CloudLinux solves noisy neighbors problem by preventing one customer from spinning too many processes and thereby dominating the machine.

Plus it improves security: one customer cannot see another customers processes or file system.

CloudLinux was created to address an inherent problem of this set up.

Article image

This results in a more stable hosting environment for everyone on that server.

CloudLinux provides Hypervisor-like functions that prevent customers from seeing each others processes and file systems.

Why is this important?

Article image

So a busy site will dominate the machine resulting in a slow down for everyone.

LVE is the kernel-level technology that has the same origins as container based virtualization.

LVE improves overall server performance, by limiting user accounts and points out which users need more resources.

Article image

This works by having more accounts on the same server.

The meaning of the table headers is explained below.

Another example of an account that periodically hits its 512M memory limit.

What happens when an account hits LVE limits?

This is better than using php.ini to secure directories as that does not work for cgi scripts.

This helps to increase security because by default the /etc/passwd file needs to be world readable on a server.

However, with CageFS this sort of activity is not allowed.

MySQL Governor

MySQL Governor is also available with CloudLinux.

The web hosting company installs this using yum and then runs a Python script so installation is straightforward.

The algorithm is smart enough and takes into account many different parameters to detect an abusive user.

It will then limit a customer from accessing MySQL for a period of time.

If abuse continues, the periods of restriction can also get longer.

This is a security feature that prevents symbolic link hacker attacks, which are quite common.

A symbolic link attack lets one account view another accounts .php files.

SecureLinks prevents this and is implemented at the kernel level.

There is no need to recompile the kernel manually; its all taken care of via yum.

The installation typically takes less than 20 minutes: the root user logs in and runs cldeploy.

This script is downloaded from CloudLinux for further information see the official documentation for converting existing servers.

The script detects whether cPanel or Plesk are installed and adds the required GUI components for them automatically.

Once the script has completed you just need to reboot to finish the process.

There are several reasons you would want to know which customers resources are being restricted because of CloudLinux.