Host Tip #5: Use suPHP For Better Security

suphpEven I was not aware about this term few months back, then I actually start to use this on our servers. suPHP is a tool for executing PHP scripts with the permissions of their owners. It consists of an Apache module (mod_suphp) and a setuid root binary (suphp) that is called by the Apache module to change the uid of the process executing the PHP interpreter. suPHP is nothing but Secure PHP, so thus confirms this will be secure than normal PHP.

According to WordPress, it is one of the recommended security measures..

Hosting is more secure when PHP applications, like WordPress, are run using your account’s username instead of the server’s default shared username. The most common way nowadays for hosting companies to do this is using suPHP. Just ask your potential host if they run suPHP or something similar.

Using suPHP the file permissions can be set more securely, you can still being able to execute scripts on your site. In the suPHP environment, cPanel user name will have the needed permissions to read, write, and execute all the files.

If suPHP is enabled on the server then the PHP scripts will be running under the ownership of the account user. You can ask your Web Hosting whether they have the capacity to run suPHP, if yes, then you can enable it. Also do ask them whether you’ll have any drawbacks (just in case). You can also verify whether your Server is using suPHP or not.

Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Scroll to Top