Last modified: July 9, 2024
Overview
This interface allows you to configure many cPanel & WHM settings. Tabs at the top of the interface categorize the settings, and the All tab displays all of the settings.
-
These settings exist in the
/var/cpanel/cpanel.config
file. However, we recommend that system administrators use this interface to make changes. -
Some settings may not appear if your server does not use the Standard server profile. For more information, read our How to Use Server Profiles documentation.
-
Click the question mark next to each setting’s description to learn more about the setting.
-
The interface displays a warning icon () next to any setting for which you have not specified a value. This includes settings that are new, settings that WHM has set to a default value, and settings that your server selected dynamically.
Compression
The Compression section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
gzip compression level | This setting allows you to set the gzip compression level for pigz, which is a gzip-compatible program that uses multiple CPU cores simultaneously. Higher settings provide greater compression, but compress more slowly. |
|
6 |
Number of pigz processes | This setting allows you to set how many independent pigz processes the system uses to perform gzip compression. For the best performance, we recommend that you set this value to match the number of processor cores that are available on your server. |
|
This setting defaults to the number of processor cores on your server. |
Number of kilobyte chunks per compression work unit | This setting allows you to control the size, in 1024 -byte chunks, of compression work units that the system distributes to each pigz process. |
|
4096 |
cPAddons Site Software
This section does not appear on servers running the Ubuntu® operating system.
The cPAddons Site Software section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
cPAddons Site Software admin email | This setting specifies a contact email address that receives cPAddon moderation requests. The system also notifies resellers if they choose to configure their contact email address in the cPanel interface.
Note:
We have deprecated the moderation feature and will remove it in the future. You cannot enable moderation for any cPAddons. Any cPAddons that currently use moderation will continue to function, but if you disable this setting you cannot reactivate moderation.
|
To specify the cPAddon administrator’s email address, enter the email address that you wish to use in the text box. | None |
cPAddons Site Software source automatic updates | This setting specifies whether you wish for cPanel & WHM to automatically update all of the cPAddons’ source files. |
|
On |
Max cPAddons Site Software installation requests | This setting specifies the maximum number of moderation requests that a single user can make at one time. | To specify a new value, enter the number of requests that you wish to allow in the text box.
|
99 |
Max cPAddons Site Software installation requests per addon | This setting specifies the maximum number of moderation requests per cPAddon that a single user can make at one time. | To specify a new value, enter the number of requests that you wish to allow per cPAddon in the text box.
|
99 |
cPAddons Site Software moderation notification | This setting allows you to select whether the cPAddons administrator receives notifications about pending moderation requests. |
|
Off |
Allow cPAddons Site Software installations from non-cPanel sources | This setting allows you to install third-party scripts on your server. |
|
On |
Allow cPAddons Site Software installations from modified sources | This setting allows users to install previously-altered cPAddons. You may wish to enable this item when you test custom cPaddons. |
|
Off |
Notify reseller of cPAddons Site Software installations | This setting notifies resellers whenever their users must update their cPAddons. |
|
On |
Notify root of cPAddons Site Software installations | This setting notifies the cPAddons Site Software administrator whenever their users must update their cPAddons. |
|
On |
Notify cPanel users when they need to update their cPAddons Site Software installations | This setting notifies cPanel users whenever they must update their cPAddons. |
|
Allow users to choose |
Development
The Development section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Standardized Hooks - Debug Mode | The Standardized Hooks system’s debug mode helps to troubleshoot hook issues. For more information, read our Guide to Standardized Hooks - Debug Mode documentation.
Important:
If you enable this setting, it also enables debug mode in the cPanel interface. This severely impacts the loading and performance of the cPanel interface. We recommend that you disable this setting when you do not need it.
|
|
Debug mode is off. |
User Interface - Debug Mode | This setting changes the way the system generates user interfaces. For example, it disables optimizations such as minifications and cache-busting. |
|
Debug mode is off. |
Display
The Display section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Default login theme | This setting allows you to select the default login theme for cPanel users. | Select a login theme. | cpanel |
Display File Usage information in the cPanel stats bar (inode count) | This setting allows you to display the number of files and directories (inodes) that a cPanel account uses. The Statistics section of cPanel’s Home interface displays this information in the File Usage section. |
|
Off |
Number of accounts per page to display in “List Accounts”. | This setting allows you to specify the number of accounts to display per page in WHM’s List Accounts interface (WHM » Home » Account Information » List Accounts). |
|
30 |
Display announcement banner | This setting allows you to display the Announcement banner in the cPanel interface. cPanel users can dismiss this banner. |
|
On |
Display Upgrade Opportunities column in “List Accounts”. | This setting allows you to display the Upgrade Opportunities column in WHM’s List Accounts interface (WHM » Home » Account Information » List Accounts). |
|
Off |
Domains
The Domains section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Allow users to park subdomains of the server’s hostname. | This setting allows users to park subdomains on your server’s main domain. For example, for a user creating the subdomain.server.example.com alias on the server.example.com FQDN, On would cause the action to succeed. |
|
Off |
Allow cPanel users to create subdomains across accounts | This setting allows a cPanel user to create an addon domain or subdomain on a domain that another user owns. For example, if a user owns the example.com domain, another user could create the store.example.com subdomain. |
|
Off |
Allow WHM users to create subdomains across accounts | This setting allows WHM users to create an addon domain or subdomain for a domain that another user owns. For example, if a cPanel user owns the example.com domain, a WHM user could add a DNS zone for the store.example.com subdomain. |
|
Off |
Allow Remote Domains | This setting allows the creation of parked domains (aliases) and addon domains that resolve to other servers. |
|
Off |
Allow resellers to create accounts with subdomains of the server’s hostname. | This setting allows resellers to create accounts with subdomains on your server’s main domain. For example, if your hostname is server.example.com , enable this setting to redirect user.server.example.com visitors to the reseller’s website. |
|
Off |
Allow unregistered domains | This setting lets users add domains they didn’t register with a domain name registrar. |
|
Off |
Automatically add A entries for registered nameservers when creating a new zone | This setting controls whether to add A entries automatically for a domain’s nameservers when a user creates a domain. |
|
On |
Replace service SSL certificates that do not match the local hostname | This setting changes how the /usr/local/cpanel/scripts/checkallsslcerts script functions. If you enable this, the system replaces SSL certificates that don’t match the server’s hostname. The system replaces them with a cPanel-signed certificate. This also applies to wildcard certificates. |
|
On |
Prevent cPanel users from creating specific domains | This setting prevents creating domains whose names appear in the /var/cpanel/commondomains file. If you enable this, cPanel users can’t create any domains (addon or parked) that exist in the /var/cpanel/commondomains and /usr/local/cpanel/etc/commondomains files.
Note:
Do not edit the
/usr/local/cpanel/etc/commondomains file directly. If you do, the system will overwrite your changes whenever cPanel & WHM updates.
|
|
On |
Check zone syntax | This setting allows the system to check zone file syntax each time it saves or syncs DNS zone files. |
|
On |
Check zone owner | This setting allows the system to check a DNS zone’s owner whenever it saves or syncs DNS zone files. |
|
On |
Enable DKIM on domains for newly created accounts | DKIM (DomainKeys Identified Mail) verifies a message’s sender and integrity. It allows an email system to prove that a message is valid, not forged, and came from the specified domain. This setting allows you to specify whether to enable DKIM for new accounts by default.
|
|
On |
Enable SPF on domains for newly created accounts | SPF (Sender Policy Framework) keeps spammers from sending email that shows your domain as the sender (spoofing). This adds addresses to a list of computers that you authorize to send mail from your domain. It verifies that your domain’s sent messages come from the listed sender. This reduces the amount of backscatter that you receive. This setting allows you to specify whether to enable SPF for new accounts by default.
|
|
On |
DNS request management application | This setting determines which application handles DNS management requests. |
|
dnsadmin, auto-detect SSL |
Service subdomains | This setting gives users access to cPanel & WHM through standard HTTP ports (80 and 443 ).
example.com is the domain:
|
|
On |
Thunderbird and Outlook autodiscover and autoconfig support (enables service subdomain and SRV record creation) | This setting creates the autodiscover and autoconfig service subdomains when you create a domain. It also creates autodiscover and autoconfig SRV records.
|
|
On |
Preferred mail service to configure to use for Thunderbird and Outlook autodiscover and autoconfig support | This setting lets you choose the email transfer method to use with Thunderbird and Outlook for Autodiscover and AutoConfig support.
Note:
You must enable the Thunderbird and Outlook autodiscover and autoconfig support (enables service subdomain and SRV record creation) setting to configure this setting.
|
|
imap |
Host to publish in the SRV records for Outlook autodiscover support. | The Microsoft Outlook® Autodiscover service searches DNS records. It searches for the SRV record for a domain that points to a particular Autodiscover server. This setting lets you take these actions:
Note:
|
|
cpanelemaildiscovery.cpanel.net |
Overwrite custom A records used for service subdomains | This setting removes A records that match your service subdomains.
|
|
Off |
Overwrite custom SRV records used by Outlook AutoDiscover support | This setting removes SRV records when adding or removing Outlook Autodiscover support.
Note:
You must set the Thunderbird and Outlook autodiscover and autoconfig support (enables service subdomain and SRV record creation) setting to On to toggle this setting.
|
|
Off |
Service subdomain override | This setting creates cPanel, Webmail, Web Disk, and WHM subdomains that override the default service subdomains. For example, a user could direct cpanel.example.com visitors to mycontrolpanel.example.com . For more information about service subdomains, read our Service and Proxy Subdomains documentation. |
|
On |
Restrict document roots to public_html | This setting keeps users from creating addon domains and subdomains outside of their public_html directory. For example, if you enable this option and create the example.com addon domain, the system creates the /home/username/public_html/example.com directory and not the /home/username/example.com directory. |
|
On |
Share the document root by default when creating a domain | This setting automatically selects the Share document root checkbox in the Create a New Domain interface within cPanel’s Domains interface (cPanel » Home » Domains » Domains). |
|
On |
Always use authoritative (registered) nameservers when creating a new DNS zone. | This setting lets a new domain use authoritative nameservers. If you enable this setting, the server won’t use the nameservers you set when creating the domain. |
|
Off |
Logging
The Logging section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
dnsadmin logging level | This setting allows you to set the log level for dnsadmin requests in the /usr/local/cpanel/logs/dnsadmin_log file. A value of 0 indicates no logging. |
|
0 |
Enable verbose logging of DNS zone syncing | This setting causes your server to print DNS information to the command line interface whenever the system synchronizes a DNS zone.
Note:
This setting is for testing purposes only. Do not enable this option on a production server.
|
|
Off |
Log successful logins | This setting causes your server to record successful login events for cPanel, Webmail, WHM, and DAV to their respective log files in the /usr/local/cpanel/logs/ directory. |
|
Off |
Enable cPanel API Log | This setting allows you to log successful or failed cPanel API 1, successful cPanel API 2, and successful UAPI 2 function calls. We store this log in the /usr/local/cpanel/logs/api_log file. |
|
Off |
The Mail section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Max hourly emails per domain | This setting specifies the maximum number of emails that each domain can send per hour. The system only enforces email send limits on remote email deliveries.
Note:
|
|
Unlimited |
Number of emails a domain may send per day before the system sends a notification. | This setting specifies the number of emails per day that a domain can send before the system sends a notification.
|
|
Unlimited |
The mailbox storage format for new accounts | This setting specifies the storage format for new accounts’ mailboxes. Accounts that you restore or transfer to your server will retain their original mailbox format. For more information about storage formats, read Dovecot’s dbox and maildir documentation. |
|
maildir |
Initial default/catch-all forwarder destination | This setting specifies the initial forwarding destination for new accounts’ default (catch-all) email addresses. The default address handles email that nonexistent users on your server’s domains receive. Because a domain may receive a large number of spam messages for nonexistent users, if you choose to process this mail your server may use more resources. cPanel users can modify this forwarding destination in cPanel’s Default Address interface (cPanel » Home » Email » Default Address). |
|
System account |
Mail authentication via domain owner password | This setting specifies whether to allow the use of the website owner’s password to access any email address that the owner created within the account. The Single Sign On system generates a temporary user to access a cPanel account and its email accounts as the account owner. This means that if you log in to any email account through the cPanel interface, you do not have to enter a password. |
|
Off |
Include mailman in disk usage calculations | This setting specifies whether cPanel’s disk usage calculations include Mailman mailing lists. |
|
On |
Email delivery retry time | This setting specifies the number of minutes that your mail server waits before it attempts to redeliver a message after delivery failure.
Note:
This setting does not appear if you disable the Exim service in WHM’s Service Manager interface (WHM » Home » Service Configuration » Service Manager).
|
|
15 m |
Track email origin via X-Source email headers | This setting specifies whether to track the origin of messages that users send through your mail server.
Note:
This setting does not appear if you disable the Exim service in WHM’s Service Manager interface (WHM » Home » Service Configuration » Service Manager).
|
|
On |
The percentage of email messages (above the account’s hourly maximum) to queue and retry for delivery. | This setting specifies whether to queue outgoing messages for later delivery after a domain reaches its limit for outgoing messages per hour. For example, with the default value of 125% , after the domain reaches its hourly limit Exim queues any additional messages, up to 125% of the Max hourly emails per domain value. After the account reaches 125% of the Max hourly emails per domain value, any additional outgoing messages will fail.
Note:
|
|
125% |
Monitor the number of unique recipients per hour to detect potential spammers. | This setting configures the system to monitor the number of emails to unique recipients that each individual email user sends. If this number exceeds the value of the Number of unique recipients per hour to trigger potential spammer notification setting, the system will send a notification.
Note:
This setting does not function if you disable the Eximstats driver in WHM’s Service Manager interface (WHM » Home » Service Configuration » Service Manager).
|
|
On |
Select the action for the system to take on an email account when it detects a potential spammer. | The system automatically takes this action on every email account that it detects as a potential spammer.To release or delete outgoing mail held in the queue, perform the following actions in cPanel’s Email Accounts interface (cPanel » Home » Email » Email Accounts):
Note:
This setting does not function if you disable the Eximstats driver in WHM’s Service Manager interface (WHM » Home » Service Configuration » Service Manager).
|
|
Take no action |
Number of unique recipients per hour to trigger potential spammer notification. | This setting specifies the number of emails sent by any email account in one hour that will cause the system to send an alert notification. This setting does not count emails sent by Mailman toward the limit. It affects the Select the action for the system to take on an email account when it detects a potential spammer option.
Note:
This setting does not function if you disable the Eximstats driver in WHM’s Service Manager interface (WHM » Home » Service Configuration » Service Manager).
|
|
500 |
Count mailman deliveries towards a domain’s Max hourly emails. | This setting allows you to specify whether to count messages to Mailman mailing lists against an account’s Max hourly emails per domain limit.
Note:
|
|
Off |
Maximum percentage of failed or deferred messages a domain may send per hour | This setting allows you to specify a maximum percentage of failed or deferred messages that your domain may send per hour. The system uses this setting in conjunction with the Number of failed or deferred messages a domain may send before protections can be triggered setting. Your server does not temporarily block outgoing mail from a domain until the domain meets both settings’ requirements. For more information, read our How to Prevent Spam with Mail Limiting Features documentation.
Note:
|
|
Unlimited |
Number of failed or deferred messages a domain may send before protections can be triggered | This setting specifies a number of failed or deferred messages that a domain can send before the system blocks outgoing mail. Your server temporarily blocks outgoing mail from a domain if both of the following conditions are true:
Note:
|
|
5 |
Restrict outgoing SMTP to root, exim, and mailman (FKA SMTP Tweak) | This setting redirects outgoing SMTP connections to the local mail server and allows only the root , exim , and mailman users to make direction connections. If you enable this setting, scripts and email users must use the sendmail binary to send mail and cannot use direct socket access. |
|
On |
Prevent “nobody” from sending mail | This setting denies the nobody user the ability to send mail to a remote address. PHP and CGI scripts generally run as the nobody user. To use a PHP or CGI script to send mail, enable the suEXEC or mod_php modules in your Apache configuration. |
|
On |
Allow users to relay mail if they use an IP address through which someone has validated an IMAP or POP3 login within the last hour (Pop-before-SMTP) | This setting allows users who authenticated against the POP3 or IMAP service in the last 30 minutes to send emails through SMTP again without the need to reauthenticate.
Note:
|
|
Off |
Add X-PopBeforeSMTP header for mail sent via POP-before-SMTP | This setting requires the mail server to append a list to the X-PopBeforeSMTP headers of all of that user’s outgoing messages. This list contains all of the email addresses that a user checks with POP before SMTP.
Note:
|
|
Off |
Enable BoxTrapper spam trap | This setting allows you to enable BoxTrapper, a spam prevention system that uses blacklists, whitelists, and ignore lists, and an automated response-verification system.
Note:
This setting does not appear if you disable the Exim service in WHM’s Service Manager interface (WHM » Home » Service Configuration » Service Manager).
|
|
On |
Enable Email Archiving support | This setting enables email archiving support. Email archiving maintains a copy of each email that your server sends or receives. The server immediately archives an email when it receives the message.
|
|
Off |
Enable Mailman mailing lists | This setting enables Mailman on your server. Mailman is third-party software that manages mailing lists.
Note:
The system does not start the Mailman service until the server hosts at least one mailing list. |
|
On |
Enable Roundcube webmail | This setting enables the Roundcube webmail client. Webmail allows cPanel users to access their email accounts with an internet connection and a web browser. |
|
On |
Enable Apache SpamAssassin™ spam filter | This setting enables Apache SpamAssassin, a spam filtration program that scores incoming email and checks that score against a predefined limit. If the spam score exceeds this limit, the server takes the action that the domain owner specified in cPanel’s Spam Filters interface (cPanel » Home » Mail » Spam Filters). You can discard mail or place it in a spam folder.
Note:
|
|
On |
Enable Apache SpamAssassin™ Spam Box delivery for messages marked as spam (user configurable) | This setting enables Apache SpamAssassin’s spam box feature. The spam box receives incoming mail that Apache SpamAssassin marks as spam. This is useful for users who receive a message that the system falsely flags as spam. |
|
On |
Prefix “mail.” onto Mailman URLs | This setting specifies whether the system should prefix Mailman URLs with mail (for example, http://mail.domain.com/mailman ).
Note:
If you set this value to On, this setting overrides any custom URL in your Mailman configuration. |
|
Off |
Default user-defined quota value for new email accounts | This setting defines the default quota that appears in cPanel’s Email Accounts interface (cPanel » Home » Mail » Email Accounts). |
|
32768 MB |
Default quota option for new email accounts | This setting defines the preselected quota option in cPanel’s Email Accounts interface (cPanel » Home » Mail » Email Accounts). |
|
User-defined |
Notifications
The Notifications section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
System disk space usage warnings | This setting allows you to enable disk space usage warnings. When you enable disk space usage warnings, these settings become available:
|
|
On |
Account system disk usage “warn” percentage | This setting allows you to specify the threshold at which a system’s disk usage enters the warn state, or to disable this notification. |
|
82.55% |
Account system disk usage “critical” percentage | This setting allows you to specify the threshold at which a system’s disk usage enters the critical state, or to disable this notification. |
|
92.55% |
Disk quota usage warnings | This setting allows you to enable disk quota usage warnings. The system sends these warnings to cPanel users who approach their disk space quota. After you enable disk space usage warnings, these disk quota usage settings become available:
|
|
On |
Out of memory warnings | This setting allows you to enable out of memory warnings. The system sends these warnings to cPanel users whose processes run out of sufficient memory space. |
|
On |
Account disk quota “warn” percentage | This setting allows you to specify the threshold at which a user’s disk quota usage enters the warn state, or to disable this notification. |
|
80% |
Notify admin or reseller when disk quota reaches “warn” state | This setting allows you to specify whether the server sends a notification to the owner of the cPanel account when it reaches the warn state. |
|
Off |
Account disk quota “critical” percentage | This setting allows you to specify the threshold at which a user’s disk quota usage enters the critical state, or to disable this notification. |
|
90% |
Notify admin or reseller when disk quota reaches “critical” state | This setting allows you to specify whether the server sends a notification to the owner of the cPanel account when it reaches the critical state. |
|
On |
Account disk quota “full” percentage | This setting allows you to specify the threshold at which a user’s disk quota usage enters the full state, or to disable this notification. |
|
98% |
Notify admin or reseller when disk quota reaches “full” state | This setting allows you to specify whether the server sends a notification to the owner of the cPanel account when it reaches the full state. |
|
On |
Enable mailbox usage warnings | This setting allows you to enable mailbox usage warnings. The system sends these warnings to cPanel users whose mailboxes are almost full. After you enable mailbox usage warnings, these settings become available:
|
|
Off |
Mailbox disk quota “warn” percentage | This setting allows you to specify the threshold at which a user’s mailbox enters the warn state. The system sends this notification to the email account. |
|
80% |
Mailbox disk quota “critical” percentage | This setting allows you to specify the threshold at which a user’s mailbox enters the critical state. The system sends this notification to the email account. |
|
90% |
Mailbox disk quota “full” percentage | This setting allows you to specify the threshold at which a user’s mailbox enters the full state. The system sends this notification to the cPanel default email account. |
|
98% |
Bandwidth limit check | This setting allows you to select whether to automatically suspend HTTP service for accounts that exceed their bandwidth limit. If you disable this option, the system will cease all bandwidth notifications and handle all accounts as though they possess unlimited bandwidth. |
|
On |
Send notifications when certificates approach expiry. | This setting allows you to specify whether the server sends a notification when an SSL certificate approaches expiry. |
|
On |
Send bandwidth limit notification emails | This setting allows you to specify whether the server sends notification emails to accounts that approach their bandwidth limits. After you enable this setting, these settings become available:
|
|
On |
Bandwidth usage warning: 70% | This setting allows you to specify whether to send an email notification to users who have used 70% of their bandwidth. |
|
Off |
Bandwidth usage warning: 75% | This setting allows you to specify whether to send an email notification to users who have used 75% of their bandwidth. |
|
Off |
Bandwidth usage warning: 80% | This setting allows you to specify whether to send an email notification to users who have used 80% of their bandwidth. |
|
On |
Bandwidth usage warning: 85% | This setting allows you to specify whether to send an email notification to users who have used 85% of their bandwidth. |
|
Off |
Bandwidth usage warning: 90% | This setting allows you to specify whether to send an email notification to users who have used 90% of their bandwidth. |
|
Off |
Bandwidth usage warning: 95% | This setting allows you to specify whether to send an email notification to users who have used 95% of their bandwidth. |
|
Off |
Bandwidth usage warning: 97% | This setting allows you to specify whether to send an email notification to users who have used 97% of their bandwidth. |
|
Off |
Bandwidth usage warning: 98% | This setting allows you to specify whether to send an email notification to users who have used 98% of their bandwidth. |
|
Off |
Bandwidth usage warning: 99% | This setting allows you to specify whether to send an email notification to users who have used 99% of their bandwidth. |
|
Off |
Packages
These settings configure defaults for resellers who do not possess unlimited quota Access Controls List (ACL) privileges.
-
To access ACL controls, use WHM’s Edit Reseller Nameservers and Privileges interface (WHM » Home » Resellers » Edit Reseller Nameservers and Privileges).
-
For more information, read our Guide to WHM Plugins - Access Control Lists documentation.
The Packages section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Default maximum email quota for new packages | This setting assigns a maximum email quota value to new packages when the package creator does not possess the Create Packages with Unlimited Features ACL privilege. |
|
1024 MB |
Default disk usage quota for new packages | This setting assigns a disk usage quota value to new packages when the package creator does not possess the Create Packages with Unlimited Disk Usage ACL privilege. |
|
10240 MB |
Default bandwidth limit for new packages | This setting assigns a bandwidth limit value to new packages when the package creator does not possess the Create Packages with Unlimited Bandwidth ACL privilege. |
|
1048576 MB |
PHP
The following settings control cPanel & WHM’s internal PHP. Your web server does not use these settings. To configure your web server’s PHP settings, use WHM’s MultiPHP INI Editor interface (WHM » Home » Software » MultiPHP INI Editor).
php.ini
files. Your cPanel & WHM installation will overwrite direct edits to these files.
The PHP section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
cPanel PHP max execution time | This setting specifies the number of seconds that a cPanel PHP script can run before the system terminates it. This limit prevents poor server performance due to poorly written scripts. |
|
90 s |
cPanel PHP memory limit | This setting specifies the memory_limit setting in the php.ini file for cPanel’s internal PHP. |
|
128 MB |
cPanel PHP max POST size | This setting specifies the maximum size in Megabytes (MB) of a POST request. |
|
55 MB |
cPanel PHP max upload size | This setting specifies the maximum file size in Megabytes (MB) that a PHP script may upload. |
|
50 MB |
cPanel PHP loader | This setting specifies a PHP loader or loaders through which cPanel & WHM executes internal PHP scripts. |
|
N/A |
Redirection
This section allows you to configure the SSL and non-SSL redirects for the cPanel, WHM, and Webmail services. This affects the URL the users see when they access the services.
The Redirection section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Choose the closest matched domain for which that the system has a valid certificate when redirecting from non-SSL to SSL URLs. Formerly known as “Always redirect to SSL/TLS” | This setting allows you to redirect users to the proper SSL/TLS ports when they visit specific URLs. The system will redirect users who navigate to the /cpanel , /webmail , or /whm paths to the appropriate port.
|
|
On |
Non-SSL redirect destination | This setting allows you to specify how to redirect users who access cPanel & WHM via the /cpanel , /webmail , or /whm paths without SSL. If you enable the Always redirect to SSL/TLS setting, the system ignores this setting. |
|
Origin Domain Name |
SSL redirect destination | This setting allows you to specify how to redirect users who access cPanel & WHM via the /cpanel , /webmail , or /whm paths with SSL. If you enable the Always redirect to SSL/TLS setting, the system ignores this setting. |
|
SSL Certificate Name |
Logout redirection URL | This setting allows you to redirect users to a specific URL after they log out. |
|
No redirection |
Security
The Security section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Allow autocomplete for login screens. | This setting specifies whether users can save their cPanel, WHM, and Webmail passwords in the browser’s cache. |
|
On |
Hide login password from cgi scripts | This setting hides the REMOTE_PASSWORD variable from scripts that the cpsrvd daemon’s CGI handler executes.
|
|
Off |
Cookie IP validation | This setting validates IP addresses for cookie-based logins. This denies attackers the ability to capture cPanel session cookies in order to gain access to your server’s cPanel & WHM interfaces.
|
|
strict |
Generate core dumps | This setting specifies whether cPanel & WHM’s services create core dumps. You can use core dumps to debug a service.Core dumps contain sensitive information. Make certain that you keep them secure. |
|
Off |
Send passwords when creating a new account | This setting allows you to send new users their passwords in plaintext over email when you create a new account.We strongly recommend that you do not enable this setting to avoid a security risk. |
|
Off |
Enable File Protect | This setting enables EasyApache 4’s FileProtect option, which improves the security of each user’s public_html directory. |
|
On |
Blank referrer safety check | This setting only permits cPanel & WHM to perform functions when the browser provides a referral URL. Each attempt to submit data to cPanel & WHM must have a referral URL. This helps the system to prevent cross-site request forgery (XSRF) attacks.
Important:
Exercise caution if you enable this setting. This setting can break the system’s integration with other systems, login applications, and billing software.
|
|
Off |
Referrer safety check | This setting only permits cPanel & WHM to perform functions when the browser provides a referral URL that exactly matches the destination URL. Each attempt to submit data to cPanel & WHM must have a referral URL for which the domain or IP address and port number exactly match those of the destination URL. This helps the system to prevent cross-site request forgery (XSRF) attacks.
Important:
Exercise caution if you enable this setting. This setting can break the system’s integration with other systems, login applications, and billing software.
|
|
Off |
Require SSL for cPanel Services | This option forces the server to redirect unencrypted cPanel, Webmail, WHM, and DAV requests to secure ports according to the SSL redirection settings. We strongly recommend that you enable this setting. |
|
On |
Allow PHP to be run when logged in as a reseller to WHM | This setting enables resellers to run PHP code in WHM. WHM’s PHP code runs as the root user. Exercise caution if you enable this setting. |
|
Off |
Allow apps that have not registered with AppConfig to be run when logged in as a reseller to WHM. | This setting allows unregistered AppConfig applications to run when you log in to WHM as a reseller. When you disable this setting, resellers can only run registered AppConfig applications. |
|
Off |
Allow apps that have not registered with AppConfig to be run when logged in as root or a reseller with the “all” ACL in WHM. | This setting allows unregistered AppConfig applications to run when you log in as a root user. When you disable this setting, a root user can only run registered AppConfig applications. |
|
Off |
This setting allows WHM applications and addons to execute even if an ACL list has not been defined. | This setting allows registered AppConfig applications and addons to run without a defined ACL list. When you disable this setting, cPanel & WHM forces registered AppConfig applications and addons to set an ACL list. |
|
Off |
This setting allows cPanel and Webmail applications and addons to execute even if a feature list has not been defined. | This setting allows registered AppConfig cPanel and Webmail apps to run without a defined required features list. When you disable this setting, cPanel & WHM forces registered AppConfig cPanel and Webmail apps to set a Required Features list. |
|
Off |
Use MD5 passwords with Apache | This setting specifies whether the system uses MD5 hashing for new passwords in Apache .htpasswd files. Because Apache .htpasswd files can contain a mix of crypt- and MD5-encoded passwords, this setting does not change the encoding of any existing passwords.MD5-encoded passwords provide more security than crypt-encoded passwords. Crypt only uses the first eight characters of the password for authentication, but the system allows MD5 passwords of length. |
|
On |
EXPERIMENTAL: Jail Apache Virtual Hosts using mod_ruid2 and cPanel® jailshell. | This setting enables the JailManager TailWatch Driver module. JailManager keeps each VirtFS filesystem jail shell in sync with the root filesystem. JailManager also returns the VirtFS filesystem jailed shells to a usable state when the system reboots.
Warning:
This feature is unstable and can result in unintended consequences, including performance and connection issues. Exercise extreme caution if you enable an EXPERIMENTAL feature or setting.
jailshell or noshell experiences the following changes:
|
|
Off |
Signature validation on assets downloaded from cPanel & WHM mirrors. | This setting specifies the type of GnuPG (GPG) key signature file (keyring) that the system uses to verify and sign files that you download from cPanel & WHM httpupdate mirrors.
|
|
Release Keyring Only |
Default SSL/TLS Key Type | This setting lets you specify the system’s default SSL/TLS key type. The system uses the selected key type to generate root ’s SSL/TLS keys. The system also uses this key type when it generates keys for cPanel users who do not specify a preferred SSL/TLS key type in cPanel’s SSL/TLS interface (cPanel » Home » Security » SSL/TLS). For more information about the available key types, read the SSL/TLS Key Types documentation.
Note:
When you update your preferred key type, the system will perform an AutoSSL run. This updates all installed AutoSSL-issued certificates to use the new key type.
|
|
RSA, 2,048-bit |
Generate a self signed SSL certificate if a CA signed certificate is not available when setting up new domains. | When you create a new domain, cPanel will automatically enable SSL for that domain if an SSL certificate exists. If no SSL certificate exists, this functionality will generate a self-signed certificate.
Important:
|
|
On |
Verify signatures of 3rdparty cPaddons. | This setting verifies all third-party cPAddons’ GPG keys. You can enable this setting if you enable the Signature validation on assets downloaded from cPanel & WHM mirrors setting. This experimental setting does not provide effective security control. |
|
Off |
Allow deprecated WHM accesshash authentication | This setting allows users to authenticate with WHM via an access hash that they create in WHM’s Remote Access Key interface (WHM » Home » Clusters » Remote Access Key). We deprecated WHM’s Remote Access Key feature in cPanel & WHM version 64. We strongly recommend that you use API tokens instead. |
|
Off |
Use X-Frame-Options and X-Content-Type-Options headers with cpsrvd | This setting adds the X-Frame-Options: SAMEORIGIN and X-Content-Type-Options: nosniff headers to cpsrvd responses.
|
|
On |
Enable strict SSH host key checking | This setting configures the server to always verify the host key of remote systems for outgoing SSH connections, such as rsync and SFTP backup, transfers, and remote MySQL® connections. This setting helps defend the server against man-in-the-middle (MITM) attacks. |
|
disabled |
Display a message to reboot the server after essential software updates. | This setting configures the server to display a prompt to reboot the server after it installs an essential software update. If you disable this setting, you must manually reboot the server after essential software updates in order to address security issues. |
|
On |
Enable Content-Security-Policy on some interfaces | This setting enables the Content-Security-Policy (CSP) header on WHM’s Configure Application Locales, Delete a Locale, Locale XML Download, Locale XML Upload, View Available Locales, and Shell Fork Bomb Protection interfaces. This header can help to prevent certain cross-site scripting (XSS) attacks, and it may block JavaScript from external sites when you visit a CSP-enabled interface. |
|
Off |
Software
The Software section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Dormant services | This setting configures the system to unload idle services from memory after up to ten minutes of inactivity. Then the system unloads listening devices that correspond to those services. This setting reduces memory usage, but delays responses from dormant services.
|
You can enable this behavior for the following services:
|
The system enables this setting for each service by default. |
Maintenance cPanel RPM Check | This setting allows you to specify whether the system runs the /scripts/check_cpanel_pkgs script to check cPanel RPMs for problems during nightly maintenance. If these checks encounter problems, the system sends a notification to the administrator. For more information, read our The check_cpanel_pkgs Script documentation. |
|
On |
Maintenance cPanel RPM Digest Check | This setting allows you to specify whether the system runs a digest check against existing RPMs during nightly maintenance. This check ensures that RPM files are not corrupt and that nothing has tampered with them.
|
|
On |
Enable phpMyAdmin information schema searches | This setting enables information schema searches by phpMyAdmin in MySQL.
|
|
On |
SQL
The SQL section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Include databases in disk usage calculations | If you enable this setting, your server will include databases in disk usage calculations. |
|
On |
Use INFORMATION_SCHEMA to acquire MySQL disk usage | This setting uses MySQL’s INFORMATION_SCHEMA view to include MySQL table disk usage when it calculates disk usage totals. This setting causes MySQL to become unresponsive until data collection finishes, which may degrade your system’s performance.If you disable this setting, cPanel & WHM queries the filesystem for MySQL’s disk usage information. Table type usage and local configuration may cause inaccuracy in the disk usage totals. |
|
On |
Allow cPanel & WHM to determine the best value for your MySQL open_files_limit configuration? | This setting allows cPanel & WHM to determine the best value for your MySQL open_files_limit setting in the /etc/systemd/system/ MySQL file. The system uses the total number of open tables in your databases to determine this value.Newer versions of MySQL require additional file descriptors for each open table. A server with a large number of open tables (for example, servers with multiple installations of WordPress®) may require an open_files_limit value that is greater than the default value of 2048 . However, an extremely large open_files_limit setting requires more memory, and may cause performance issues.We recommend that you do not manually adjust the open_files_limit setting in the /etc/systemd/system/ MySQL file. If you manually adjust this setting and add more databases and tables, the system will not increase the limit. When you surpass the limit, you will receive an error. |
|
On |
Allow cPanel & WHM to determine the best value for your MySQL max_allowed_packet configuration? | This setting allows cPanel to determine the best value for your MySQL max_allowed_packet setting in your server’s my.cnf configuration file. The max_allowed_packet setting determines the maximum size of a single packet for any generated or intermediate string. The value of this setting must be large enough to properly handle very long BLOB columns or long strings. However, an extremely large max_allowed_packet setting may catch unnecessarily large packets, and may cause performance issues.We recommend that you do not manually adjust the max_allowed_packet setting in your server’s my.cnf file. If you manually adjust this setting and add more databases and tables, the system will not increase the limit. When the system surpasses the limit, you will receive an error. |
|
On |
Allow cPanel & WHM to determine the best value for your MySQL innodb_buffer_pool_size configuration? | This setting allows cPanel & WHM to determine the best value for your MySQL innodb_buffer_pool_size setting in your server’s my.cnf configuration file. The innodb_buffer_pool_size setting determines the size of the memory buffer in bytes that the InnoDB storage engine uses to cache data and indexes of its tables. However, an extremely large innodb_buffer_pool_size setting requires more memory and may cause performance issues. We recommend that you do not manually adjust the innodb_buffer_pool_size setting in your server’s my.cnf file. If you manually adjust this setting and add more databases and tables, the system will not increase the limit. When you surpass the limit, you will receive an error. |
|
Off |
Require a username prefix on names of new databases and database users | When you enable database prefixing, the system prefixes database names and database usernames with a portion of the system username and an underscore.
|
|
On |
Force short prefix for MySQL and MariaDB databases | If you enable this setting, your server will limit MySQL and MariaDB database prefixes to eight characters. |
|
Off |
Stats and Logs
The Stats and Logs section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Allow users to update Awstats from cPanel | This setting controls whether cPanel users may update their AWStats software. |
|
Off |
Delete each domain’s access logs after statistics are gathered | This setting controls whether the system deletes each domain’s access log after it processes statistics. Enable this setting to help conserve disk space. |
|
On |
Archive logs in the user’s home directory at the end of each stats run unless configured by the user. | This setting archives logs in the user’s home directory. The system archives the logs at the end of each statistics cycle. If you disable this option, the system will not archive logs unless the user has configured their settings to archive the logs. |
|
On |
Remove the previous month’s archived logs from the user’s home directory at the end of each month unless configured by the user. | This setting controls whether the system removes the archived log files from the user’s home directory at the end of each month. If you disable this option, the system retains archived logs unless the user has configured their settings to remove the logs. |
|
On |
Extra CPUs for server load | This setting allows you to specify a value to add to the number of physical CPUs in your server. The sum of these two numbers becomes the value at which the cpuwatch , cpanellogd , backups , and CPU statistics daemons consider the system to be in a critical load state. |
|
0 |
Keep master FTP log file | This setting controls whether the system deletes the /usr/local/apache/domlogs/ftpxferlog file whenever the system parses FTP logs. |
|
Off |
Keep log files at the end of the month | This setting allows you to keep domain log files at the end of each month in the /home/user/logs directory. If you disable this option, the system deletes these log files.
Note:
|
|
Off |
Keep stats logs | This setting allows you to retain the statistics log (/usr/local/cpanel/logs/stats_log ) between cPanel & WHM restarts. If you use WHM’s cPanel Log Rotation Configuration interface (WHM » Home » Service Configuration » cPanel Log Rotation Configuration) to archive the log on a monthly basis, the system may delete the log after it archives the log. |
|
Off |
Apache log file chmod value | This setting allows you to set the chmod value for the files that reside in the /etc/apache2/domlogs directory. The chmod value sets permissions for who can read, write to, and execute a file.
|
|
0640 |
Show bandwidth usage in megabytes by default in WHM | This setting allows you to specify whether WHM displays bandwidth usage in Megabytes (MB). |
|
Off |
Stats log level | This setting allows you to specify how much information the server should include in the /usr/local/cpanel/logs/stats_log file. Higher numbers indicate greater detail. |
|
1 |
Log rotation size threshold | This setting allows you to specify a threshold above which the cpanellogd daemon rotates log files. This setting does not apply to the Apache domlogs . |
|
300 MB |
The interval, in days, to retain Exim stats in the database | This setting allows you to specify the number of days during which you wish to keep Exim statistics.
Note:
If you set this to a high value and your server has a high volume of email traffic, the Mail Delivery Reports page in WHM may hang or load slowly. |
|
10 |
The number of days to keep records of ModSecurity® rule hits. (Use zero to keep forever). | This setting allows you to specify the number of days that you wish to maintain your hits records in the modsec database. |
0 , the system will not purge hits records from the modsec database. |
7 |
Number of days to retain upcp logs before purging them | This setting allows you to specify the number of days that you wish to retain logs from the nightly upcp maintenance script. |
|
45 |
Stats Programs
Statistical analysis programs allow your users to view information about their site visitors. For more configuration options, use WHM’s Statistics Software Configuration interface (WHM » Home » Server Configuration » Statistics Software Configuration).
The Stats Programs section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Awstats reverse DNS resolution | This setting allows you to specify whether the AwStats statistical analysis program interprets visitors’ domain names as IP addresses. Disable this option to conserve server resources. |
|
Off |
Enable Analog stats | This setting allows you to enable the Analog statistical analysis program. |
|
On |
Enable Awstats stats | This setting allows you to enable the AwStats statistical analysis program. |
|
On |
Enable Webalizer stats | This setting allows you to enable the Webalizer statistical analysis program. |
|
On |
Status
The Status section includes the following setting:
Setting | Description | Values | Default |
---|---|---|---|
Critical load threshold | This setting allows you to specify the minimum CPU load above which the following interfaces display a warning for the server load:
|
|
# of CPUs (autodetect) |
Support
Many of the options in this section of the Tweak Settings interface allow you to specify whether to send anonymized data to cPanel for analysis. For more information about the data that cPanel, L.L.C. collects from your server, read our cPanel Analytics - The Data We Use documentation.
The Support section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Display documentation links in cPanel interface | This option allows you to specify whether each cPanel interface displays a question mark link to that interface’s documentation.
Note:
|
|
Off |
Send error reports to cPanel for analysis | This setting allows you to specify whether you wish to send anonymized error reports to cPanel, L.L.C. for analysis. |
|
Off |
Update analysis retention interval | This setting allows you to specify how long to keep the update analysis log files that you send to cPanel, L.L.C. The system stores update analysis log files in the /usr/local/cpanel/logs/update_analysis directory. |
|
90 days |
System
The System section includes the following settings:
Setting | Description | Values | Default |
---|---|---|---|
Accounts that can access a cPanel user account: | This setting allows you to specify which users can log in to a cPanel account. If you disallow root or reseller logins to cPanel accounts, the disallowed root user or reseller cannot access the cPanel icon in WHM’s List Accounts interface (WHM » Home » Account Information » List Accounts), which provides access to the user’s cPanel account. |
|
Root, Account-Owner, and cPanel User |
Allow server-info and server-status | This setting allows you to specify additional IP addresses and hostnames that can access the example.com/server-status page, where example.com represents a domain’s name.
Note:
We strongly recommend that you use caution when you allow access to these pages. They display sensitive information about your server.
|
Enter the desired IP addresses or hostnames in the text box, one IP address or hostname per line. | N/A |
Allow cPanel users to install SSL Hosts. | This setting allows you to specify whether to allow cPanel users to install SSL hosts. If you disable this setting, cPanel users can’t enable the Force HTTPS Redirects option for any domain in cPanel’s Domains interface (cPanel » Home » Domains » Domains). |
|
On |
Apache non-SSL IP/port | This setting allows you to specify a new port or IP address that Apache uses to listen for requests and serve web pages over an unsecured connection.
Important:
This setting can deny HTTP traffic the ability to route correctly, which renders your site inaccessible to visitors.
|
|
0.0.0.0:80 |
Apache SSL port | This setting allows you to specify a new port or IP address that Apache uses to listen for requests and serve web pages over a secure connection.
Important:
This setting can deny HTTPS traffic the ability to route correctly, which renders your site inaccessible to visitors.
|
|
0.0.0.0:443 |
cPanel & WHM API shell (for developers) | This setting allows you to add the following interfaces, which allow the root user and resellers to test API functions directly:
root user and resellers in WHM’s Feature Manager interface (WHM » Home » Packages » Feature Manager), then refresh your browser window. |
|
Off |
DNS server reload deferral time | This setting allows you to define a time, in seconds, that the dnsadmin service waits before it restarts the DNS server. The system silently discards additional restart requests in this time period.
Note:
|
|
2 s |
HTTPD deferred reload time | This setting allows you to specify the number of seconds that the system waits before it restarts the web server. The system silently discards additional restart requests in this time period. |
|
0 s |
The number of seconds between ChkServd service checks. | This setting allows you to specify the number of seconds between each chkservd daemon service check. If you choose to set a value below 300 , we recommend that you first use the /var/log/chkservd.log file to verify the length of your system’s chkservd checks. The settings that you choose in WHM’s Service Manager interface (WHM » Home » Service Configuration » Service Manager) affect the length of these checks. |
|
300 |
The number of times ChkServd allows a previous check to complete before termination. | This setting allows you to specify the number of times that the chkservd daemon allows a check to complete before termination. |
|
2 |
The option to enable or disable ChkServd HTML notifications. | This setting allows you to enable or disable HTML notifications from the chkservd daemon. |
|
On |
The option to enable or disable ChkServd recovery notifications. | This setting allows you to enable or disable recovery notifications from the chkservd daemon. |
|
On |
Max upload size for CalDAV/CardDAV server | This setting allows you to set the maximum file size in Megabytes (MB) for events and attachments uploaded to the calendar server. |
Important:
We strongly recommend that you do not enter a value higher than
10 . A value higher than 10 can degrade your server’s performance.
|
10 MB |
Conserve memory | This setting allows you to specify whether to conserve memory (RAM) at the expense of more CPU usage and disk I/O. |
|
Off |
cpsrvd username domain lookup | This setting allows you to specify whether WHM automatically supplies a username (based on the account name) when a cPanel user enters a login password. |
|
Off |
Prevent cpsrvd from serving standard HTTP ports | This setting prevents the cpsrvd daemon from taking over the standard HTTP ports when you disable the system’s web server role.
Important:
This action renders any cPanel & WHM features that depend on the standard HTTP ports partially or entirely unusable. These features include service subdomains, AutoSSL, Mailman, and BoxTrapper.
|
|
Off |
Cache disk quota information | This setting allows you to specify whether WHM caches disk usage information.
Note:
|
|
On |
Recursive DNS query pool size | This setting restricts the maximum number of currently active recursive DNS queries. Use this setting if your firewall imposes rate limits on DNS queries. These rate limits can degrade recursive DNS queries in applications such as AutoSSL. |
|
10 |
Reverse DNS lookup upon connect | This setting allows you to specify whether cPanel & WHM attempts to resolve a client’s IP address to a domain name whenever a user connects to a cPanel service.
Important:
If you enable this setting, it may degrade your server’s performance.
|
|
Off |
Maximum age, in days, of content to keep when automatically emptying the users’ File Manager Trash | This setting determines how many days to keep files in the .trash folder of user home directories. These folders contain deleted files from cPanel’s File Manager interface (cPanel » Home » Files » File Manager). |
|
Disabled |
Enable optimizations for the C compiler | This setting allows you to specify whether the compiler optimizes code for your system. On some systems, compiler optimizations can trigger a bug in system libraries. |
|
Off |
Max HTTP submission size | This setting allows you to specify the maximum file size in Megabytes (MB) that a user can upload to your server. This setting applies to all uploads and form submissions in cPanel & WHM, which includes Webmail, cPanel’s File Manager interface (cPanel » Home » Files » File Manager), and phpMyAdmin. |
|
Unlimited |
File upload required free space | This setting allows you to specify the minimum filesystem quota space that the system requires after a file uploads to your server. This setting applies to all uploads and form submissions in cPanel & WHM, which includes Webmail, cPanel’s File Manager interface (cPanel » Home » Files » File Manager), and phpMyAdmin.
|
|
5 MB |
Interval, in days, between rebuilds of the FTP quota and disk usage data (applies to Pure-FTPd only) | This setting allows you to specify the number of days between rebuilds of the FTP quota and disk usage data for Pure-FTP. This interval allows the system to consider account disk usage information for files that other processes modify or add to a user’s root FTP directory.
Note:
|
|
30 |
Depth to recurse for .htaccess checks | This setting allows you to specify the maximum number of directories deep to look for .htaccess files when you change the PHP handler.For example, if the /home/user/public_html/ directory is your document root, and 2 is the value for this setting, the system searches the following directories for .htaccess files:
/home/user/public_html/directory1/directorya/ directory.
Note:
This setting also comments out any
AddHandler directive lines in your users’ .htaccess files that change how the system handles PHP.
|
Important:
We strongly recommend that you do not enter a value that is higher than
10 . A value that is higher than 10 can degrade your server’s performance.
|
2 |
Account Invites for Subaccounts | This settings allow cPanel account users to send invitations to new Subaccount users via cPanel’s User Manager interface (cPanel » Home » Preferences » User Manager). An invitation includes a link to a time-sensitive page where the Subaccount user can set their own password rather than rely on the cPanel account user to set their password.
Note:
When you disable this option, the system disables the Send login link to alternate email address. setting in cPanel’s Create an Email Account interface (cPanel » Home » Email » Create an Email Account).
|
|
On |
Listen on IPv6 Addresses | This setting causes the cpsrvd daemon and other cPanel & WHM services to listen on IPv6.
Note:
|
|
Off |
I/O priority level at which bandwidth usage is processed | This setting allows you to specify the server’s I/O priority for bandwidth log processing.
|
|
6 |
I/O priority level at which stats logs are processed | This setting allows you to specify the server’s I/O priority when it processes statistics logs.
|
|
7 |
I/O priority level at which nightly backups are run | This setting allows you to specify the disk’s I/O priority for nightly backups.
|
|
6 |
I/O priority level at which cPanel-generated backups are run | This setting allows you to specify the server’s I/O priority for cPanel-generated user backups.
|
|
7 |
I/O priority level for user-initiated processes | This setting allows you to specify the server’s I/O priority for certain user-initiated processes. This setting applies to a few especially I/O-intensive user functions, such as actions for cPanel’s File Manager interface (cPanel » Home » Files » File Manager).
|
|
6 |
I/O priority level at which quota checks are run | This setting allows you to specify the server’s I/O priority for quota checks.
|
|
6 |
I/O priority level at which FTP quota checks are run (when Pure-FTPd is enabled) | This setting allows you to specify the server’s I/O priority for FTP quota checks for Pure-FTPd.
|
|
6 |
I/O priority level at which email_archive_maintenance is run | This setting allows you to specify the server’s I/O priority level for the email_archive_maintenance script, which cPanel & WHM uses to support email-archiving functions.
|
|
7 |
I/O priority level at which dovecot_maintenance is run | This setting allows you to specify the server’s I/O priority level for the dovecot_maintenance script, which cPanel & WHM uses to maintain mailboxes.
|
|
7 |
Use cPanel® jailshell by default | This setting allows you to configure accounts to use the cPanel® jailshell by default. Jailed shell systems, by default, mount all filesystems with the nosetuid option. The nosetuid option blocks the operation of setuid and setgid commands, such as the ping command. However, this does not apply to Exim’s /usr/sbin/ directory. For more information, read our How to Create Custom Jailed Shell Mounts documentation. |
|
Off |
Jailed /proc mount method ( * Choosing this option will create a limited /proc mount for legacy operating systems.) | This setting allows you to permit the use of the /proc virtual filesystem in a jailshell. For more information, read our VirtFS Jailed Shell documentation. |
|
Full /proc for supported operating systems and xenpv |
Jailed /bin mounted suid | This setting allows you to permit the use of the setuid option in the /bin directory in a jailshell. System administrators who wish to run setuid commands, such as the /bin/ping command, may wish to use this setting. This setting does not affect servers that run the AlmaLinux, Rocky Linux, or CloudLinux operating systems. |
|
Off |
Jailed /usr/bin mounted suid | This setting allows you to permit the use of the setuid option in the /usr/bin directory in a jailshell. System administrators who wish to run setuid commands, such as the /usr/bin/crontab command, may wish to use this setting. This setting does not affect servers that run the AlmaLinux, Rocky Linux, or CloudLinux operating systems. |
|
Off |
Max cPanel process memory | This setting allows you to specify the maximum amount of memory that a cPanel & WHM process can use before the system automatically kills it. |
|
4096 MB |
Max cPanel/WHM/Webmail service handlers | This setting allows you to specify the maximum number of concurrent connections for the cpsrvd daemon.
Important:
Keep this setting as low as possible to limit potential denial-of-service attacks.
|
|
200 |
Minimum time between Apache graceful restarts. | This setting allows you specify the number of seconds Apache will delay before it initiates a restart. This only applies to graceful restarts that are deferrable. |
|
10 |
Send language file changes to cPanel | This setting configures your system to send any changes to language files to cPanel, L.L.C. so that we can improve our translations of interface text. |
|
On |
Remote WHM timeout | This setting allows you to specify the number of seconds to allow a connection between this server and other remote WHM servers to remain idle before it times out. |
|
35 s |
Disk usage/quota bailout time | This setting allows you to specify the maximum amount of time in seconds during which the system may attempt to retrieve disk usage and quota information before it considers the data unavailable. |
|
60 s |
Reset Password for cPanel accounts | This setting enables the Reset Password feature for cPanel account users. The Reset Password feature uses the account’s contact email address to verify a password-reset request. The email contains a security code that verifies whether the user can access the Subaccount’s contact email address as part of the password-reset verification process.
|
|
On |
Reset Password for Subaccounts | This setting enables the Reset Password feature and new Subaccount invitations for cPanel Subaccount users. The Reset Password feature uses the Subaccount’s contact email address to verify a password-reset request. The email contains a security code that verifies whether the user can access the contact email address as part of the password-reset verification process.
|
|
On |
Enable Linux kernel update during nightly maintenance. | This setting allows you to specify whether to allow nightly updates to your Linux kernel. If you enable this setting, the nightly updates will update the Linux kernel. If your kernel updates, the system will notify you when you log in that you need to reboot your system. |
|
Off |
Server Locale | This setting allows you to specify the locale that the system uses whenever a user selects a cPanel locale that does not exist. This setting also allows you to specify the locale that the system uses whenever a user’s web browser requests an invalid locale in the HTTP Accept-Language header.
|
Select an available locale from the menu.
Note:
Don’t see your language of choice? Take our Language Support Feedback Survey to let us know your preferences. |
English |
Send a notification when a user’s backup has errors | This setting allows you to specify whether the server notifies you when a user’s cPanel backup file contains errors. |
|
On |
Allow other applications to run the cPanel and admin binaries | This setting allows you to specify whether cPanel and admin binaries run from applications other than the cPanel server daemon (cpsrvd ). This setting is useful for advanced administrators who are familiar with Perl scripting and who wish to run cPanel from their own custom programs. |
|
Off |
ChkServd TCP check failure threshold | This setting allows you to specify the number of times that a chkservd daemon TCP check must fail before the system restarts the service and sends a notification. On heavily loaded systems, these types of service checks fail occasionally, which produces erroneous indications that services are down. |
|
3 |
Number of seconds an SSH connection related to an account transfer may be inactive before timing out | This setting allows you to specify the number of seconds of inactivity after which account transfers’ SSH connections time out. |
|
1800 seconds |
Do not make changes to the firewall during account modification. | By default, the system makes changes to the firewall when an account is modified. If you enable this setting, the system does not make the corresponding changes to the firewall. These firewall modifications are important for Tomcat and the cpuser_port_authority script. The server administrator will need to perform any necessary firewall changes. |
|
Off |
Do not make changes to the firewall via scripts/configure_firewall_for_cpanel . |
By default, cPanel adds firewall rules to ensure that cPanel ports are open. If you enable this setting, the system does not add these cPanel port rules to the firewall. These firewall modifications are important for remote access to the cPanel services. The server administrator will need to perform any necessary firewall changes. |
|
Off |
Enforce user account limits for resellers with the “Account Modification” ACL. | The Account Modification ACL privilege allows resellers to bypass their user account limits. Enable this setting to prevent users from bypassing their user account limits. |
|
Off |
Copy default error documents to docroot for new accounts, addon domains, and subdomains | When enabled, the system copies the default error documents to the document root directory when you create new accounts, addon domains, and subdomains. By copying the default error documents to the document root, this ensures that the global ErrorDocument configuration has the files it needs to prevent generating additional errors. |
|
Off |