaculous ext4 rw,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda3 /home/cagefs-skeleton/opt/alt ext4 rw,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/opt/suphp/sbin ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
proc /home/cagefs-skeleton/proc proc rw,nosuid,relatime 0 0
/proc/bus/usb /home/cagefs-skeleton/proc/bus/usb usbfs rw,relatime 0 0
none /home/cagefs-skeleton/proc/sys/fs/binfmt_misc binfmt_misc rw,relatime 0 0
Please advise. Thanks.
CLOUDLINUX 6.5 x86_64 installed on Cpanel 11.40.1.
cagefs version: 5.2-21
Effective kernel version is 2.6.32-458.23.2.lve1.2.48.el6
php is running as suphp
enabling cagefs for user with a wordpress site gives error 500 in browser, and error log file shows:
SoftException in Application.cpp:602: Could not execute script "/home//public_html/wp/index.php"
Caused by SystemException in API_Linux.cpp:444: execve() for program "/usr/bin/php" failed: Permission denied
Premature end of script headers: index.php
user has regular shell (bash) access and is able to login with disabled cagefs. If it gets enabled:
lve_suwrapper: /bin/bash: Permission denied
cagefsctl -e gives:
lve_suwrapper: /bin/bash: Permission denied
ls -la /home/cagefs-skeleton/bin/bash /home/cagefs-skeleton/usr/bin/php
-rwxr-xr-x 1 root root 903336 Jul 18 2013 /home/cagefs-skeleton/bin/bash*
lrwxrwxrwx 1 root root 20 Feb 3 15:46 /home/cagefs-skeleton/usr/bin/php -> /etc/cl.selector/php
grep cagefs /proc/mounts gives:
/dev/vda6 /home/cagefs-skeleton ext4 rw,nosuid,noexec,noatime,relatime,barrier=0,data=o rdered,jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda1 /home/cagefs-skeleton/var/lib/mysql ext4 rw,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
tmpfs /home/cagefs-skeleton/dev/shm tmpfs rw,nosuid,noexec,relatime 0 0
devpts /home/cagefs-skeleton/dev/pts devpts rw,nosuid,relatime,gid=5,mode=620,ptmxmode=000 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/apache/domlogs ext4 rw,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda1 /home/cagefs-skeleton/var/run/proxyexec/cagefs.sock ext4 rw,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda3 /home/cagefs-skeleton/opt ext4 rw,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda3 /home/cagefs-skeleton/lib ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/lib ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda3 /home/cagefs-skeleton/lib64 ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/lib64 ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/include ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/share/locale ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/share/terminfo ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/share/zoneinfo ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/share/vim ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/lib/perl5 ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/lib/php ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/cpanel/Cpanel ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/cpanel/3rdparty/perl ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/cpanel/3rdparty/lib ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/cpanel/3rdparty/share ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/cpanel/3rdparty/php ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/usr/local/cpanel/whostmgr/docroot/cgi/softaculous ext4 rw,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda3 /home/cagefs-skeleton/opt/alt ext4 rw,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
/dev/vda2 /home/cagefs-skeleton/opt/suphp/sbin ext4 ro,nosuid,noatime,relatime,barrier=0,data=ordered, jqfmt=vfsv0,usrjquota=quota.user 0 0
proc /home/cagefs-skeleton/proc proc rw,nosuid,relatime 0 0
/proc/bus/usb /home/cagefs-skeleton/proc/bus/usb usbfs rw,relatime 0 0
none /home/cagefs-skeleton/proc/sys/fs/binfmt_misc binfmt_misc rw,relatime 0 0
Please advise. Thanks.
Comment