suEXEC

Virtualmin
1

I recently installed Webmin/Virtualmin/usermin using the install.sh script on a clean install of CentOS 6.3. The install went smoothly; however, now I am getting the following error on the “Checking Configuration” page: “The Suexec command on your system is configured to only run scripts under /var/www, but the Virtualmin virtual server home directory is /home. CGI and PHP scripts run as domain owners will not be executed.”

I found the following post, but it didn’t fix the problem:
http://webminforum.com/viewtopic.php?f=5&t=177
When I follow those instructions, I get the following error, “Failed to save server template : PHP scripts cannot be run as the domain owner unless suexec is enabled”
Even if it worked, wouldn’t that just disable suEXEC? I don’t want that.

How do I resolve this problem?

2

Howdy,

Hmm, that’s an odd issue… do you by chance have any third party repositories enabled?

It sounds like there’s an issue with Apache – and I’m wondering if maybe an alternate Apache version was pulled down.

What is the output of these two commands:

ls /etc/yum.repos.d/ rpm -qa | grep httpd
3

I have the EPEL repo installed, I use it for htop, iotop, fail2ban, and some other misc utilities; however, yum-plugin-priorities is installed and configured, so it shouldn’t interfere with any other repos.

$ sudo yum list httpd*
Installed Packages
httpd.x86_64 2.2.15-15.el6.centos.1 @base
httpd-tools.x86_64 2.2.15-15.el6.centos.1 @base

$ rpm -qa | grep httpd
httpd-2.2.15-15.el6.centos.1.x86_64
httpd-tools-2.2.15-15.el6.centos.1.x86_64

4

Well, it appears the issue is that it installed the Apache version from the CentOS repo, rather than from the Virtualmin repo.

You’d want the Apache from Virtualmin, as it comes with an suexec version configured to run out of /home.

That normally would happen by default though – is it possible the priorities were changed in a way that took priority away from the Virtualmin repo?

However, you could always manually install Apache from the Virtualmin repository.

-Eric

5

I have decided to wipe the server and start from scratch. I’ll run install.sh before enabling the EPEL repo, and that will hopefully resolve the problem. Thank you very much for your help, I really appreciate it.