Child pages
  • cPanel Web Disk Configuration
This documentation is for cPanel & WHM version 80 EDGE builds.  The "RELEASE" version of our documentation can be found in the Version 78 Documentation space.


Skip to end of metadata
Go to start of metadata

(WHM >>  Home >> Service Configuration >> cPanel Web Disk Configuration)

Overview

The system uses cipher suites to negotiate security settings for Web Disk network connections over TLS/SSL. This interface allows you to edit the TLS/SSL cipher and protocol lists for Web Disk.

Warning:

As of cPanel & WHM version 68, we only support Transport Layer Security (TLS) protocol version 1.2

  • We will only support applications that use TLSv1.2.
  • We strongly recommend that you enable TLSv1.2 on your server. 

Important:

We recommend that only advanced users edit the cipher and protocol lists.

Defaults

By default, cPanel & WHM uses the following cipher list for web services:

 Click to view...
ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256

By default, cPanel & WHM uses the following protocol list for web services:

 Click to view...
SSLv23:!SSLv2:!SSLv3:!TLSv1:!TLSv1_2

Edit the cipher list

To edit the TLS/SSL Cipher List value, perform the following steps:

  1. Enter the appropriate cipher in the text box.

    Notes:

    • The default cipher list is PCI compliant. To edit the cipher list to improve the security level on your server, read Apache's SSLCipherSuite Directive documentation.
    • We do not recommend that you edit the cipher list to lower the security level. Make certain that the cipher suite uses at least 128-bit encryption.
  2. Click Save.

Edit the protocol list

To edit the TLS/SSL Protocol list, perform the following steps:

  1. Enter the appropriate protocols in the text box.

  2. Click Save.

Additional resources