Page tree
Skip to end of metadata
Go to start of metadata

This document is for a previous release of cPanel & WHM. To view our latest documentation, visit our Home page.

For cPanel & WHM 11.46

( Home >> Server Configuration >> Tweak Settings )

Overview

This interface allows you to configure a number of settings for cPanel & WHM. Tabs at the top of the interface categorize the settings. The All tab contains the aggregate of the settings from all of the other tabs.

Notes:

  • Tweak settings are stored in the /var/cpanel/cpanel.config file. However, system administrators should use the Tweak Settings interface to make changes. For more information, read our documentation about the cpanel.config file.
  • Click the question mark next to each setting's description to learn more about the setting.
  • A warning icon () will display next to any setting for which you have yet to specify a value. This includes settings that are new, settings that WHM has set to a default value, or settings that your server selected dynamically. For more information, read our documentation about the cpanel.config file.

 

Click on the tabs below to read about each section's settings.

 

cPAddons Site Software admin email

This setting allows you to specify a contact email address that will receive cPAddons moderation requests. The system will also notify resellers if they choose to configure their contact email address in their cPanel interfaces.

To configure the administrator email, enter the email address that you wish to use.

This setting's value defaults to None.

Note:

A moderation request is a request from a user who wants to install or upgrade an addon. You must approve the request before the user can install or upgrade an addon.

 

cPAddons Site Software source automatic updates

This setting allows you to specify if you wish for cPanel & WHM to automatically update all cPAddons source files.

This setting's value defaults to On.

 

Max cPAddons Site Software installation requests

This setting allows you to specify the maximum number of moderation requests that a single user can make at one time.

To specify a new value, enter the number of requests that you wish to allow.

This setting's value defaults to 99.

 

Max cPAddons Site Software installation requests per addon

This setting allows you to specify the maximum number of moderation requests that a single user can make at one time, for each cPAddon.

To specify a new value, enter the number of requests that you wish to allow per cPAddon.

This setting’s value defaults to 99.

 

cPAddons Site Software moderation notification

This setting allows you to select whether the cPAddons administrator will receive notifications about pending moderation requests.

This setting's value defaults to Off.

 

Allow cPAddons Site Software installations from non-cPanel sources

This setting allows you to select whether to allow the installation of third-party scripts on your server.

This setting's value defaults to On.

 

Allow cPAddons Site Software installations from modified sources

This setting allows you to select whether users can install previously altered cPaddons.

This setting's value defaults to Off.

Note:

$body

 

Notify reseller of cPAddons Site Software installations

This setting allows the server to notify resellers whenever their users need to update their cPAddons.

This setting's value defaults to On.

 

Notify root of cPAddons Site Software installations

This setting allows the server to notify the cPAddons Site Software administrator whenever their users need to update their cPAddons.

This setting's value defaults to On.

 

Notify users of cPAddons Site Software installations

This setting allows the server to notify cPanel users whenever they need to update their cPAddons.

Select any of the following options:

  • Allow users to choose (default) — This option allows cPanel users to specify whether they wish to receive notifications about out-of-date cPAddons.
  • always — This option allows cPanel & WHM to automatically notify users when their cPAddons are out-of-date.
  • never — This option allows you to specify that users should never receive notifications when their cPAddons are out-of-date.

Use pigz

pigz is a gzip-compatible program that uses multiple CPU cores simultaneously. This setting allows you to select whether to use pigz for compression for account backups.

This setting's default value is Off.

Note:

The system currently uses pigz to compress account backups. The system does not use pigz for other backup types, such as configuration files and the MySQL data directory.

 

gzip compression level

This setting allows you to set the gzip compression level for pigz. Higher settings provide greater compression, but compress more slowly.

This setting's minimum value is 1 and the maximum value is 9. The default value is 6.

 

Number of pigz processes

This setting allows you to set how many independent pigz processes the system will use to perform gzip compression.

This setting's minimum value is 1 and the maximum value is 128. The default value is the number of processor cores on your server.

Note:

$body

 

Number of kilobyte chunks per compression work unit

This setting allows you to control the size (in 1024-byte chunks) of compression work units that the system will distribute to each pigz process.

This setting's minimum value is 128 and the maximum value is 1024. The default value is 128.

Default login theme

This setting allows you to select the default login theme for cPanel users.

This setting's value defaults to cpanel.

Display File Usage information in the cPanel stats bar (inode count)

This setting allows you to display the number of inodes (files and directories) that a cPanel user's account has used.

The cPanel Stats bar displays this information under the File Usage heading.

This setting's value defaults to Off.

Number of accounts per page to display in "List Accounts"

This setting allows you to specify the number of accounts to display per page in the List Accounts interface (Home >> Account Information >> List Accounts).

To specify a new value, enter the integer that you wish to use in the text box. You may also select either of the following options:

  • All — View all of the accounts on your server whenever you or a reseller views the List Accounts interface.
  • 30 (default) — View 30 accounts per page. This is the default value.

Allow users to park subdomains of the server's hostname

This setting allows you to let users park subdomains on your server’s main domain.

For example, if your server's main domain name is example.com, click On to allow a user to redirect user.example.com visitors to that user’s website.

This setting's value defaults to Off.

 

Allow domain parking across accounts

This setting allows users to park domains on top of other users’ domains.

For example, if the user bob owns the domain example.com, the user charlie can log in to their cPanel account and create the parked domain parked.example.com.

This setting defaults to Off.

Warning:

 Do not enable this option. It can cause serious security issues.

 

Allow Remote Domains

This setting allows you to let users create parked and addon domains that resolve to other servers.

This setting's value defaults to Off.

Warning:

Do not enable this option. It can cause serious security issues.

 

Allow resellers to create accounts with subdomains of the server's hostname

This setting allows you to let resellers create accounts with subdomains of your server’s main domain.

For example, if your main domain name is example.com, enable this setting to allow a reseller to redirect user.example.com visitors to the reseller’s website.

This setting's value to Off.

 

Allow unregistered domains

This setting allows you to let users create domain names on the server that are not registered with a valid registrar.

This setting's value defaults to Off.

 

Automatically add A entries for registered nameservers when creating a new zone

This setting allows you to specify whether the system should automatically create A entries for a new domain's registered nameservers when a user creates a domain.

This setting's value defaults to On.

 

Prevent cPanel users from creating specific domains

This setting allows you to prevent the creation of certain domains when you list the domain names in the /var/cpanel/commondomains file.

If you enable this setting, cPanel users cannot create (as an addon or parked domain) any domain that the /var/cpanel/commondomains or the /usr/local/cpanel/etc/commondomains files list.

Important:

Do not edit the /usr/local/cpanel/etc/commondomains file directly. If you do, the system will overwrite your changes whenever cPanel & WHM updates.

Check zone syntax

This setting allows you to have the system automatically check zone file syntax whenever a user saves or synchs DNS zone files.

This setting's value defaults to On.

Check zone owner

This setting allows you to have the system automatically check a DNS zone’s owner whenever a user saves or synchs DNS zone files.

This setting's value defaults to On.

Enable DKIM on domains for newly created accounts

DKIM (DomainKeys Identified Mail) helps verify the sender and integrity of a message. It allows an email system to prove that a message was not altered in transit and was not forged, and that the message came from the specified domain.

This setting allows you to specify whether the system should enable DKIM for new accounts by default.

This setting's value defaults to On.

 

Enable SPF on domains for newly created accounts

SPF (Sender Policy Framework) denies spammers the ability to send email when they forge your domain’s name as the sender (spoofing). This authentication function adds IP addresses to a list of computers that you authorized to send mail from your domain name. It verifies that messages that your domain sends come from the listed sender, which reduces the amount of backscatter that you receive.

This setting allows you to specify whether the system should enable SPF for new accounts by default.

This setting's value defaults to Off.

 

DNS request management application

This setting allows you to specify the application that the system should use to handle DNS management requests. 

To specify a new application, enter the path to the application that you wish to use in the text box.

This setting's value defaults to dnsadmin, auto-detect SSL.

Proxy subdomains

This setting allows users to access cPanel & WHM services from standard HTTP ports, such as Port 80 and Port 443. This setting is useful if users cannot access the standard cPanel & WHM ports due to firewall restrictions.

If you enable this setting, the system automatically redirects visitors to the correct port when they access the following subdomains:

  • cpanel.example.com redirects to the user's cPanel interface.
  • webmail.example.com redirects to the user's Webmail.
  • webdisk.example.com redirects to the user's Web Disk.
  • whm.example.com redirects to the user's WHM interface.

Note:

$body

This setting's value defaults to On.

Important:

  • The settings that you select in the Tweak Settings - Redirection section do not apply to proxy subdomains.
  • When you enable this setting, it creates an entry in your Apache configuration file (httpd.conf). This feature also requires that you do not manually disable mod_rewrite and mod_proxy in the httpd.conf file.

 

Proxy subdomain creation

Proxy subdomains allow users to reach particular interfaces within cPanel or WHM when they enter a subdomain in a browser. For example, a user who enters cpanel.example.com would reach example.com's cPanel interface.

This setting allows you to let WHM automatically create DNS entries for the following subdomains for every user’s account:

  • cpanel.example.com
  • webmail.example.com
  • webdisk.example.com
  • whm.example.com

Note:

$body

This setting's value defaults to On.

Important:

You must add DNS entries for these subdomains to work. Use the /usr/local/cpanel/scripts/proxydomains file to create DNS entries manually.

 

Thunderbird and Outlook autodiscover and autoconfig support (enables proxy subdomain and SRV record creation)

This setting automatically creates autodiscover and autoconfig proxy subdomains when you create a domain.

  • autoconfig.example.com
  • autodiscover.example.com

This setting also creates the autodiscover and autoconfig SRV records that local domains need for Outlook and Thunderbird email autoconfiguation.

Note:

If you turn off the Proxy subdomains option, the system will disable this setting.

For more information about Autodiscover and AutoConfig, visit the TechNet for Autodiscover and Mozilla's AutoConfig websites.

 

Preferred mail service to configure to use for Thunderbird and Outlook® autodiscover and autoconfig support

This setting allows you to choose the email transfer method to use with Thunderbird and Outlook with Autodiscover and AutoConfig support.

This setting's value defaults to imap.

Notes:

  • We recommend that you use IMAP and not POP3.
  • You must enable the Thunderbird and Outlook autodiscover and autoconfig support (enables proxy subdomain and SRV record creation) option in order to configure this setting.

 

Host to publish in the SRV records for Outlook autodiscover support.

Microsoft Outlook®’s Autodiscover service searches DNS for an SRV record for an email inbox’s domain that points to a particular server for Autodiscover. By default, this server is cpanelemaildiscovery.cpanel.net.

This setting allows system administrators to perform the following actions:

  • Choose the host that is published in the SRV records.
  • Change the default host if they have an SSL-enabled host with an SSL certificate signed by a Certificate Authority.
  • Use their own server for Outlook® Autodiscover may enter that server’s FQDN in the available text box.
  • When you enable the Host to publish in the SRV records for Outlook autodiscover support. feature, the system queries the server that you specify for the Autodiscover settings. You must have a custom XML file for this feature to function properly.

Notes:

  • For more information about how to use a custom XML file, visit Mozilla's autoconfiguration page, or the Exchange's Autodiscover page.
  • You must enable the Thunderbird and Outlook autodiscover and autoconfig support (enables proxy subdomain and SRV record creation) option in order to configure this option.

For more information about Microsoft Outlook's Autodiscover feature, visit Microsoft's Support website.

 

Overwrite custom A records used for proxy subdomains

This setting allows the system to remove any existing custom A records that match proxy subdomains that you create or remove.

Note:

If you turn off the Proxy subdomains option, the system will disable this setting.

 

Overwrite custom SRV records used by Outlook AutoDiscover support

This setting allows the system to remove any existing custom SRV records whenever the user adds or removes Outlook Autodiscover support.

 

Proxy subdomain override

This setting allows you to let users to create cPanel, Webmail, Web Disk, and WHM subdomains that override automatically generated proxy subdomains.

For example, a user can direct visitors who access cpanel.example.com to a web page that that user configures, such as mycontrolpanel.example.com.

This setting's value defaults to On.

Note:

Proxy subdomains allow you to enter a subdomain in your browser to reach particular interfaces within cPanel and WHM. For example, enter cpanel.example.com to reach example.com's cPanel interface.

 

public_html subdomains only

This setting allows you to prevent the creation of subdomains outside of a user's own public_html directory.

This setting's value defaults to Off.

 

Always use authoritative (registered) nameservers when creating a new DNS zone

This setting allows the server to use a new domain's authoritative nameservers (the name servers on record with the domain's registrar). The server will ignore the nameservers that the user who creates the domain specifies.

This setting's value defaults to Off.

 

Log dnsadmin requests

This setting allows you to select whether to log dnsadmin requests in the /usr/local/cpanel/logs/dnsadmin_log file.

This setting’s value defaults to Off.

 

Enable verbose logging of DNS zone syncing

This setting causes your server to print DNS information to the command line interface whenever the system synchronizes a DNS zone.

This setting's value defaults to Off.

Warning:

This setting is for testing purposes only. Do not enable this option on a production server.

Initial default/catch-all forwarder destination

This setting allows you to select the initial forwarding destination for new accounts’ default (catch-all) email addresses. The catch-all or default address handles email that is sent to nonexistent users on your server's domains. Because a domain may receive a large number of spam messages for nonexistent users, if you opt to process this mail it can cost you server resources.

Note:

cPanel users can modify this forwarding destination in cPanel's Default Address interface (Home >> Mail >> Default Address).

 

You may choose from the following options:

  • System account (default) — The system will forward unroutable mail to the cPanel user’s main email account. If you choose this option, this account will mainly collect spam.
  • Fail — The system will discard the message and sends a notification to the sender.

    Note:

    Choose this setting if you receive mail attacks. 

  • Blackhole — The system will accept the message, discard it, and not notify the Remote SMTP server.

    Note:

    We recommend that you not use this option, because it violates SMTP's RFC 5321.

 

Discard FormMail-clone message with bcc:

This setting allows you to select whether to silently discard FormMail-clone messages that have a bcc: header in the subject line. Messages that meet this criteria are typically spam. This value defaults to On.

Warning:

This setting will not appear if you disable the exim service in WHM’s Service Manager interface (Home >> Service Configuration >> Service Manager)

 

Mail authentication via domain owner password

This setting allows you to specify whether to allow the use of the website owner’s password to access any email address that the owner created within the account. This value defaults to Off.

The Single Sign On system generates a temporary user to access a cPanel account, and its email accounts, as the account owner.  This means that if you log in to any email account via the cPanel interface, you do not have to enter a password.

Include mailman in disk usage calculations

This setting allows you to specify whether cPanel's disk usage calculations include Mailman mailing lists. This value defaults to On.

 

Email delivery retry time

This setting allows you to specify the number of minutes that your mail server waits before it attempts to redeliver a message after the message delivery fails. This value defaults to 60 minutes.

Warning:

This setting will not appear if you disable the exim service in WHM’s Service Manager interface (Home >> Service Configuration >> Service Manager)

Track email origin via X-Source email headers

This setting allows you to specify whether to track the origin of messages sent through your mail server. This feature adds X-Source headers to email messages. This value defaults to On.

Note:

This feature requires Exim version 4.34 or later.

Warning:

This setting will not appear if you disable the exim service in WHM’s Service Manager interface (Home >> Service Configuration >> Service Manager)


Max hourly emails per domain

This setting allows you to specify the maximum number of emails any domain can send per hour. This value defaults to Unlimited.

Warning:

  • This setting will not appear if you disable the exim service in WHM’s Service Manager interface (Home >> Service Configuration >> Service Manager).
  • This setting will not override the following settings :
    • Maximum Hourly Email by Domain Relayed
    • Maximum percentage of failed or deferred messages a domain may send per hour

 

The percentage of email messages (above the domain's hourly maximum) to queue and retry for delivery.

This setting allows you to specify whether to queue outgoing messages for later delivery after a domain reaches its limit for outgoing messages per hour. For example, if you set this value to 125, then after the domain reaches its hourly limit, Exim will queue any additional messages, up to 125% of the Max hourly emails per domain value. After the account reaches 125% of the Max hourly emails per domain value, any additional outgoing messages will fail.

To force failure of all outgoing messages after the domain reaches its limit, set this option to 100.

Warning:

This setting will not appear if you disable the exim service in WHM’s Service Manager interface (Home >> Service Configuration >> Service Manager)

Count mailman deliveries towards a domain's Max hourly emails

This setting allows you to specify whether to count messages to Mailman mailing lists against an account's Max hourly emails per domain limit. This setting defaults to Off.

Note:

This setting should remain set to Off if you wish to accommodate users with large Mailman mailing lists. If you turn this setting to On , you may encounter issues with mailing list subscribers who do not receive messages.

Maximum percentage of failed or deferred messages a domain may send per hour

This setting allows you to specify a percentage of failed or deferred messages. This setting defaults to unlimited .

Your server will temporarily block outgoing mail from a domain if both of the following conditions are true:

  • The percentage of failed or deferred messages, out of the total number of sent messages, is equal to or greater than the specified percentage.
  • The domain has sent at least the number of failed or deferred messages that the Number of failed or deferred messages a domain may send before protections can be triggered setting specifies.

If only one of these conditions is true, the system will not block outgoing mail. The system examines all outgoing and local mail over the previous hour to determine whether these conditions are true. For more information, read our Mail Limiting Features documentation.

Warning:

  • This setting will not appear if you disable the exim service in WHM’s Service Manager interface (Home >> Service Configuration >> Service Manager)
  • The system uses this setting in conjunction with the Number of failed or deferred messages a domain may send before protections can be triggered setting. Your server will not  temporarily block outgoing mail from a domain until the domain meets  both settings' requirements.

Number of failed or deferred messages a domain may send before protections can be triggered

This setting allows you to specify a number of failed or deferred messages. This setting defaults to 5.

Your server will temporarily block outgoing mail from a domain if  both  of the following conditions are true:

  • The domain has sent at least this number of failed or deferred messages.
  • The percentage of failed or deferred messages (out of the total number of sent messages) is equal to or greater than the percentage that the Number of failed or deferred messages a domain may send before protections can be triggered setting specifies.

If only one of these conditions is true, the system will not block outgoing mail. The system examines all outgoing and local mail over the previous hour to determine whether these conditions are true. For more information, read our  Mail Limiting Features  documentation.

Warning:

  • This setting will not appear if you disable the exim service in WHM’s Service Manager interface (Home >> Service Configuration >> Service Manager)
  • The system uses this setting in conjunction with the Maximum percentage of failed or deferred messages a domain may send per hour setting. Your server will   not  temporarily block outgoing mail from a domain until the domain meets  both   settings' requirements.

Restrict outgoing SMTP to root, exim, and mailman

This setting allows you to only allow the rootexim, and mailman users to send email messages. Enable this setting to deny other users on the system the ability to send mail. When you enable this setting, scripts and email users must use the sendmail binary to send mail and cannot use direct socket access. This value defaults to Off.

 

Prevent “nobody” from sending mail

This setting allows you to deny the nobody user the ability to send mail to a remote address. The default value for this item is Off.

Note:

PHP and CGI scripts generally run as the nobody user. To use a PHP or CGI script to send mail, enable the suEXEC or mod_php modules in your Apache configuration.

 

Add X-PopBeforeSMTP header for mail sent via POP-before-SMTP

Note:

This setting requires Exim 4.34-30+.

This setting allows you to require the mail server to append a list to the  X-PopBeforeSMTP  headers of all of that user's outgoing messages. This list contains all of the email addresses that a user checks with POP before SMTP. POP before SMTP is an email protocol that allows users to check email from different IP addresses without the need to log in repeatedly. The default value for this item is  Off .

Warning:

  • This setting will not appear if you disable the exim service in WHM’s Service Manager interface (Home >> Service Configuration >> Service Manager) .  
  • We recommend that you do not enable this option because it may compromise the privacy of your users.

 

Enable BoxTrapper spam trap

This setting allows you to enable BoxTrapper. BoxTrapper is a spam prevention system that uses blacklists, whitelists, and ignore lists, and an automated response-verification system. This setting defaults to On.

Warning:

This setting will not appear if you disable the exim service in WHM’s Service Manager interface (Home >> Service Configuration >> Service Manager).  

Enable Email Archiving support

This setting allows you to enable email archiving support. Email archiving allows you to keep a copy of each email that your server sends or receives. The server immediately archives an email when it receives the message. This action takes place before the system applies any filters to the message, which means that the system archives both spam and non-spam messages. If you enable this feature, the amount of disk space that mail uses will double. This setting defaults to Off.

Warning:

This setting will not appear if you disable the exim service in WHM’s Service Manager interface (Home >> Service Configuration >> Service Manager).  

Enable Horde Webmail

This setting allows you to enable the Horde webmail client. Webmail allows cPanel users to access their email accounts with an Internet connection and a web browser. This setting defaults to On .


Enable RoundCube webmail

This setting allows you to enable the RoundCube webmail client. Webmail allows cPanel users to access their email accounts with an Internet connection and a web browser. This setting defaults to On .


Enable the Apache SpamAssassin spam filter

This setting allows you to enable Apache SpamAssassin™. Apache SpamAssassin is a spam filtration program that scores incoming email and checks that score against a predefined limit. If the spam score exceeds this limit, the server will take the action that the domain owner specified in cPanel's  Apache SpamAssassin  interface (Home >> Mail >> Apache SpamAssassin). You may discard mail or place it in a spam folder. This setting defaults to On.

For more information, see the Apache SpamAssassin website.

Warning:

  • This setting will not appear if you disable the exim service in WHM’s Service Manager interface (Home >> Service Configuration >> Service Manager) .  
  • If you make changes to Apache SpamAssassin's configuration, you must run the /usr/bin/sa-compile  script for your changes to take effect. 


Enable Apache SpamAssassin Spam Box delivery for messages marked as spam (user configurable)

This setting allows you to enable Apache SpamAssassin’s spam box feature. The spam box, when you enable it, can receive incoming mail that Apache SpamAssassin marked as spam. This can be useful for users who have received a message that was falsely flagged as spam. This setting defaults to Off.

 

Enable SquirrelMail webmail

This setting allows you to enable the SquirrelMail webmail client. Webmail allows cPanel users to access their email accounts with an Internet connection and a web browser. This setting defaults to On .

 

Prefix “mail.” onto Mailman URLs

This setting allows you to specify whether the system should prefix Mailman URLs with mail. This setting defaults to Off.

 

Default user-defined quota value for new email accounts

This setting allows you to set the default quota that appears in cPanel's Email Accounts interface (Home >> Mail >> Email Accounts). This setting defaults to 250 MB. The maximum value is 2,048 MB.

 

Default quota option for new email accounts

This setting allows you to set the preselected quota option in cPanel's Email Accounts interface ( Home >> Mail >> Email Accounts ). This setting defaults to User-defined.

Note:

 To modify your notification templates, read our Notification Templates documentation.

System disk space usage warnings

This setting allows you to enable disk space usage warnings. This setting defaults to Off.

After you enable disk space usage warnings, the following additional settings become available:


Account system disk usage “warn” percentage

This setting allows you to specify the threshold at which a user’s disk usage enters the warn state, or to disable this notification. This setting defaults to 82.55%.

 

Account system disk usage “critical” percentage

This setting allows you to specify the threshold at which a user’s disk usage enters the critical state, or to disable this notification. This setting defaults to 92.55% .


Disk quota usage warnings

This setting allows you to enable disk quota usage warnings. These warnings appear to cPanel users who approach their disk space quota. This setting defaults to Off.

After you enable disk space usage warnings, the following additional settings become available:

 

Account disk quota "warn" percentage

This setting allows you to specify the threshold at which a user’s disk quota usage enters the warn state, or to disable this notification. This setting defaults to 80%.

 

Notify admin or reseller when disk quota reaches "warn" state

This setting allows you to specify whether the server sends a notification to the administrator or reseller who owns the cPanel account that is in the warn state. This setting defaults to Off.

 

Account disk quota "critical" percentage

This setting allows you to specify the threshold at which a user’s disk quota usage enters the critical state, or to disable this notification. This setting defaults to 90%.


Notify admin or reseller when disk reaches "critical" state

This setting allows you to specify whether the server sends a notification to the administrator or reseller who owns the cPanel account that is in the critical state. This setting defaults to  On .

 

Account disk quota "full" percentage

This setting allows you to specify the threshold at which a user’s disk quota usage enters the full state, or to disable this notification. This setting defaults to 98%.

 

Notify admin or reseller when disk quota reaches "full" state

This setting allows you to specify whether the server sends a notification to the administrator or reseller who owns the cPanel account that is in the full state. This setting defaults to  On .

 

Enable mailbox usage warnings

This setting allows you to enable mailbox usage warnings. These warnings appear to cPanel users whose mailboxes are almost full. This setting defaults to Off.

After you enable mailbox usage warnings, the following additional settings become available:

 

Mailbox disk quota “warn” percentage

This setting allows you to specify the threshold at which a user’s mailbox enters the warn state, or to disable the notification. This setting defaults to  80% .

 

Mailbox disk quota “critical” percentage

This setting allows you to specify the threshold at which a user’s mailbox enters the critical state, or to disable the notification. This setting defaults to  90% .


Mailbox disk quota “full” percentage

This setting allows you to specify the threshold at which a user’s mailbox enters the full state, or to disable the notification. This setting defaults to  98% .

 

Bandwidth limit check

This setting allows you to select whether to automatically suspend HTTP service for accounts that exceed their bandwidth limit. Disable this option to disable all bandwidth notifications and treat all accounts as though they have unlimited bandwidth. This setting defaults to On.

 

Send bandwidth limit notification emails

This setting allows you to specify whether the server sends notification emails to accounts that approach their bandwidth limits. This setting defaults to  Off .

After you enable this option , the following additional settings become available:


Bandwidth usage warning: 70%

This setting allows you to specify whether to send an email notification to users who have used 70% of their bandwidth. This setting defaults to Off.

 

Bandwidth usage warning: 75%

This setting allows you to specify whether to send an email notification to users who have used 75% of their bandwidth. This setting defaults to Off.

 

Bandwidth usage warning: 80%

This setting allows you to specify whether to send an email notification to users who have used 80% of their bandwidth. This setting defaults to  On .

 

Bandwidth usage warning: 85%

This setting allows you to specify whether to send an email notification to users who have used 85% of their bandwidth. This setting defaults to  Off .

 

Bandwidth usage warning: 90%

This setting allows you to specify whether to send an email notification to users who have used 90% of their bandwidth. This setting defaults to  Off .

 

Bandwidth usage warning: 95%

This setting allows you to specify whether to send an email notification to users who have used 95% of their bandwidth. This setting defaults to  Off .

 

Bandwidth usage warning: 97%

This setting allows you to specify whether to send an email notification to users who have used 97% of their bandwidth. This setting defaults to  Off .

 

Bandwidth usage warning: 98%

This setting allows you to specify whether to send an email notification to users who have used 98% of their bandwidth. This setting defaults to  Off .

 

Bandwidth usage warning: 99%

This setting allows you to specify whether to send an email notification to users who have used 99% of their bandwidth. This setting defaults to  Off .

 

Note:

$body

cPanel PHP max execution time

This setting allows you to specify the number of seconds that a cPanel PHP script can execute before the system terminates it. This limit prevents the slow down of your server by poorly written scripts.

This setting defaults to 90 seconds.

cPanel PHP max POST size

This setting allows you to specify the maximum size, in Megabytes, of a POST request.

This setting defaults to 55 MB.

cPanel PHP max upload size

This setting allows you to specify the maximum file size that a PHP script may upload.

The maximum value that you can specify is 2047 MB. This setting defaults to 50 MB.

cPanel PHP loader

This setting allows you to specify the PHP loader that you want cPanel to use in order to execute internal PHP scripts.

This item defaults to none.

Note:

You may select more than one PHP loader.

Note:

When a user accesses cPanel or WHM on an SSL/TLS port with the HTTP protocol, the web server redirects the user to the HTTPS URL of the server's hostname. For example, if the server's hostname is host.examplehost.com, http://www.example.com:2083 will direct the user to https://host.examplehost.com:2083 .

Important:

The Always redirect to SSL, Non-SSL redirect destination, and SSL redirect destination settings apply when visitors attempt to access the following URLs:

www.example.com/cpanel
www.example.com/webmail
www.example.com/whm

These settings do not apply to the following URLs:

cpanel.example.com
webmail.example.com
whm.example.com

Always redirect to SSL

This setting allows you to redirect users to the proper SSL/TLS ports when they visit specific URLs. This setting defaults to Off.

Notes:

  • To force SSL with the above URLs, enable the Require SSL  option in the Security section of the Tweak Settings interface. The Require SSL  option does function with proxy subdomains.
  • When you enable this option, users cannot send their passwords to these links without encryption.

Non-SSL redirect destination

This setting allows you to specify how to redirect users who access cPanel & WHM without SSL. Select one of the following options:

  • Hostname — Redirects users to the server’s hostname (for example, host.example.com:2082, where host.example.com is the server's hostname).
  • Origin Domain Name — Redirects a user to their main domain (for example, example.com:2082, where example.com is the user's domain). This is the default option.

 

SSL redirect destination

This setting allows you to specify how to redirect users who access cPanel & WHM with SSL. Select one of the following options:

  • SSL Certificate Name — Redirects users to the domain that the website's SSL certificate lists. You can view this certificate in WHM's Manage Service SSL Certificates interface (Home >> Service Configuration >> Manage Service SSL Certificates). This is the default option.
  • Hostname — Redirects users to the server’s hostname (for example, host.example.com:2083, where host.example.com is the server's hostname).
  • Origin Domain Name — Redirects a user to their main domain (for example, example.com:2083, where example.com is the user's domain).

 

Logout redirection URL

This setting allows you to redirect users to a specific URL after they log out of cPanel. This item’s default value is No redirection.

Include databases in disk usage calculations

This item allows you to select whether to include databases in disk usage calculations.

This item defaults to On.

 

Use INFORMATION_SCHEMA to acquire MySQL® disk usage

If you enable this setting, your server will use MySQL's INFORMATION_SCHEMA view to include disk usage by all MySQL tables in the disk usage totals.

If you disable this setting, WHM queries the filesystem for disk usage information. Table type usage and local configuration may cause inaccuracy in the disk usage totals.

This item defaults to On.

Note:

If you use a remote MySQL server, you must turn this setting On in order to calculate MySQL disk usage.

Warning:

This setting causes MySQL to become unresponsive until data collection is complete, which may degrade your system's performance.

 

Use pre-4.1-style MySQL ® passwords

This item allows you to select whether you wish to use old pre-MySQL 4.1 passwords with your current version of MySQL. This can be useful if you experience authentication problems with PHP scripts.

This item defaults to Off.

Important:

  • You must restart MySQL to apply this setting. Use WHM's SQL Server (MySQL) interface (Home >> Restart Services >> SQL Server (MySQL)) to restart MySQL.
  • This setting only applies to MySQL 5.5 and earlier. MySQL 5.6 removed support for old style passwords.
  • Your server will not automatically reset old-style passwords when you change this setting to Off. Any users with old-style passwords will be unable to authenticate until you or they reset their passwords. To reset old-style passwords, use cPanel's Change Password interface (Home >> Preferences >> Change Password) or WHM's Password Modification interface (Home >> Account Functions >> Password Modification).
  • To determine whether any users have old-style passwords, run the following query in the MySQL command prompt:

    mysql> SELECT user, Length(Password) FROM mysql.user;

    Users who return a 16-character length use the pre-4.1-style MySQL password.

 

Allow cPanel & WHM to determine the best value for your MySQL open_files_limit configuration

This item allows cPanel & WHM to determine the best value for your MySQL open_files_limit setting in your my.cnf configuration file. The system uses the total number of open tables in your databases to determine this value.

Newer versions of MySQL require additional file descriptors for each open table. A server with a large number of open tables (for example, servers with multiple installations of WordPress®) may require a value of open_files_limit that is greater than the default value of 2048. However, an extremely large open_files_limit setting requires more memory, and may cause performance issues.

This item defaults to On.


 

Allow cPanel & WHM to determine the best value for your MySQL max_allowed_packet configuration

This item allows cPanel to determine the best value for your MySQL max_allowed_packet setting in your my.cnf configuration file.

The max_allowed_packet setting determines the maximum size of a single packet for any generated or intermediate string. If you use very long BLOB columns or long strings, this setting must be large enough to handle them properly. However, an extremely large max_allowed_packet setting may catch unnecessarily large packets, and may cause performance issues.

This item defaults to On.

 

Allow cPanel & WHM to determine the best value for your MySQL innodb_buffer_pool_size configuration

This item allows cPanel to determine the best value for your MySQL innodb_buffer_pool_size setting in your my.cnf configuration file.

The innodb_buffer_pool_size setting determines the size of the memory buffer, in bytes, that the InnoDB storage engine uses to cache data and indexes of its tables. However, an extremely large innodb_buffer_pool_size setting requires more memory, and may cause performance issues.

If you select On for this setting, the system uses the following defaults:

  • For servers with less than 512 Megabytes (MB) of RAM, the system sets the innodb_buffer_pool_size setting to 8 MB.
  • For servers with between 512 MB and 4 Gigabytes (GB) of RAM, the system sets the innodb_buffer_pool_size setting to a proportional value that is between 8 and 128 MB.
  • For servers with more than 4 GB of RAM, the system sets the innodb_buffer_pool_size setting to 128 MB.

This item defaults to On.


Require a username prefix on names of new databases and database users

When you enable Database Prefixing, the system prefixes database names and database usernames with the first eight characters of the system username and an underscore (_). This makes it easier for you to determine which user owns a given database, but it reduces the number of characters that users can use for names of databases and database users.

Note

If you change the system account name, database names and database usernames that the account owns do not change.

This item defaults to On.

Allow autocomplete in login screens.

This setting allows you to specify whether users can save their cPanel, WHM, and Webmail login passwords in the browser's cache. This setting defaults to On.

 

CGIEmail and CGIEcho

This setting allows you to control whether CGIEmail and CGIEcho are available on the system. These two legacy cgi-sys scripts interpret files in a user's public_html  directory as potential input templates if they contain the characters  [  and ] . This setting defaults to On for backward compatibility.

 

Hide login password from cgi scripts

This setting allows you to hide the REMOTE_PASSWORD variable from scripts that the cpsrvd daemon's CGI handler executes. Set this value to On to hide the REMOTE_PASSWORD variable. This setting defaults to Off .

Note:

This setting does not hide the REMOTE_PASSWORD variable from phpMyAdmin.

 

Cookie IP validation

This setting allows you to validate IP addresses for cookie-based logins. Enable this option to deny attackers the ability to capture cPanel session cookies in order to gain access to your server's cPanel and WHM interfaces.

Select one of the following options:

  • disabled — Does not validate IP addresses.
  • loose — The access IP address and the cookie IP address must be in the same class C subnet.
  • strict — The access IP address and the cookie IP address must match exactly. This is the default value.

Note:

To use this feature most effectively, disable the Proxy subdomain settings in the Domains section of the Tweak Settings interface.

 

Generate core dumps

This setting allows you to specify whether cPanel & WHM’s services create core dumps. Core dumps are useful when you debug a service. This setting defaults to Off.

Warning:

Core dumps contain sensitive information. Be sure to keep them secure.

 

Send passwords when creating a new account

This setting allows you to send new users their passwords in plaintext over email when you create a new account. This setting defaults to Off.

Warning:

We recommend that you do not enable this option. It is a security risk.

 

Blank referrer safety check

This setting allows you to grant the user the ability to limit the functions that cPanel & WHM performs. Each attempt to submit data to cPanel & WHM must have a referral URL. This helps to prevent cross-site request forgery (XSRF) attacks. This setting defaults to Off.

Warning:

If you enable this option, it may break integration with other systems, login applications, and billing software.

Note:

The visitor or querying application must enable cookies for this feature to take effect.

 

Referrer safety check

This setting allows you to grant the user the ability to limit the functions that cPanel & WHM performs. Each attempt to submit data to cPanel & WHM must have a referral URL for which the domain or IP address and port number exactly match those of the destination URL. This helps to prevent cross-site request forgery (XSRF) attacks. This setting defaults to Off.

Warning:

If you enable this option, it may break integration with other systems, login applications, and billing software.

Note:

The visitor or querying application must enable cookies for this feature to take effect.

 

Require SSL

This setting allows you to require that passwords and other sensitive information use SSL encryption. This setting defaults to On.

Note:

We strongly recommend that you enable this option.

 

Allow PHP to be run when logged in as a reseller to WHM

This setting allows you to specify whether resellers can run PHP in WHM. This setting defaults to Off.

Warning:

Take special precautions when you enable this functionality. WHM's PHP runs as the root system user. 

 

Allow apps that have not registered with AppConfig to be run when logged in as a reseller in WHM

This setting allows you to specify whether applications that are not registered with AppConfig run when you log in to WHM as a reseller. If you disable this setting, resellers can only run applications that are registered with AppConfig. This setting defaults to Off.

Allow apps that have not registered with AppConfig to be run when logged in as root or a reseller with the "all" ACL in WHM

This setting allows you to specify whether applications that are not registered with AppConfig run when you log in as a root-enabled user. If you disable this setting, root-level users can only run applications that are registered with AppConfig. This setting defaults to Off.

 

This setting allows WHM applications and addons to execute even if an ACL list has not been defined.

This setting allows you to control whether registered AppConfig applications and addons execute if a required ACL is not defined. If you disable this setting, cPanel & WHM will force registered AppConfig applications and addons to set an ACL list before they can run. This setting defaults to Off.

 

This setting allows cPanel and Webmail applications and addons to execute even if a feature list has not been defined.

This setting allows you to control whether registered AppConfig cPanel and Webmail apps can execute if a required features list is not defined. If you disable this setting, cPanel & WHM will force registered AppConfig cPanel and Webmail apps to set a Required Features list before they can run. This setting defaults to Off.

 

Use MD5 passwords with Apache

This setting allows you to specify whether the system uses MD5 hashing for new passwords in Apache .htpasswd files. When you disable this option, Apache uses crypt hashing. Because Apache .htpasswd files can contain a mix of crypt-encoded and MD5-encoded passwords without issue, this setting does not change the encoding of any existing passwords. This setting defaults to On .

Note:

MD5-encoded passwords are more secure than crypt-encoded passwords. Crypt only uses the first eight characters of the password for authentication, but MD5 passwords can be any length.

 

 

EXPERIMENTAL: Jail Apache Virtual Hosts using mod_ruid2 and cPanel® jailshell.

When you enable this setting, the mod_ruid2 module uses the chroot command on Apache virtual hosts. This action will run Apache virtual hosts in an environment with an altered root directory. This setting defaults to Off.

Warning:

We do not recommend that system administrators use this option with CentOS 5 or Red Hat Enterprise Linux 5 because these operating systems distribute older kernels with limitations. The Linux kernel versions for these operating systems and the number of bind mounts that VirtFS requires make it difficult to ensure system stability.

Notes:

  • This option is only available if you compiled Apache through EasyApache and installed mod_ruid2 version 0.9.4a or later.
  • You can use this option CentOS or Red Hat Enterprise Linux® 5 or 6.
  • This option is unavailable on systems that run CentOS or Red Hat Enterprise Linux version 5 with 256 or more users.

 

This setting enables the JailManager TailWatch Driver module. JailManager keeps each VirtFS filesystem jail shell in sync with the root filesystem. JailManager also returns the VirtFS filesystem jailed shells to a usable state when the system is rebooted. There is no need to enable or disable JailManager in the Service Manager interface because this setting controls the module's state.

 

After you enable this option, each user who configured jailshell or noshell as the shell will experience the following changes:

  • The chroot command will jail the user's Apache Virtual Hosts into the /home/virtfs directory.
  • The RDocumentChRoot directive will be added to the user's Virtual Host.

 

 <IfModule mod_ruid2.c>
        RMode config
        RUidGid kellyp kellyp
 ==>    RDocumentChRoot /home/virtfs/kellyp /home/kellyp/public_html <==
 </IfModule>

 

  • The user's filesystem view will be limited to their /home/virtfs/$USER filesystem. Various jail shell-related options in the Tweak Settings interface control the /home/virtfs/$USER filesystem configuration.

 

Enable FormMail-clone CGI

This setting allows you to make the FormMail-clone CGI script available to your users in cPanel's CGI Center interface (Home >> Software and Services >> CGI Center). This script allows users to publish a form through which their websites' visitors can email them.

This setting defaults to Off.

Note:

If your cPanel users do not use this script properly, it could pose security risks for your server. We recommend that you select Off.

 

Dormant services

This setting allows you to cause a service to unload itself from memory after it is idle for five minutes, while it opens a listening service in its place. This reduces memory usage, but delays responses from dormant services.

You can enable this behavior for the following services:

  • cpdavd — cPanel's WebDav daemon.
  • cphulkd — cPanel's brute force protection daemon.
  • cpsrvd — The cPanel & WHM service manager daemon.

 

Maintenance cPanel RPM Check

Warning:

We strongly recommend that you do not disable this setting. If you disable this setting, the system will not check existing RPMs for problems during updates or maintenance. This could leave your system vulnerable to unnoticed tampering or other risks.

 

This setting allows you to specify whether the system runs the /scripts/check_cpanel_rpms script to check cPanel RPMs for problems during nightly maintenance. If these checks encounter problems, the system sends a notification to the administrator. For more information, read our The /scripts/check_cpanel_rpms Script documentation.

This setting defaults to On.

 

Maintenance cPanel RPM Digest Check

Important:

We strongly recommend that you enable this setting. If you disable this setting, the /scripts/check_cpanel_rpms script only validates file sizes, and files may change without detection.

Note:

This setting is only available if you have enabled the Maintenance cPanel RPM Check setting.

 

This setting allows you to specify whether the system runs a digest check against existing RPMs during nightly maintenance. This check ensures that RPM files are not corrupt, and that nothing has tampered with them.

If you disable this setting, the system will run the /scripts/check_cpanel_rpms script with the --no-digest option. For more information , read our The /scripts/check_cpanel_rpms Script documentation.

This setting defaults to On.

Note:

Statistical analysis programs allow your users to view information about their site visitors. For more configuration options, use WHM's  Statistics Software Configuration  interface ( Home >> Server Configuration >> Statistics Software Configuration ).

 

Awstats reverse DNS resolution

This setting allows you to specify whether AWStats interprets visitors' domain names as IP addresses. Disable this option to conserve server resources. This setting defaults to Off.

 

Enable Analog stats

This setting allows you to enable the Analog statistical analysis program. This setting defaults to  On .

 

Enable AWStats stats

This setting allows you to enable the AWStats statistical analysis program. This setting defaults to On .

 

Enable Logaholic stats

This setting allows you to enable the Logaholic statistical analysis program. This setting defaults to Off .

 

Enable Webalizer stats

This setting allows you to enable the Webalizer statistical analysis program. This setting defaults to On .

Allow users to update Awstats from cPanel

This setting allows you to specify whether the server will allow your cPanel users to update their AWStats software (Home >> Logs >> Awstats).

This setting defaults to Off.

 

Delete each domain's access logs after stats run

This setting allows you to specify whether the system will delete each domain’s access log after it processes statistics. Enable this setting to help conserve disk space.

This setting defaults to On.

 

Archive logs in the user's home directory at the end of each stats run unless configured by the user

This setting archives logs in the user's home directory at the end of each statistics run.

This setting defaults to On.

Notes:

If this setting is set to off, the system will not archive logs.

 

Remove the previous month's archived logs from the user's home directory at the end of each month unless configured by the user

This setting allows you to specify whether you wish for the system to remove the archived log files from the user's home directory at the end of each month.

This setting defaults to On.

Notes:

If this option is set to off, the system will retain archived logs.

 

Extra CPUs for server load

This setting allows you to specify a value to add to the number of physical CPUs in your server. The sum of these two numbers becomes the value at which the cpuwatchcpanellogdbackups, and CPU stats daemons consider the system to be in a critical load state.

This setting defaults to 0.

 

Include password in the raw log download link in cPanel (via FTP)

This item allows you to specify whether the system will include the password in the raw log download link in cPanel's FTP Accounts interface (Home >> Files >> FTP Accounts).

This setting defaults to On.

 

Keep master FTP log file

This setting allows you to ensure that the system does not delete the /usr/local/apache/domlogs/ftpxferlog file whenever the domain parses FTP logs.

This setting defaults to Off.

 

Keep log files at the end of the month

This setting allows you to keep domain log files at the end of each month in the /home/user/logs directory. If you disable this option, the system deletes these log files.

This item defaults to Off.

Note:

We strongly recommend that you select Off. Log files can quickly use up your server's disk space.

 

Keep stats logs

This setting allows you to retain the stats log (/usr/local/cpanel/logs/stats_log) between cPanel restarts.

This setting defaults to Off.

Note:

If you use WHM's cPanel Log Rotation Configuration interface (Home >> Service Configuration >> cPanel Log Rotation Configuration) to configure the system to archive the log monthly, the system may delete the log after it archives the log.

 

Apache log file chmod value

This setting allows you to set the Apache log file’s chmod value. The chmod value sets permissions for who can read, write to, and execute a file.

This setting defaults to 0640.

Notes:

  • For more information on chmod, run the man chmod command from the command line interface.
  • For more information about file permissions, visit Wikipedia's File system permissions article.

 

Show bandwidth usage in megabytes by default in WHM

This setting allows you to specify whether WHM should display bandwidth usage in megabytes.

This setting defaults to Off.

 

Stats log level

This setting allows you to specify how much information the server should include in the /usr/local/cpanel/logs/stats_log file.

This setting accepts integers between 1 and 10.

This setting defaults to 1.

Note:

$body

 

Log rotation size threshold

This setting allows you to specify a threshold above which the cpanellogd daemon will rotate log files.

This setting defaults to 300 megabytes.

 

The interval, in days, to retain Exim stats in the database

This setting allows you to specify the number of days you wish to keep Exim stats.

This setting defaults to 90.

 

Use delayed sql inserts in the eximstats process to reduce the number of disk writes.

This setting queues SQL inserts into memory until the system can write them as a single block. In general, this action is much faster than when the system performs multiple separate inserts. However, this action uses additional memory while the system queues the rows.

This setting defaults to On.

 

The number of days to keep record of ModSecurity™ rule hits.

This setting allows you to specify the number of days that you wish to maintain your hits records in the modsec database. Use the text box to specify the number of days you wish to maintain your hits records.

This setting defaults to 7.

Critical load threshold

This setting allows you to specify the minimum CPU load that will cause the server load to appear in red in the following interfaces:

  • WHM's Service Status interface (Home >> Server Status >> Service Status)
  • The Server Status section of the cPanel's Home interface's Stats table.

This setting defaults to 2.

Note:

$body

Note:

Many of the options in this section of the Tweak Settings interface allow you to specify whether to send anonymized data to cPanel for analysis. For more information about how cPanel, Inc. uses this data, read our Server Usage Analysis Data Collection Policy. 

Send error reports to cPanel for analysis

This setting allows you to specify whether you wish to send anonymized error reports to cPanel for analysis. This setting defaults to On.

 

Send information about server configuration to cPanel for analysis

This setting allows you to specify whether you wish to send anonymized information about your server configuration to cPanel for analysis. This setting defaults to On.

 

Send information about server usage to cPanel for analysis

This setting allows you to specify whether you wish to send anonymized information about how you use cPanel & WHM to cPanel for analysis. This setting defaults to Off .

 

Update analysis retention interval

This item allows you to specify how long you wish to keep the update analysis log files that you send to cPanel.

You can select the following options:

  • Disable message retention — Select this option if you no longer wish to retain update analysis log files.
  • 90 Days — Select this option to retain update analysis log files for 90 days. This is the default option.
  • Save indefinitely — Select this option to retain update analysis log files indefinitely.
  • Select the days text box to enter a number of days.

The system stores update analysis log files in the  /usr/local/cpanel/logs/update_analysis directory.

Accounts that can access a cPanel user account

This setting specifies which user(s) can log in to a cPanel account.

  • Root is the server owner.
  • Account-Owner can be the server owner or a reseller. This depends on who owns the cPanel account.
  • cPanel User is the user of the cPanel account.

Click the button that corresponds to the option you wish to use. This option defaults to Root, Account-Owner, and cPanel User.

Note:

If you disallow root or reseller logins to cPanel accounts, then the disallowed  root  user or reseller will no longer be able to access:

  • The cPanel icon () in the WHM List Accounts interface. (This provides access to the user's cPanel.)
  • The Live Editor feature in the WHM Branding interface.
  • The Locale Editor - Live Mode in the WHM Edit a Locale interface.
  • The Customize HTML pages feature in the WHM Configure Customer Contact interface.

 

Allow server-info and server-status

This item allows you to specify additional IP addresses and hostnames that should have access to example.com/server-info and example.com/server-status. These pages display sensitive information about your server. Therefore, you should be selective when you allow access to them.

Enter the desired IP addresses or hostnames into the available text box. Each new value should have its own line.

For more information, view the Apache mod_access documentation.

 

Allow cPanel users to install SSL Hosts if they have a dedicated IP

This item allows you to choose whether to allow cPanel users with dedicated IP addresses to install SSL hosts.

Click the button that corresponds to the value you wish to select. This item defaults to On.

 

Send anonymous usage data to cPanel

cPanel, Inc. uses anonymized data about our customers' usage of our products to improve cPanel & WHM functionality.

Click Off to no longer allow your anonymized usage information to be sent to cPanel, Inc. This item defaults to On.

 

Apache non-SSL IP/port

This item allows you to specify a new port or IP address that Apache will use to listen for requests and serve web pages over an unsecured connection.

To specify a new value, click the button next to the available field and enter the value you wish to use. This item defaults to 0.0.0.0:80, which indicates that Apache will use port 80 to serve content on an unsecured connection for all IP addresses associated with your server.

Warning:

Enter an IP to prevent Apache's ability to listen on all other IPs. This could deny HTTP traffic the ability to route correctly, which would make your site inaccessible to visitors.

 

Apache SSL Port

This item allows you to specify a new port or IP address that Apache will use to listen for requests and serve web pages over a secure connection.

Click the button next to the available field and enter the value you wish to use. This item defaults to 0.0.0.0:443, which indicates that Apache will use port 443 to serve content on a secure connection for all IP addresses associated with your server.

Warning:

Enter an IP to prevent Apache's ability to listen on all other IPs. This could deny HTTP traffic the ability to route correctly, which would make your site inaccessible to visitors.

cPanel & WHM API Shell (for developers)

This item adds the API Shell interface to cPanel and to WHM, which allows you to test API functions directly in the interface.

This item defaults to Off.

Note:

To enable this feature for cPanel, you must grant the API Shell feature to the desired users within the Feature Manager interface in WHM. You must also refresh your browser window.

 

The number of seconds between ChkServd service checks.

 

The number of times ChkServd allows a previous check to complete before termination.

 

The option to enable or disable ChkServd HTML notifications.

 

The option to enable or disable ChkServd recovery notifications.

 

BIND deferred restart time

This item allows you to specify the time (in seconds) that dnsadmin will wait before it restarts BIND. Additional restart requests in this period will be discarded silently.

On busy servers, set this number to 300 or 600 to prevent multiple subsequent restarts, which can lower memory consumption. If your system experiences very few DNS changes, we recommend that you use the default setting of 0.

Click the button next to the available field and enter the desired value in the text box.

 

Conserve memory

This option allows you to specify whether to conserve virtual memory (RAM) at the expense of more CPU usage and disk I/O.

Click the button that corresponds to the value you wish to select. This item defaults to Off.

 

cpsrvd username domain lookup

This item allows you to specify whether WHM will automatically supply a username (based on the account name) when a cPanel user enters a login password.

Click the button that corresponds to the value you wish to select. This item defaults to Off.

 

Gzip page compression

This item allows you to specify whether to use gzip compression when you view cPanel & WHM interfaces in your web browser. This will help reduce bandwidth usage.

Click the button that corresponds to the value you wish to select. This item defaults to On.

 

Use compiled dnsadmin

This item allows you to specify whether to use a compiled version of DNSAdmin. DNSAdmin is a program that helps simplify management of your DNS data.

Turning this option Off allows you to use system Perl modules within custom DNSAdmin hooks. This is necessary if you plan to customize your implementation of DNSAdmin. It will, however, increase DNSAdmin execution times.

Click the button that corresponds to the value you wish to select. This item defaults to On.

 

Allow Sharing Nameserver IPs

This item allows you to specify whether users can share nameserver IP addresses. Click On to decrease the number of IP addresses you need in your IP address pool.

Click the button that corresponds to the value you wish to select. This item defaults to Off.

 

Cache disk quota information

Set this option to On to cause WHM to cache disk usage information. This may result in disk usage information that is up to 15 minutes out of date.

Click the button that corresponds to the value you wish to use. This item defaults to On.

Warning:

If you disable this option, it may result in a large performance degradation.

 

Reverse DNS lookup upon connect

This item allows you to specify whether cPanel & WHM should attempt to resolve a client’s IP address to a domain name whenever a user connects to a cPanel service.

Click the button that corresponds to the value you wish to select. This item defaults to Off.

Warning:

If you enable this option, it may result in a large performance degradation.

 

Enable optimizations for the C compiler

 

Max HTTP submission size

This item allows you to specify the maximum file size in megabytes that a user is allowed to upload to your server. This setting applies to all uploads and form submissions in all web interfaces throughout cPanel & WHM.

To specify a new value, click the button next to the available text box and enter a value between 1 and 10240. This item defaults to Unlimited.

 

File upload required free space

This item allows you to specify the minimum filesystem quota space required after a file is uploaded to your server. This prevents users from the ability to meet or exceed their quota limits. This item applies to all uploads and form submissions in all web interfaces throughout cPanel & WHM.

Click the button next to the available text box and enter the new value. This item defaults to 5 MB.

 

The interval, in days, between rebuilds of the FTP quota and disk usage data (applies to Pure-FTPd only)

If you use Pure-FTP, setting this interval can allow the system to take into account disk usage information for files that are modified or added to a user's root FTP directory by processes other than the FTP server. A higher setting will reduce disk I/O but lower the accuracy of the usage data. A lower setting will improve accuracy, but will consume more disk I/O.

Click the button next to the text box to enter a new value. This item defaults to  30 days .

 

Depth to recurse for .htaccess checks

This option allows you to specify the maximum number of directories deep to look for .htaccess files when the PHP handler is changed. Any AddHandler directive lines in your users' .htaccess files that change how PHP is handled will be commented out.

For example, if /home/user is your home directory, and 2 is the value for this option, the following directories will be searched for .htaccess files:

  • /home/user/
  • /home/user/directory1/
  • /home/user/directory1/directory2/

The following directory will not be searched:

  • /home/user/directory1/directory2/directory3/

To configure this option, click the button next to the available text box and enter the new value. The default value is  2.

Warning:

We  strongly  recommend that you do  not  enter a value higher than  100. A value that is set higher than 100   can degrade your server's performance.

 

Enable legacy warnings

This item allows you to specify whether you will receive warnings about features that will become deprecated in future cPanel & WHM releases.

Click the button that corresponds to the value you wish to select. This item defaults to On.

Warning:

If you disable this, you will not be able to learn about features that will be removed in future releases. This could lead to a non-functional server when such features are finally removed.

 

I/O priority level at which bandwidth usage is processed

This item allows you to specify the sever's I/O priority for bandwidth log processing.

This item's default value is 4. The maximum priority you may specify is 7.

Note:

  ionice  must be available and supported by your operating system's  kernel  for this functionality to work.

 

I/O priority level at which stats logs are processed

This item allows you to specify the server's I/O priority when it processes stats logs.

This item's default value is 4. The maximum priority you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

I/O priority level at which nightly backups are run

This item allows you to specify the disk's I/O priority for nightly backups.

This item's default value is 3. The maximum priority you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

I/O priority level at which cPanel-generated backups are run

This item allows you to specify the server's I/O priority for cPanel-generated user backups.

This item's default value is 5. The maximum priority you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

I/O priority level for user-initiated processes

This setting applies to a few especially I/O-intensive user functions, such as actions initiated through the cPanel File Manager interface. 0 is the highest priority, 7 is the lowest priority.

This item's default value is 5. The maximum priority you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

I/O priority level at which quota checks are run

This item allows you to specify the server's I/O priority for quota checks.

This item's default value is 6. The maximum priority you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

The I/O priority level at which FTP quota checks are run (when Pure-FTPd is enabled)

This item is only available if you use the Pure-FTPd daemon. This item allows you to specify the server's I/O priority for FTP quota checks for Pure-FTPd.

This item's default value is 6. The maximum priority you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

I/O priority level at which optimizefs is run

optimizefs is a file system optimization utility that is used by cPanel & WHM. This item allows you to specify the server's I/O priority for optimizefs.

This item's default value is 6. The maximum priority you can specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

I/O priority level at which email_archive_maintenance is run

This item allows you to specify the server’s I/O priority level for the email_archive_maintenance script.

This item’s default value is 6. The maximum priority that you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

Use cPanel® jailshell by default

This option allows system administrators to configure new accounts and modified accounts to use the cPanel jailshell by default.

Note:

In a jailed  shell , by default, all filesystems are mounted with the  nosetuid  option. The  nosetuid  option blocks the operation of  setuid  and  setgid  commands, such as ping . This does not apply to Exim's  /usr/sbin/  directory.

This option defaults to Off.

We highly recommend that you enable these options.

More information about setuid and setgid is available.

 

Jailed /proc mount method

This option allows system administrators to permit the use of the /proc virtual filesystem in a jailshell.

Note:

If the system runs any version of Red Hat Enterprise Linux and CentOS on  XenPV , the  /proc  inside of the jailshell will behave the same as it does on version 5.x of Red Hat Enterprise Linux and CentOS.

There are three options:

  • Always mount a full /proc
    • The /proc virtual filesystem will have full privileges.
  • Mount limited /proc (RHEL/CentOS 6)+, Full /proc (RHEL/CentOS 5/xenpv)
    • In version 6.x of Red Hat Enterprise Linux and CentOS, the /proc virtual filesystem will be limited to the processes created in the user's jailshell session.

    • In version 5.x of Red Hat Enterprise Linux and CentOS, the /proc virtual filesystem will have all processes.
    • This is the default option.
    • We highly recommend that you upgrade to version 6.x of Red Hat Enterprise Linux and CentOS.
  • Mount limited /proc (RHEL/CentOS 6)+, No /proc (RHEL/CentOS 5/xenpv)
    • In version 6.x of Red Hat Enterprise Linux and CentOS, the /proc virtual filesystem will be limited to the processes created in the user's jailshell session.
    • In version 5.x of Red Hat Enterprise Linux and CentOS, the /proc virtual filesystem will not be mounted inside the jail.

 

Jailed /bin mounted suid

This option allows system administrators to permit the use of the setuid option in /bin in a jailshell.

This option is useful for system administrators who wish to run setuid commands, such as /bin/ping.

This option defaults to Off.

 

Jailed /usr/bin mounted suid

This option allows system administrators to permit the use of the setuid option in /usr/bin in a jailshell.

This option is useful for system administrators who wish to run setuid commands, such as /usr/bin/crontab.

This option defaults to Off.

Note:

We do  not  recommend that you enable this option. Under this option, users can install a crontab that runs outside of their jailed shell . This action would allow users to escape from their jailed environment.

 

Max cPanel process memory

This item allows you to specify the maximum amount of memory a cPanel process is able to use before it is automatically killed.

To specify a new value, click the button that corresponds to the available text box and enter the value you wish to use.

  • This item defaults to 128 MB.
  • You may also select Unlimited if you do not want to impose a memory limit on cPanel processes.

 

Max cPanel/WHM/Webmail service handlers

This item lets you specify the maximum number of concurrent connections the cPanel daemon,  cpsrvd , can have.

To specify a new value, click the button that corresponds to the available text box and enter the value you wish to use.

  • This item defaults to  160 .
  • The maximum number you can specify is  16384 .

 

SSL Support for cPanel daemons (no stunnel)

This item allows you to specify whether to use native SSL support, which will negate the need for Stunnel. Stunnel is a program that provides encrypted data transfer between clients and servers which do not communicate natively via SSL.

Click the button that corresponds to the value you wish to select. This item defaults to On.

 

Send language file changes to cPanel

If you've made changes to your cPanel & WHM language files, this item allows you to select whether to send them to cPanel during software updates.

Click the button that corresponds to the value you wish to select. This item defaults to On.

 

Remote WHM timeout

This item allows you to specify the number of seconds to allow a connection between this server and other remote WHM servers to remain idle before it times out.

Click the button that corresponds to the available text box and enter the value you wish to use. This item defaults to the minimum:  35 seconds .

 

Disk usage/quota bailout time

This item allows you to specify the maximum amount of time (in seconds) in which the system may attempt to retrieve disk usage and quota information before the data is considered unavailable.

Click the button that corresponds to the available text box and enter the value you wish to use. This item defaults to  60 seconds .

 

Email password reset

This item allows you to specify whether cPanel users can request an Account Password Reset email. This email will contain a confirmation code and SSL- and Non-SSL Reset Links that allow the recipient to reset the cPanel account's password.

Click the button that corresponds to the value that you wish to choose. This item defaults to Off.

 

Server Locale

This locale is used whenever a user selects a cPanel locale that does not exist, or whenever a user's web browser requests an invalid locale in the HTTP Accept-Language header. You should set this value to a locale that administrators, resellers, and users are likely to understand.

Use the menu to select a valid fallback locale.

 

Send a notification when a user's backup has errors

This item allows you to specify whether the server should notify you when a user’s cPanel backup file has errors.

Click the button that corresponds to the value you wish to choose. This item defaults to Off.

 

Allow other applications to run the cPanel and admin binaries

Enable this option to allow cPanel and admin binaries to run from other applications besides the cPanel server (cpsrvd). This option is useful for advanced administrators who are familiar with Perl scripting and who wish to run cPanel from their own custom programs.

Click the button that corresponds to the value you wish to choose. This item defaults to Off.

 

Enable WHOIS lookups for the nameserver IP manager

This item allows you to specify whether to enable the WHM Nameserver IPs screen to perform WHOIS lookups.

Click the button that corresponds to the value you wish to choose. This item defaults to On.

 

ChkServd TCP check failure threshold

This item allows you to specify the number of times a ChkServd TCP check must fail before the service is restarted and a notification is sent. On heavily loaded systems, these types of service checks fail occasionally, which will produce erroneous indications that services are down.

A value of three or higher is recommended for most systems. This item defaults to 3.

To specify a new value, click the button that corresponds to the available text box and enter the new value.

  • You may also disable notifications and restarts. To do this, select Disable notifications and restarts from TCP checks.

 

Number of seconds an SSH connection related to an account transfer may be inactive before timing out

This setting allows you to specify a number of seconds of inactivity after which account transfers' SSH connections will time out. You can specify any number of seconds between 300 and 3600.
 
This setting defaults to 500 seconds.

Use safe quotas

This item allows you to enable the Safe Quota Setting. We recommend that you select On if you experience quota corruption problems, and do not run a software RAID.

Warning:

If you set this option to On in a software RAID environment, it can degrade performance significantly.

Click the button that corresponds to the value you wish to choose. This item defaults to Off.

Note:

This tweak is not compatible with Virtuozzo or OpenVZ environments. If you run a Virtuozzo or OpenVZ system, this option will not appear in the WHM interface.