If you’re getting Internal server error all over the places on your websites on a cPanel server and PHP is configured to run as suphp CGI mode, then you might be observing the following error on error_log due to ModSecurity. It might be searching for the sticky/suid permission on suphp binary:
SecurityException in Application.cpp:188: Do not have root privileges. Executable not set-uid
To quickly get this fixed on your cPanel server execute the following command:
To limit tomcat heap memory usage we normally change the environment variables in tomcat startup scripts. cPanel allows us to take care of this by creating and adding min and max values to a file called /var/cpanel/tomcat.options (File won’t exist by default).
the “-Xms” initial Java heap size for the application to 100MB, and the “-Xmx” maximum Java heap size to 200MB. If the – is not placed in front of the option when putting the values into /var/cpanel/tomcat.options file that is created, then Tomcat will refuse to startup properly.
This method would be preferred over directly editing /usr/sbin/starttomcat. The /var/cpanel/tomcat.options file would not be edited by cPanel scripts or upon updates.
Monitoring servers with RAID controllers is made easy through Nagios and other monitoring systems. Today its quite easy to get an app installed on your mobile and configure it to display critical errors from Nagios to quickly act on. When you’re an in-charge of Infrastructure, monitoring RAID becomes very very critical. While digging around simple ways to monitor Adaptec raid cards, a tiny little piece of script found on Nagios exchange - check-aacraid.py by Anchor Systems.
This script works with the Storage Manager – arcconf installed to manage RAID Cards.
Here is an excerpt from Nagios Exchange on check-aacraid script configuration for your quick reference :-
Check the health of an Adaptec raid controller using /usr/StorMan/arcconf Checks the following: Logical device status, Controller status, Failed & Degraded drives. If the battery is present: Charging status, Est of charge time left, Charge left %. And removes the log file “UcliEvt.log” that is dropped into the CWD when /usr/StorMan/arcconf is run.
Check the health of an Adaptec raid controller using /usr/StorMan/arcconf
Checks the following:
Logical device status
Failed & Degraded drives
If battery present:
Est of charge time left
Charge left %
And removes the log file “UcliEvt.log” that is dropped into the CWD when /usr/StorMan/arcconf is run.
Add this to your “/etc/sudoers” file using visudo "nagios ALL=(root) NOPASSWD: /usr/StorMan/arcconf GETCONFIG 1 *"
## On RHEL & possibly others ##
Disable “Defaults requiretty” in /etc/sudoers otherwise the command will not run via NRPE.
If you install CSF on your server along with Mod_security you might see it blocking google bot for some specific rules. At times you might find it offensive to remove some of the mod_security rules from the configuration just to allow Google bots.
Here is what you should be doing to make Google Bots crawl through your sites again.
Just add the following rules to mod_security configuration file and restart apache.