Page tree
Skip to end of metadata
Go to start of metadata

This document is for a previous release of cPanel & WHM. To view our latest documentation, visit our Home page.

For cPanel & WHM 11.46

( Home >> Server Configuration >> Tweak Settings )

Accounts that can access a cPanel user account

This setting specifies which user(s) can log in to a cPanel account.

  • Root is the server owner.
  • Account-Owner can be the server owner or a reseller. This depends on who owns the cPanel account.
  • cPanel User is the user of the cPanel account.

Click the button that corresponds to the option you wish to use. This option defaults to Root, Account-Owner, and cPanel User.

Note:

If you disallow root or reseller logins to cPanel accounts, then the disallowed  root  user or reseller will no longer be able to access:

  • The cPanel icon () in the WHM List Accounts interface. (This provides access to the user's cPanel.)
  • The Live Editor feature in the WHM Branding interface.
  • The Locale Editor - Live Mode in the WHM Edit a Locale interface.
  • The Customize HTML pages feature in the WHM Configure Customer Contact interface.

 

Allow server-info and server-status

This item allows you to specify additional IP addresses and hostnames that should have access to example.com/server-info and example.com/server-status. These pages display sensitive information about your server. Therefore, you should be selective when you allow access to them.

Enter the desired IP addresses or hostnames into the available text box. Each new value should have its own line.

For more information, view the Apache mod_access documentation.

 

Allow cPanel users to install SSL Hosts if they have a dedicated IP

This item allows you to choose whether to allow cPanel users with dedicated IP addresses to install SSL hosts.

Click the button that corresponds to the value you wish to select. This item defaults to On.

 

Send anonymous usage data to cPanel

cPanel, Inc. uses anonymized data about our customers' usage of our products to improve cPanel & WHM functionality.

Click Off to no longer allow your anonymized usage information to be sent to cPanel, Inc. This item defaults to On.

 

Apache non-SSL IP/port

This item allows you to specify a new port or IP address that Apache will use to listen for requests and serve web pages over an unsecured connection.

To specify a new value, click the button next to the available field and enter the value you wish to use. This item defaults to 0.0.0.0:80, which indicates that Apache will use port 80 to serve content on an unsecured connection for all IP addresses associated with your server.

Warning:

Enter an IP to prevent Apache's ability to listen on all other IPs. This could deny HTTP traffic the ability to route correctly, which would make your site inaccessible to visitors.

 

Apache SSL Port

This item allows you to specify a new port or IP address that Apache will use to listen for requests and serve web pages over a secure connection.

Click the button next to the available field and enter the value you wish to use. This item defaults to 0.0.0.0:443, which indicates that Apache will use port 443 to serve content on a secure connection for all IP addresses associated with your server.

Warning:

Enter an IP to prevent Apache's ability to listen on all other IPs. This could deny HTTP traffic the ability to route correctly, which would make your site inaccessible to visitors.

cPanel & WHM API Shell (for developers)

This item adds the API Shell interface to cPanel and to WHM, which allows you to test API functions directly in the interface.

This item defaults to Off.

Note:

To enable this feature for cPanel, you must grant the API Shell feature to the desired users within the Feature Manager interface in WHM. You must also refresh your browser window.

 

The number of seconds between ChkServd service checks.

 

The number of times ChkServd allows a previous check to complete before termination.

 

The option to enable or disable ChkServd HTML notifications.

 

The option to enable or disable ChkServd recovery notifications.

 

BIND deferred restart time

This item allows you to specify the time (in seconds) that dnsadmin will wait before it restarts BIND. Additional restart requests in this period will be discarded silently.

On busy servers, set this number to 300 or 600 to prevent multiple subsequent restarts, which can lower memory consumption. If your system experiences very few DNS changes, we recommend that you use the default setting of 0.

Click the button next to the available field and enter the desired value in the text box.

 

Conserve memory

This option allows you to specify whether to conserve virtual memory (RAM) at the expense of more CPU usage and disk I/O.

Click the button that corresponds to the value you wish to select. This item defaults to Off.

 

cpsrvd username domain lookup

This item allows you to specify whether WHM will automatically supply a username (based on the account name) when a cPanel user enters a login password.

Click the button that corresponds to the value you wish to select. This item defaults to Off.

 

Gzip page compression

This item allows you to specify whether to use gzip compression when you view cPanel & WHM interfaces in your web browser. This will help reduce bandwidth usage.

Click the button that corresponds to the value you wish to select. This item defaults to On.

 

Use compiled dnsadmin

This item allows you to specify whether to use a compiled version of DNSAdmin. DNSAdmin is a program that helps simplify management of your DNS data.

Turning this option Off allows you to use system Perl modules within custom DNSAdmin hooks. This is necessary if you plan to customize your implementation of DNSAdmin. It will, however, increase DNSAdmin execution times.

Click the button that corresponds to the value you wish to select. This item defaults to On.

 

Allow Sharing Nameserver IPs

This item allows you to specify whether users can share nameserver IP addresses. Click On to decrease the number of IP addresses you need in your IP address pool.

Click the button that corresponds to the value you wish to select. This item defaults to Off.

 

Cache disk quota information

Set this option to On to cause WHM to cache disk usage information. This may result in disk usage information that is up to 15 minutes out of date.

Click the button that corresponds to the value you wish to use. This item defaults to On.

Warning:

If you disable this option, it may result in a large performance degradation.

 

Reverse DNS lookup upon connect

This item allows you to specify whether cPanel & WHM should attempt to resolve a client’s IP address to a domain name whenever a user connects to a cPanel service.

Click the button that corresponds to the value you wish to select. This item defaults to Off.

Warning:

If you enable this option, it may result in a large performance degradation.

 

Enable optimizations for the C compiler

 

Max HTTP submission size

This item allows you to specify the maximum file size in megabytes that a user is allowed to upload to your server. This setting applies to all uploads and form submissions in all web interfaces throughout cPanel & WHM.

To specify a new value, click the button next to the available text box and enter a value between 1 and 10240. This item defaults to Unlimited.

 

File upload required free space

This item allows you to specify the minimum filesystem quota space required after a file is uploaded to your server. This prevents users from the ability to meet or exceed their quota limits. This item applies to all uploads and form submissions in all web interfaces throughout cPanel & WHM.

Click the button next to the available text box and enter the new value. This item defaults to 5 MB.

 

The interval, in days, between rebuilds of the FTP quota and disk usage data (applies to Pure-FTPd only)

If you use Pure-FTP, setting this interval can allow the system to take into account disk usage information for files that are modified or added to a user's root FTP directory by processes other than the FTP server. A higher setting will reduce disk I/O but lower the accuracy of the usage data. A lower setting will improve accuracy, but will consume more disk I/O.

Click the button next to the text box to enter a new value. This item defaults to  30 days .

 

Depth to recurse for .htaccess checks

This option allows you to specify the maximum number of directories deep to look for .htaccess files when the PHP handler is changed. Any AddHandler directive lines in your users' .htaccess files that change how PHP is handled will be commented out.

For example, if /home/user is your home directory, and 2 is the value for this option, the following directories will be searched for .htaccess files:

  • /home/user/
  • /home/user/directory1/
  • /home/user/directory1/directory2/

The following directory will not be searched:

  • /home/user/directory1/directory2/directory3/

To configure this option, click the button next to the available text box and enter the new value. The default value is  2.

Warning:

We  strongly  recommend that you do  not  enter a value higher than  100. A value that is set higher than 100   can degrade your server's performance.

 

Enable legacy warnings

This item allows you to specify whether you will receive warnings about features that will become deprecated in future cPanel & WHM releases.

Click the button that corresponds to the value you wish to select. This item defaults to On.

Warning:

If you disable this, you will not be able to learn about features that will be removed in future releases. This could lead to a non-functional server when such features are finally removed.

 

I/O priority level at which bandwidth usage is processed

This item allows you to specify the sever's I/O priority for bandwidth log processing.

This item's default value is 4. The maximum priority you may specify is 7.

Note:

  ionice  must be available and supported by your operating system's  kernel  for this functionality to work.

 

I/O priority level at which stats logs are processed

This item allows you to specify the server's I/O priority when it processes stats logs.

This item's default value is 4. The maximum priority you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

I/O priority level at which nightly backups are run

This item allows you to specify the disk's I/O priority for nightly backups.

This item's default value is 3. The maximum priority you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

I/O priority level at which cPanel-generated backups are run

This item allows you to specify the server's I/O priority for cPanel-generated user backups.

This item's default value is 5. The maximum priority you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

I/O priority level for user-initiated processes

This setting applies to a few especially I/O-intensive user functions, such as actions initiated through the cPanel File Manager interface. 0 is the highest priority, 7 is the lowest priority.

This item's default value is 5. The maximum priority you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

I/O priority level at which quota checks are run

This item allows you to specify the server's I/O priority for quota checks.

This item's default value is 6. The maximum priority you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

The I/O priority level at which FTP quota checks are run (when Pure-FTPd is enabled)

This item is only available if you use the Pure-FTPd daemon. This item allows you to specify the server's I/O priority for FTP quota checks for Pure-FTPd.

This item's default value is 6. The maximum priority you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

I/O priority level at which optimizefs is run

optimizefs is a file system optimization utility that is used by cPanel & WHM. This item allows you to specify the server's I/O priority for optimizefs.

This item's default value is 6. The maximum priority you can specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

I/O priority level at which email_archive_maintenance is run

This item allows you to specify the server’s I/O priority level for the email_archive_maintenance script.

This item’s default value is 6. The maximum priority that you may specify is 7.

Note:

 ionice must be available and supported by your operating system's kernel for this functionality to work.

 

Use cPanel® jailshell by default

This option allows system administrators to configure new accounts and modified accounts to use the cPanel jailshell by default.

Note:

In a jailed  shell , by default, all filesystems are mounted with the  nosetuid  option. The  nosetuid  option blocks the operation of  setuid  and  setgid  commands, such as ping . This does not apply to Exim's  /usr/sbin/  directory.

This option defaults to Off.

We highly recommend that you enable these options.

More information about setuid and setgid is available.

 

Jailed /proc mount method

This option allows system administrators to permit the use of the /proc virtual filesystem in a jailshell.

Note:

If the system runs any version of Red Hat Enterprise Linux and CentOS on  XenPV , the  /proc  inside of the jailshell will behave the same as it does on version 5.x of Red Hat Enterprise Linux and CentOS.

There are three options:

  • Always mount a full /proc
    • The /proc virtual filesystem will have full privileges.
  • Mount limited /proc (RHEL/CentOS 6)+, Full /proc (RHEL/CentOS 5/xenpv)
    • In version 6.x of Red Hat Enterprise Linux and CentOS, the /proc virtual filesystem will be limited to the processes created in the user's jailshell session.

    • In version 5.x of Red Hat Enterprise Linux and CentOS, the /proc virtual filesystem will have all processes.
    • This is the default option.
    • We highly recommend that you upgrade to version 6.x of Red Hat Enterprise Linux and CentOS.
  • Mount limited /proc (RHEL/CentOS 6)+, No /proc (RHEL/CentOS 5/xenpv)
    • In version 6.x of Red Hat Enterprise Linux and CentOS, the /proc virtual filesystem will be limited to the processes created in the user's jailshell session.
    • In version 5.x of Red Hat Enterprise Linux and CentOS, the /proc virtual filesystem will not be mounted inside the jail.

 

Jailed /bin mounted suid

This option allows system administrators to permit the use of the setuid option in /bin in a jailshell.

This option is useful for system administrators who wish to run setuid commands, such as /bin/ping.

This option defaults to Off.

 

Jailed /usr/bin mounted suid

This option allows system administrators to permit the use of the setuid option in /usr/bin in a jailshell.

This option is useful for system administrators who wish to run setuid commands, such as /usr/bin/crontab.

This option defaults to Off.

Note:

We do  not  recommend that you enable this option. Under this option, users can install a crontab that runs outside of their jailed shell . This action would allow users to escape from their jailed environment.

 

Max cPanel process memory

This item allows you to specify the maximum amount of memory a cPanel process is able to use before it is automatically killed.

To specify a new value, click the button that corresponds to the available text box and enter the value you wish to use.

  • This item defaults to 128 MB.
  • You may also select Unlimited if you do not want to impose a memory limit on cPanel processes.

 

Max cPanel/WHM/Webmail service handlers

This item lets you specify the maximum number of concurrent connections the cPanel daemon,  cpsrvd , can have.

To specify a new value, click the button that corresponds to the available text box and enter the value you wish to use.

  • This item defaults to  160 .
  • The maximum number you can specify is  16384 .

 

SSL Support for cPanel daemons (no stunnel)

This item allows you to specify whether to use native SSL support, which will negate the need for Stunnel. Stunnel is a program that provides encrypted data transfer between clients and servers which do not communicate natively via SSL.

Click the button that corresponds to the value you wish to select. This item defaults to On.

 

Send language file changes to cPanel

If you've made changes to your cPanel & WHM language files, this item allows you to select whether to send them to cPanel during software updates.

Click the button that corresponds to the value you wish to select. This item defaults to On.

 

Remote WHM timeout

This item allows you to specify the number of seconds to allow a connection between this server and other remote WHM servers to remain idle before it times out.

Click the button that corresponds to the available text box and enter the value you wish to use. This item defaults to the minimum:  35 seconds .

 

Disk usage/quota bailout time

This item allows you to specify the maximum amount of time (in seconds) in which the system may attempt to retrieve disk usage and quota information before the data is considered unavailable.

Click the button that corresponds to the available text box and enter the value you wish to use. This item defaults to  60 seconds .

 

Email password reset

This item allows you to specify whether cPanel users can request an Account Password Reset email. This email will contain a confirmation code and SSL- and Non-SSL Reset Links that allow the recipient to reset the cPanel account's password.

Click the button that corresponds to the value that you wish to choose. This item defaults to Off.

 

Server Locale

This locale is used whenever a user selects a cPanel locale that does not exist, or whenever a user's web browser requests an invalid locale in the HTTP Accept-Language header. You should set this value to a locale that administrators, resellers, and users are likely to understand.

Use the menu to select a valid fallback locale.

 

Send a notification when a user's backup has errors

This item allows you to specify whether the server should notify you when a user’s cPanel backup file has errors.

Click the button that corresponds to the value you wish to choose. This item defaults to Off.

 

Allow other applications to run the cPanel and admin binaries

Enable this option to allow cPanel and admin binaries to run from other applications besides the cPanel server (cpsrvd). This option is useful for advanced administrators who are familiar with Perl scripting and who wish to run cPanel from their own custom programs.

Click the button that corresponds to the value you wish to choose. This item defaults to Off.

 

Enable WHOIS lookups for the nameserver IP manager

This item allows you to specify whether to enable the WHM Nameserver IPs screen to perform WHOIS lookups.

Click the button that corresponds to the value you wish to choose. This item defaults to On.

 

ChkServd TCP check failure threshold

This item allows you to specify the number of times a ChkServd TCP check must fail before the service is restarted and a notification is sent. On heavily loaded systems, these types of service checks fail occasionally, which will produce erroneous indications that services are down.

A value of three or higher is recommended for most systems. This item defaults to 3.

To specify a new value, click the button that corresponds to the available text box and enter the new value.

  • You may also disable notifications and restarts. To do this, select Disable notifications and restarts from TCP checks.

 

Number of seconds an SSH connection related to an account transfer may be inactive before timing out

This setting allows you to specify a number of seconds of inactivity after which account transfers' SSH connections will time out. You can specify any number of seconds between 300 and 3600.
 
This setting defaults to 500 seconds.

Use safe quotas

This item allows you to enable the Safe Quota Setting. We recommend that you select On if you experience quota corruption problems, and do not run a software RAID.

Warning:

If you set this option to On in a software RAID environment, it can degrade performance significantly.

Click the button that corresponds to the value you wish to choose. This item defaults to Off.

Note:

This tweak is not compatible with Virtuozzo or OpenVZ environments. If you run a Virtuozzo or OpenVZ system, this option will not appear in the WHM interface.