Knowledgebase

Portal Home > Knowledgebase > Articles Database > Suhosin problem?? can anyone help


Suhosin problem?? can anyone help




Posted by alibabahost, 10-08-2009, 02:50 PM
Hi i have Suhosin installed on my server now some of my sites are facing problem i.e forums like ipb , vbulliten ,phpbb3 with the images on the forum are not displaying properly.. So is this problem related to the values of these two fields present in Suhosin suhosin.post.max_value_length = suhosin.request.max_value_length = is Suhosin good for shared servers?? thanks in advance
Posted by alanzkorner, 10-08-2009, 03:08 PM
Hello , Suhosin is uysed to increasing security on the server . Means like if you want to disable particular functions server wide and give exception on domain basis ..suhosin can be used .. I am nor sure how it has affected phpbb e.t.c . Put a phpinfo page in any of the domains and access it over url and locate suhosin.executor.func.blacklist in it . See if any critical or regular php functions needed for phpbb / vbulletin are seen in the blacklist .. if so locate the httpd.conf and under the virtualhost entry of the domain facing problem .. enter the entire disabled functions as suhosin.executor.func.blacklist = "exec, ....." excluding the unction that is needed .. Reply back meanwhile with your OS type .. Control Panel details e.t.c
Posted by alibabahost, 10-08-2009, 03:19 PM
Hi my OS is CENTOS 5.3 i686 and its loaded with cpanel 11..see some of my site i.e vbulliten forum are getting internal server error after the installation of Suhosin and some are showing blank pages..i heard that chmod 777 is not allowed in Suhosin.. thanks for your answer
Posted by alibabahost, 10-08-2009, 03:41 PM
and is increasing the values for those fields compromise the server in any way php_value suhosin.post.max_value_length 500000 php_value suhosin.request.max_value_length 500000
Posted by alanzkorner, 10-08-2009, 03:45 PM
Hello, Regarding vbullettin error Can you add the following lines to .htaccess of your root forum directory and see if it gets fixed .. php_flag suhosin.cookie.encrypt Off php_value suhosin.request.max_vars 2048 php_value suhosin.post.max_vars 2048 If so you can either copy the same ot all vbullettin forum sites .htaccess .. or add suhosin.session.encrypt = Off to your servers php.ini .. and restart httpd .to diusable this option serverwide and try ... Initially it will tak e bit effort to fix the present issues ..But suhosin is very good if security is also a primary concern .. it is good for shared hosting in the sense you can disable critical php functions serverwide but enable it on per doamin basis .. http://custommotif.com/info.php this is an example of what i said .. notice that exec function is enabled for this site as allowed in php but is disabled serverwide ..
Posted by Mach4-Chris, 10-08-2009, 03:59 PM
AFAIK, if you have phpsuexec enabled htaccess should not contain any php config values which should be specified in php.ini instead. Otherwise you may have problems running php. Incidentally, running suphp should provide a noticeable drop in cpu usage. I just gained 10% on a recent install. To answer one of your questions, Suhosin is well deployed in a shared environment. Last edited by Mach4-Chris; 10-08-2009 at 04:07 PM.
Posted by alibabahost, 10-08-2009, 04:20 PM
hi thanks every one @RedRat-Chris can you tell me is increasing these values damage security of system in any way php_value suhosin.post.max_value_length 500000 php_value suhosin.request.max_value_length 500000 i have changed them from 65000 to 5lakhs and what should be written in php.ini ??
Posted by madaboutlinux, 10-08-2009, 05:05 PM
The limit of 500000 is quite a big value. I mean why do you need such a high value? It is used to set the maximum length of the amount of characters allowed in a browser. It's just like typing a novel into their web browser BTW, the value can be changed by inserting the lines you mentioned in the php.ini file. Make sure you restart the Apache service for the changes to take effect.
Posted by alibabahost, 10-08-2009, 05:16 PM
Thanks but making these values to high.. will it compromise the system security of server in any way... and can you tell me why one of my vbulliten forum giving Internal Server Error after the installation of Suhosin.. Last edited by alibabahost; 10-08-2009 at 05:19 PM.
Posted by Steven, 10-08-2009, 09:38 PM
Check your /var/log/messages. It will tell you what suhosin is blocking.
Posted by alibabahost, 10-10-2009, 05:03 PM
Hi steven i am a new tos erver so can you please tell me how i can check it??
Posted by pmabraham, 10-22-2009, 10:37 AM
Greetings: grep suhosin /var/log/messages Thank you.
Posted by sosys, 03-17-2011, 12:38 PM
can anyone shared please what are the parameters that need to be included to make suhosin works without issue on joomla,wordpress, phpBB, or drupal ? thanks


Was this answer helpful?

Add to Favourites Add to Favourites    Print this Article Print this Article

Also Read
PacketLoss once again @ Managed.com (Views: 618)
XEN or Vmware ? (Views: 592)
Problem in Kayako Esupport (Views: 645)
Why some Saburovo Athlon's plans have disappeared ? (Views: 569)
Config of Windows Server. (Views: 597)