ea-nginx dependency over ea-modsec30 differs in CentOS and CloudLinux

Indianets · May 2, 2021

Hello,

On a CentOS 7 server I installed ea-nginx without any issues with modsec2 working with apache.

Bash:

# cat /etc/redhat-release
CentOS Linux release 7.9.2009 (Core)

# rpm -qa | grep -e nginx -e mod_*sec
ea-apache24-mod_security2-2.9.3-12.12.6.cpanel.x86_64
ea-modsec-sdbm-util-0.02-1.1.29.cpanel.x86_64
cpanel-ng-whm-nginx-manager-8-1.cp1196.noarch
ea-nginx-1.20.0-1.1.1.cpanel.x86_64

But on a CloudLinux 7 server I cannot do the same. ea-nginx has a dependency on ea-modsec30 which conflicts with ea-apache24-mod_security2.

Bash:

Resolving Dependencies
--> Running transaction check
---> Package ea-nginx.x86_64 3:1.19.7-3.el7.cloudlinux will be installed
--> Processing Dependency: ea-modsec30 for package: 3:ea-nginx-1.19.7-3.el7.cloudlinux.x86_64
--> Processing Dependency: ea-modsec30-connector-nginx for package: 3:ea-nginx-1.19.7-3.el7.cloudlinux.x86_64
--> Running transaction check
---> Package ea-modsec30.x86_64 1:3.0.4-6.el7.cloudlinux will be installed
---> Package ea-modsec30-connector-nginx.x86_64 1:1.0.1-1.el7.cloudlinux will be installed
--> Processing Conflict: 2:ea-apache24-mod_security2-2.9.3-4.el7.cloudlinux.x86_64 conflicts mod_security
--> Processing Conflict: 1:ea-modsec30-3.0.4-6.el7.cloudlinux.x86_64 conflicts ea-apache24-mod_security2
--> Finished Dependency Resolution

Is there anything I am missing? Why this different behavior and which one is the right behavior?

Thanks

ankeshanand · May 3, 2021

Indianets said:

Hello,

On a CentOS 7 server I installed ea-nginx without any issues with modsec2 working with apache.

Bash:

# cat /etc/redhat-release
CentOS Linux release 7.9.2009 (Core)

# rpm -qa | grep -e nginx -e mod_*sec
ea-apache24-mod_security2-2.9.3-12.12.6.cpanel.x86_64
ea-modsec-sdbm-util-0.02-1.1.29.cpanel.x86_64
cpanel-ng-whm-nginx-manager-8-1.cp1196.noarch
ea-nginx-1.20.0-1.1.1.cpanel.x86_64

But on a CloudLinux 7 server I cannot do the same. ea-nginx has a dependency on ea-modsec30 which conflicts with ea-apache24-mod_security2.

Bash:

Resolving Dependencies
--> Running transaction check
---> Package ea-nginx.x86_64 3:1.19.7-3.el7.cloudlinux will be installed
--> Processing Dependency: ea-modsec30 for package: 3:ea-nginx-1.19.7-3.el7.cloudlinux.x86_64
--> Processing Dependency: ea-modsec30-connector-nginx for package: 3:ea-nginx-1.19.7-3.el7.cloudlinux.x86_64
--> Running transaction check
---> Package ea-modsec30.x86_64 1:3.0.4-6.el7.cloudlinux will be installed
---> Package ea-modsec30-connector-nginx.x86_64 1:1.0.1-1.el7.cloudlinux will be installed
--> Processing Conflict: 2:ea-apache24-mod_security2-2.9.3-4.el7.cloudlinux.x86_64 conflicts mod_security
--> Processing Conflict: 1:ea-modsec30-3.0.4-6.el7.cloudlinux.x86_64 conflicts ea-apache24-mod_security2
--> Finished Dependency Resolution

Is there anything I am missing? Why this different behavior and which one is the right behavior?

Thanks

Its processing the Conflict by Disabling/Enabling modules and its normal behaviour.

Code:

--> Processing Conflict: 2:ea-apache24-mod_security2-2.9.3-4.el7.cloudlinux.x86_64 conflicts mod_security
--> Processing Conflict: 1:ea-modsec30-3.0.4-6.el7.cloudlinux.x86_64 conflicts ea-apache24-mod_security2

EasyApache4 has Inbuilt profile pre-made for CloudLinux+All PHP Options+NGINX .Maybe, You should try directly Provisioning it because there are no conflicts in that!

Indianets · May 3, 2021

ankeshanand said:
EasyApache4 has Inbuilt profile pre-made for CloudLinux+All PHP Options+NGINX .Maybe, You should try directly Provisioning it because there are no conflicts in that!

It has nothing to do with original question in this thread.

Let someone from cPanel have a look so that they can replicate the same on test boxes having CentOS and CloudLinux.

cPRex · May 3, 2021

Hey there! I created a 96.0.1 cPanel server running on CloudLinux 7. The only warning I got when installing the ea-nginx package was to choose the version of Ruby Passenger, either 2.4 or 2.7. After that, the provision process went through just fine with no dependency problems. I also confirmed I had this version of ModSecurity installed:

ea-apache24-mod_security2-2.9.3-4.el7.cloudlinux.x86_64

Could you run this on your server and post the results?

Code:

rpm -qa | grep mod_security

as this would show all the packages and potentially let us see the conflict.

Indianets · May 4, 2021

cPRex said:
Hey there! I created a 96.0.1 cPanel server running on CloudLinux 7. The only warning I got when installing the ea-nginx package was to choose the version of Ruby Passenger, either 2.4 or 2.7. After that, the provision process went through just fine with no dependency problems. I also confirmed I had this version of ModSecurity installed:

ea-apache24-mod_security2-2.9.3-4.el7.cloudlinux.x86_64

Could you run this on your server and post the results?

Code:

rpm -qa | grep mod_security

as this would show all the packages and potentially let us see the conflict.

Hello Rex,

I have the exact same version of mod_security2 version as yours.

Code:

# rpm -qa | grep mod_security
ea-apache24-mod_security2-2.9.3-4.el7.cloudlinux.x86_64
ea-apache24-mod_security2-mlogc-2.9.3-4.el7.cloudlinux.x86_64

Just for clarity, I have sdbm utility as well which is a dependency of modsec2 --

Code:

# rpm -qa | grep -e nginx -e mod_*sec
ea-apache24-mod_security2-2.9.3-4.el7.cloudlinux.x86_64
ea-apache24-mod_security2-mlogc-2.9.3-4.el7.cloudlinux.x86_64
cpanel-ng-whm-nginx-manager-8-1.cp1196.noarch
ea-modsec-sdbm-util-0.02-1.el7.cloudlinux.1.x86_64

Could you please check the version of ea-nginx and ea-modsec30 on your box, I am getting these --

Code:

# yum list ea-nginx ea-modsec30*
...
Available Packages
ea-modsec30.x86_64                                                                                     1:3.0.4-6.el7.cloudlinux                                                                       cl-ea4
ea-modsec30-connector-nginx.x86_64                                                                     1:1.0.1-1.el7.cloudlinux                                                                       cl-ea4
ea-nginx.x86_64                                                                                        3:1.19.7-3.el7.cloudlinux                                                                      cl-ea4

Thanks

Indianets · May 4, 2021

@cPRex

It seems the problem is with the ea-nginx in cl-ea4 stable repo. I just tried installing from cl-ea4-testing repo and it didn't have the ea-modsec30 dependency.

Code:

# yum list ea-nginx --enablerepo=cl-ea4-testing
...
Available Packages
ea-nginx.x86_64                                                                          3:1.19.8-3.el7.cloudlinux.1                                                                          cl-ea4-testing

Seem has been resolved in 1.19.8-3 of cloudlinux version.

Also, the cPanel provided version is even higher (on CentOS) - ea-nginx-1.20.0-1.1.1.cpanel.x86_64.

Thanks

cPRex · May 5, 2021

I'm glad a CL update took care of that!

Thread starter	Similar threads	Forum	Replies	Date
S	WordPress protected pages and NGINX Caching	Web Servers and Applications	3	Nov 27, 2023
D	In Progress UPS-606 - nginx: [emerg] invalid value "0" in "http2" directive, it must be "on" or "off" in /etc/nginx/conf.d/default.conf:9	Web Servers and Applications	24	Aug 8, 2023
S	NGINX with Reverse Proxy and CSF settings	Web Servers and Applications	8	Aug 3, 2023
M	Nginx and Wordpress Admin 404	Web Servers and Applications	4	Jul 31, 2023
N	X-Cache-Status header to NGINX	Web Servers and Applications	1	Jul 27, 2023

Search

Search

ea-nginx dependency over ea-modsec30 differs in CentOS and CloudLinux

Indianets

Well-Known Member

ankeshanand

Well-Known Member

Indianets

Well-Known Member

cPRex

Jurassic Moderator

Indianets

Well-Known Member

Indianets

Well-Known Member

cPRex

Jurassic Moderator