Hello ISPConfig friends, I am seeing this error on every wordpress site I have in random location it pops up although I have php8.2 as default, but I still have php5 installed since one of my family member site still need php5, any help to address this error will be highly appreciated. Thank you! The following error pops up under my wordpress site when running my updraftplus backup plugin Code: PHP event: code E_WARNING: is_dir(): open_basedir restriction in effect. File(/usr/local/cpanel) is not within the allowed path(s): (/var/www/clients/client8/web27/web:/var/www/clients/client8/web27/private:/var/www/clients/client8/web27/tmp:/var/www/penproper.agency/web:/srv/www/penproper.agency/web:/usr/share/php5:/usr/share/php:/tmp:/usr/share/phpmyadmin:/etc/phpmyadmin:/var/lib/phpmyadmin:/dev/random:/dev/urandom) (line 441, wp-content/plugins/updraftplus/class-updraftplus.php) (Nov 24 13:30:48) Under my nextcloud site which is hosted on ISPConfig, it shows the same error as well Code: {"reqId":"pGi3POWYC7gGDdrYKk6r","level":3,"time":"2023-11-19T20:46:02-05:00","remoteAddr":"76.145.222.150","user":"abduallah","app":"PHP","method":"GET","url":"/apps/files_trashbin/preview?fileId=357&x=32&y=32&a=0","message":"is_file(): open_basedir restriction in effect. File(/proc/cpuinfo) is not within the allowed path(s): (/var/www/clients/client1/web31/web:/var/www/clients/client1/web31/private:/var/www/clients/client1/web31/tmp:/var/www/nextcloud.imaddaou.com/web:/srv/www/nextcloud.imaddaou.com/web:/usr/share/php5:/usr/share/php:/tmp:/usr/share/phpmyadmin:/etc/phpmyadmin:/var/lib/phpmyadmin:/dev/random:/dev/urandom) at /var/www/clients/client1/web31/web/lib/private/Preview/Generator.php#267","userAgent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36","version":"27.1.3.2","data":{"app":"PHP"},"id":"655abb9164a99"} And I have uninstalled myphpadmin since I don't need it.
If you're using ISPConfig, /usr/local/cpanel would not exist anyway. But even if it did, the open_basedir restricts access to only the allowed directories. If sites are trying to access /usr/local/cpanel, you might want to check what's going on... Just to be sure there's no malicious script running.