Home MiscellaneousHow to check the server is Suexec enabled ?
Miscellaneous

How to check the server is Suexec enabled ?

by SupportPRO Admin
written by SupportPRO Admin
How to check the server is Suexec enabled

SuExec is an essential security feature used on web hosting servers to improve account isolation and protect websites from unauthorized access. Instead of running all scripts under the default web server user, SuExec allows scripts to execute under individual user accounts.

This guide explains how to check if SuExec is enabled using SSH, WHM, or cPanel access.

What Is SuExec?

SuExec is a security mechanism commonly used on shared hosting environments. It ensures that each website runs with its own user permissions rather than sharing the same server identity.

Why SuExec Matters

  • Improves server security
  • Prevents cross-account access
  • Isolates hosting users
  • Reduces risks in shared hosting environments

When enabled, scripts run under the account owner instead of the web server user (such as nobody or apache).

Method 1: Check SuExec Using SSH (Root Access)

If you have root access to the server, the quickest method is via SSH.

Step 1: Log in to the Server

Connect through SSH as root.

Step 2: Run the Command

/usr/local/cpanel/bin/rebuild_phpconf current

Example Output

DEFAULT PHP: 5
PHP4 SAPI: suphp
PHP5 SAPI: suphp
SUEXEC: enabled

If you see SUEXEC: enabled, the feature is active on your server.

Method 2: Check SuExec via WHM

If SSH access is unavailable, you can verify the setting directly from WHM.

Steps

  1. Log in to WHM.
  2. Navigate to Configure PHP and SuExec.
  3. Review the status displayed on the page.

WHM will clearly indicate whether SuExec is enabled or disabled.

Method 3: Check SuExec Using phpinfo (Without Root Access)

Users with only cPanel access can still confirm the configuration.

Steps

  1. Log in to cPanel.
  2. Open File Manager.
  3. Create a new file named:
phpinfo.php
  1. Add the following code:
<?php phpinfo(); ?>
  1. Open the file in your browser:
http://yourdomain.com/phpinfo.php

What to Look For

Find the Server API value.

If it shows:

Server API = CGI

then SuExec is enabled on the server.

When Should You Use SuExec?

SuExec is recommended for:

  • Shared hosting servers
  • Multi-user environments
  • Hosting providers managing multiple accounts
  • Servers requiring strict permission isolation

Most modern hosting setups enable SuExec by default because of its strong security benefits.

Final Thoughts

Knowing how to check whether SuExec is enabled helps administrators verify server security and maintain proper user isolation. Whether you use SSH, WHM, or cPanel, confirming this configuration takes only a few minutes and can significantly improve hosting security.

If you are unsure about your server configuration or need assistance, consider requesting a professional server audit to ensure your environment follows best security practices.

Need Assistance?

If you are unsure how to verify your server configuration, you can request a free server checkup from SupportPRO engineers for expert assistance.

Partner with SupportPRO for 24/7 proactive cloud support that keeps your business secure, scalable, and ahead of the curve.

Contact Us today!
guy server checkup

You may also like

AWS Cost Optimization for Greater Business Efficiency

Is Anonymous VPS Hosting Right for You? A...

Azure CLI Guide: Automating Cloud Computing for Business...

Small Business Server Management Guide (2026)

Best Practices for Rotating Access Keys in Production...

The Complete Guide to Email Archiving: Tools, Methods,...

How to Detect a DDoS Attack on a...

How to Fix Kubernetes Pods That Are Stuck...

How to Resolve AWS SSM Agent Not Showing...

How to Enable HTTP/3 and QUIC for Faster...

Leave a Comment