{"allow_server_info_status_from":{"label":"Allow server-info and server-status","help":"List of IP addresses, hostnames, or the value \"all\" which are allowed to view the /server-info and /server-status pages. See the <a target=\"_blank\" href=\"http://httpd.apache.org/docs/2.2/mod/mod_authz_host.html#allow\">Apache documentation</a> for proper values."},"dnsadmin_log":{"label":"dnsadmin logging level","help":"Log dnsadmin requests to /usr/local/cpanel/logs/dnsadmin_log"},"debughooks":{"label":"Standardized Hooks - Debug Mode","default":"disabled","optionlabels":{"logdata":"Debug mode is on. The system displays information about a hook while it executes and logs debug data to the error log.","logall":"Debug mode is on. The system displays information about every stage for every hookable event, even if no hooks exist for that stage.","0":"Debug mode is off.","log":"Debug mode is on. The system displays information about a hook while it executes, but does not log debug data to the error log."},"help":"The Standardized Hooks System’s debug mode helps to troubleshoot hook issues."},"chkservd_hang_allowed_intervals":{"help":"If the monitored services are taking too long to respond to the current checking configuration on your machine, then you may wish to increase this value. You can increment this value until you no longer receive ChkServd warnings for delayed checks.","label":"The number of times ChkServd allows a previous check to complete before termination."},"htaccess_check_recurse":{"label":"Depth to recurse for .htaccess checks","help":"The maximum number of directories deep to look for .htaccess files when doing .htaccess checks. Values higher than 10 are discouraged."},"conserve_memory":{"help":"Conserve memory at the expense of more CPU usage and disk I/O.","label":"Conserve memory"},"keepftplogs":{"label":"Keep master FTP log file","help":"Keep Apache’s domlogs/ftpxferlog after it has been separated into each domain name’s FTP log."},"cpaddons_autoupdate":{"help":"Automatically keep all cPAddons Site Software Source Files up to date.","label":"cPAddons Site Software source automatic updates"},"use_apache_md5_for_htaccess":{"help":"Use MD5 encoded passwords in Apache htpasswd files. When this option is disabled, crypt-encoded passwords are used. Crypt-encoded passwords are limited to a maximum length of 8 characters, while MD5-encoded passwords may be any length.","label":"Use MD5 passwords with Apache"},"mycnf_auto_adjust_innodb_buffer_pool_size":{"help":"cPanel & WHM will use your total number of tables to adjust the innodb_buffer_pool_size value during each database server restart.","label":"Allow cPanel & WHM to determine the best value for your database service's innodb_buffer_pool_size configuration?"},"enforce_user_account_limits":{"help":"The “Account Modification” ACL allows resellers to bypass their user account limits. Enabling this setting prevents resellers from creating more accounts than allowed.","label":"Enforce user account limits for resellers with the “Account Modification” ACL."},"referrersafety":{"help":"Only permit cpanel/whm/webmail to execute functions when the browser provided referrer (Domain/IP and Port) exactly matches the destination URL. This will help prevent XSRF attacks but may break integration with other systems, login applications, and billing software. Cookies are required with this option enabled.","label":"Referrer safety check"},"emailsperdaynotify":{"label":"Number of emails a domain may send per day before the system sends a notification.","undef":"Unlimited","help":"The system will send a notification when any domain sends more than the specified number of emails in a day."},"php_post_max_size":{"label":"cPanel PHP max POST size"},"cpdavd_caldav_upload_limit":{"label":"Max upload size for CalDAV/CardDAV server","help":"Specify the number of megabytes allowed when uploading events and attachments to the calendar server. The default is 10MB."},"allowunregistereddomains":{"help":"Allow creation of parked/addon domains that are not registered.","label":"Allow unregistered domains"},"skipdiskusage":{"help":"Enable System Disk Space Usage Warnings","label":"System disk space usage warnings"},"allowcpsslinstall":{"label":"Allow cPanel users to install SSL Hosts."},"autodiscover_proxy_subdomains":{"help":"Automatically create autodiscover and autoconfig service subdomains as well as the autodiscover SRV records needed for Outlook and Thunderbird email auto configuration for local domains.","label":"Thunderbird and Outlook autodiscover and autoconfig support (enables service subdomain and SRV record creation)"},"cpredirectssl":{"help":"When visiting /cpanel or /whm or /webmail with SSL, you can choose to redirect to:","label":"SSL redirect destination"},"permit_unregistered_apps_as_reseller":{"help":"This option was introduced in cPanel 11.38.1 to provide additional visibility of installed apps and addons and the privilege level at which they are installed. This forces apps and addons to register with AppConfig before WHM will execute them when logged in as a reseller.","label":"Allow apps that have not registered with AppConfig to be run when logged in as a reseller to WHM."},"tcp_check_failure_threshold":{"label":"ChkServd TCP check failure threshold","undef":"Disable notifications and restarts from TCP checks","help":"The number of times a ChkServd TCP check must fail before notification is sent and the service is restarted. On heavily loaded systems these types of service checks fail occasionally, producing erroneous indications that services are down. A value of 3 or higher is recommended for most systems."},"email_outbound_spam_detect_threshold":{"help":"The system will send a notification when any email account sends email to more than the specified number of recipients in one hour. Email sent by mailman is exempt from this detection.","label":"Number of unique recipients per hour to trigger potential spammer notification."},"ipv6_control":{"help":"Enabled control of IPv6 in the UI","label":"Control IPv6 Addresses"},"ssh_host_key_checking":{"label":"Enable strict SSH host key checking","help":"Require that outgoing SSH connections made by cPanel & WHM verify the remote system's key. This setting helps to protect against man-in-the-middle attacks.<br />When you enable this setting, every remote system that is connected to via SSH must have a valid key in the /etc/ssh/ssh_known_hosts file.<br />If you set this value to \"dns\", the remote system has SSHFP records in a DNSSEC-signed zone, and the local system uses EDNS0 resolving, use these records to validate the remote system. If you set this value to \"dns\" but the system does not use SSHFP records in a DNSSEC-signed zone or does not use ENDS0 resolving, the system will act as though the option were set to \"enabled\"."},"disable-php-as-reseller-security":{"label":"Allow PHP to be run when logged in as a reseller to WHM","help":"Special care should be taken when enabling this functionality since PHP will be running as root. Any application you permit to run under this setup should make special security considerations to avoid catastrophe."},"nosendlangupdates":{"label":"Send language file changes to cPanel"},"skipwebalizer":{"label":"Enable Webalizer stats"},"repquota_timeout":{"label":"Disk usage/quota bailout time","help":"Maximum time that the system is permitted to spend fetching diskusage and quota information before it considers the data unavailable."},"empty_trash_days":{"label":"Maximum age, in days, of content to keep when automatically emptying the users’ File Manager Trash","help":"This setting determines how many days to keep files in the .trash folder of user home directories. A value of 0 configures the server to purge all files from every user’s .trash folder, regardless of age. <br><br><b>NOTE:</b> This setting only purges files that users delete through cPanel’s File Manager interface ( Home >> Files >> File Manager )."},"email_send_limits_min_defer_fail_to_trigger_protection":{"label":"Number of failed or deferred messages a domain may send before protections can be triggered","undef":"Unlimited","help":"When a domain sends this number of failed or deferred messages in an hour, and the <em>“Maximum percentage of failed or deferred messages a domain may send per hour”</em> has also been reached, the domain will be temporarily unable to send outgoing mail."},"selfsigned_generation_for_bestavailable_ssl_install":{"help":"When you create a new domain, cPanel will apply the best available certificate (CA signed); otherwise cPanel will apply a self-signed SSL certificate and request a new certificate via AutoSSL if it is enabled. Warning: If you disable this option, and a CA signed certificate is not available, when a user attempts to visit the newly created domain over https, the user will see the first SSL certificate installed on that IP address. Warning: If you enable this option and do not have a CA signed certificate or AutoSSL enabled, Google search results may point to the SSL version of the site with a self-signed certificate, which will generate warnings in the users’ browser. To avoid both of these concerns, we strongly recommend that you enable AutoSSL.","label":"Generate a self signed SSL certificate if a CA signed certificate is not available when setting up new domains."},"useauthnameservers":{"help":"When adding a new domain, if the domain is already registered, ignore the configured nameservers, and set the NS line to the authoritative (registered) ones.","label":"Always use authoritative (registered) nameservers when creating a new DNS zone."},"default_remove-old-archived-logs":{"label":"Remove the previous month's archived logs from the user's home directory at the end of each month unless configured by the user.","help":"This option will only be used if the user does not configure their log archiving preferences in cPanel."},"default_pkg_quota":{"label":"Default disk usage quota for new packages","help":"This value applies to new packages when the package creator lacks the “Create Packages with Unlimited Disk Usage” ACL. This logical default value for new packages preserves backward API compatibility when the user does not provide a value."},"ionice_ftpquotacheck":{"help":"You must compile ionice with your kernel to use this option. ionice manages I/O scheduling for processes on your system. Specifying a lower value for this option gives the process a higher priority. This option can accept integer values between 0 and 7.","label":"I/O priority level at which FTP quota checks are run (when Pure-FTPd is enabled)"},"allowremotedomains":{"help":"Allow creation of parked/addon domains that resolve to other servers (e.g. domain transfers) This can be a major security problem. If you must have it enabled, be sure not to allow users to park common Internet domains.","label":"Allow Remote Domains"},"default_pkg_bwlimit":{"help":"This value applies to new packages when the package creator lacks the “Create Packages with Unlimited Bandwidth” ACL. This logical default value for new packages preserves backward API compatibility when the user does not provide a value.","label":"Default bandwidth limit for new packages"},"display_cpanel_doclinks":{"label":"Display documentation links in cPanel interface"},"domainowner_mail_pass":{"help":"This setting specifies whether to allow the use of the website owner’s password to access any email account that the owner created within the account.<br><br>The Single Sign On system generates a temporary user to access a cPanel account, and its email accounts, as the account owner. This means that if you log in to any email account via the cPanel interface, you do not have to enter a password <i>regardless of this setting</i>.","label":"Mail authentication via domain owner password"},"emailusersbandwidthexceed":{"label":"Send bandwidth limit notification emails","help":"Email users when they have exceeded their bandwidth. Disabling this will prevent all bandwidth limits warning emails from being sent."},"emailusers_diskusage_warn_percent":{"help":"The disk quota percentage at which an account enters the “warn” state. An email notification will be sent to the user.","label":"Account disk quota “warn” percentage","undef":"Disabled"},"requiressl":{"help":"This option forces the server to redirect unencrypted cPanel, Webmail, WHM, and DAV requests to secure ports according to the SSL redirection settings. If “Choose the closest matched domain for which that the system has a valid certificate when redirecting from non-SSL to SSL URLs” is enabled, the system will redirect to the best matched certificate for the domain. If “Choose the closest matched domain for which that the system has a valid certificate when redirecting from non-SSL to SSL URLs” is disabled, the system will redirect to the https:// URL for the domain, even if no valid certificate exists for the domain.","label":"Require SSL for cPanel Services"},"emailusersbandwidthexceed99":{"help":"Email users when they have reached 99% of their bandwidth","label":"Bandwidth usage warning: 99%"},"account_login_access":{"label":"Accounts that can access a cPanel user account:","optionlabels":{"owner_root":"Root, Account-Owner, and cPanel User","user":"cPanel User Only","owner":"Account-Owner and cPanel User Only"},"help":"This setting specifies who can access a user’s cPanel account. Account-Owner refers to the particular reseller that owns the user account. Note: Disabling root access here will also disable root’s access to the Branding Editor in WHM."},"emailusersbandwidthexceed97":{"help":"Email users when they have reached 97% of their bandwidth","label":"Bandwidth usage warning: 97%"},"remotewhmtimeout":{"help":"Specify the timeout for connections between this server and other remote WHM servers.","label":"Remote WHM timeout"},"referrerblanksafety":{"label":"Blank referrer safety check","help":"Only permit cpanel/whm/webmail to execute functions when the browser provides a referrer. This will help prevent XSRF attacks but may break integration with other systems, login applications, and billing software. Cookies are required with this option enabled."},"disk_usage_include_sqldbs":{"label":"Include databases in disk usage calculations"},"apache_port":{"help":"The port (e.g. 80) on which Apache listens for HTTP connections. An IP address may precede the port number, separated by a colon (“:”). Specifying a specific IP will prevent Apache from listening on all other IPs.","label":"Apache non-SSL IP/port"},"permit_appconfig_entries_without_features":{"label":"This setting allows cPanel and Webmail applications and addons to execute even if a feature list has not been defined.","help":"Enabling this option will permit cPanel and Webmail apps and addons to run without an feature list defined in their AppConfig file."},"min_time_between_apache_graceful_restarts":{"label":"Minimum time between Apache graceful restarts.","help":"Delay deferrable graceful Apache restarts. Apache will wait this number of seconds after a restart request to perform the restart. The system will discard any additional graceful restart requests that occur before the scheduled restart."},"force_short_prefix":{"label":"Force short prefix for MySQL and MariaDB databases","help":"Force the system to limit database prefixes to 8 characters for MySQL and MariaDB. Warning: Enabling this setting will prevent you from creating new accounts that share the same first 8 characters of their usernames."},"autodiscover_host":{"label":"Host to publish in the SRV records for Outlook autodiscover support.","help":"If you have an SSL enabled host with a CA signed SSL certificate on this server and want to use it instead of the cPanel provided server, enter the FQDN that has a CA signed SSL certificate here."},"overwritecustomproxysubdomains":{"help":"If you enable this setting, then custom A records that match service subdomains will be removed when you add or remove service subdomains.","label":"Overwrite custom A records used for service subdomains"},"default_archive-logs":{"label":"Archive logs in the user's home directory at the end of each stats run unless configured by the user.","help":"This option will only be used if the user does not configure their log archiving preferences in cPanel."},"csp":{"label":"Enable Content-Security-Policy on some interfaces","help":"Enable the Content-Security-Policy header on some interfaces in WHM. This can help prevent certain cross-site scripting (XSS) attacks. JavaScript loaded from external sites will be blocked when visiting a CSP-enabled interface."},"email_send_limits_max_defer_fail_percentage":{"help":"The maximum percentage of a domain’s outgoing mail that can consist of failed or deferred messages. Once the domain exceeds this percentage, it is temporarily blocked from sending mail.","undef":"Unlimited","label":"Maximum percentage of failed or deferred messages a domain may send per hour"},"ionice_email_archive_maintenance":{"label":"I/O priority level at which email_archive_maintenance is run","help":"<b>email_archive_maintenance is a nightly maintenance tool that cPanel & WHM uses to support Email Archiving</b>. You must compile ionice with your kernel to use this option. ionice manages I/O scheduling for processes on your system. Specifying a lower value for this option gives the process a higher priority."},"system_diskusage_warn_percent":{"help":"Threshold percentage to warn the system admin (via email) that the system disk usage is considered to be in the “warn” state.","undef":"Disable this notification","label":"Account system disk usage “warn” percentage"},"cpredirect":{"label":"Non-SSL redirect destination","help":"When visiting /cpanel or /whm or /webmail WITHOUT SSL, you can choose to redirect to:"},"nobodyspam":{"label":"Prevent “nobody” from sending mail","help":"Prevent the user “nobody” from sending out mail to remote addresses<br /><b>(PHP and CGI scripts generally run as “nobody” if you are using mod_php or have Suexec disabled.)</b>"},"proxysubdomains":{"label":"Service subdomains","help":"Add proxy VirtualHost to httpd.conf to automatically redirect unconfigured cpanel, webmail, webdisk, cpcalendars, cpcontacts, and whm subdomains to the correct port (requires mod_rewrite, mod_headers, and mod_proxy)"},"transfers_timeout":{"label":"Number of seconds an SSH connection related to an account transfer may be inactive before timing out","help":""},"upcp_log_retention_days":{"help":"These files can be found in the /var/cpanel/updatelogs directory.","label":"Number of days to retain upcp logs before purging them"},"jailprocmode":{"help":"Method to use for mounting /proc in jailshell. Mounting a full /proc can allow users to escape the jail.","optionlabels":{"mount_proc_jailed_fallback_full":"* Full /proc for <a href=\"https://go.cpanel.net/supported-os\">supported</a> operating systems and xenpv","mount_proc_full":"Always mount a full /proc","mount_proc_jailed_fallback_none":"* No /proc for <a href=\"https://go.cpanel.net/supported-os\">supported</a> operating systems and xenpv"},"label":"Jailed /proc mount method <em>( * Choosing this option will create a limited /proc mount for <a href=\"https://go.cpanel.net/supported-os\">legacy</a> operating systems. )"},"php_upload_max_filesize":{"label":"cPanel PHP max upload size"},"enablecompileroptimizations":{"help":"When enabled, compile code optimized for this machine. On some systems, using compiler optimizations can trigger a bug in system libraries. This is usually autodetected, but you can manually adjust this option to disable using these optimizations if the autodetection fails.","label":"Enable optimizations for the C compiler"},"logchmod":{"label":"Apache log file chmod value","help":"Modifies the Apache domlog file permissions based on user provided value prior to log processing. Default value is 0640."},"emailusersbandwidthexceed80":{"label":"Bandwidth usage warning: 80%","help":"Email users when they have reached 80% of their bandwidth"},"verify_3rdparty_cpaddons":{"help":"When this option is enabled, cPanel will verify GPG signatures of all 3rdparty cPaddons. This setting is only available if Signature Validation is enabled.","label":"Verify signatures of 3rdparty cPaddons."},"emailusers_mailbox_warn_percent":{"help":"Threshold percentage to warn a user (via email) that their mailbox’s disk quota is considered to be in the “warn” state.","label":"Mailbox disk quota “warn” percentage","undef":"Disable this notification"},"create_account_dmarc":{"label":"Enable <acronym title=\"Domain-based Message Authentication, Reporting & Conformance\">DMARC</acronym> on domains for newly created accounts","help":"This setting requires <acronym title=\"Sender Policy Framework\">SPF</acronym> and <acronym title=\"DomainKeys Identified Mail\">DKIM</acronym> to be enabled."},"skipspamassassin":{"label":"Enable Apache SpamAssassin™ spam filter"},"allow_deprecated_accesshash":{"label":"Allow deprecated WHM accesshash authentication","help":"Allow the use of ~/.accesshash files for authenticating API calls. This method of authentication has been deprecated in favor of API Tokens."},"cpaddons_max_moderation_req_per_mod":{"help":"The maximum number of moderated requests per addon that a user may have at any given time","label":"Max cPAddons Site Software installation requests per addon"},"check_zone_owner":{"help":"Check zone's owner when saving and syncing zones.","label":"Check zone owner"},"email_outbound_spam_detect_enable":{"label":"Monitor the number of unique recipients per hour to detect potential spammers.","help":"The system will monitor the number of emails to unique recipients that each individual email user sends. If this number exceeds the specified threshold, the system will send a notification."},"mycnf_auto_adjust_maxallowedpacket":{"label":"Allow cPanel & WHM to determine the best value for your database service's max_allowed_packet configuration?","help":"cPanel & WHM will adjust the max_allowed_packet value during each database server restart, if a change is necessary."},"show_reboot_banner":{"help":"Set this option to Off to prevent a message that encourages rebooting your server. <b>Note</b>: Disabling the reboot warning can cause security concerns to be unaddressed.","label":"Display a message to reboot the server after essential software updates."},"jailmountbinsuid":{"label":"Jailed /bin mounted suid","help":"Enable this option if you need to use suid binaries such as /bin/ping in jail mounts."},"rpmup_allow_kernel":{"help":"Each night, WHM updates your system software but does <strong>not</strong> update the kernel. If you select <em>On</em>, WHM <strong>will</strong> update the kernel. When you log in, WHM will notify you that your system requires a reboot.","label":"Enable Linux kernel update during nightly maintenance."},"jaildefaultshell":{"label":"Use cPanel® jailshell by default","help":"Use cPanel® jailshell as the default shell for all new accounts and modified accounts."},"cgihidepass":{"label":"Hide login password from cgi scripts","help":"This setting allows you to hide the REMOTE_PASSWORD environment variable from scripts executed through cpsrvd's cgi handler."},"resetpass_sub":{"label":"Reset Password for Subaccounts","help":"Allow Subaccount users to reset their password via email."},"gzip_pigz_processes":{"help":"The number of independent pigz processes to use when performing gzip compression. For quickest compression, specify the same number of cores available on your server.","label":"Number of pigz processes"},"default_login_theme":{"help":"The theme to display when users log into cPanel, WHM, and webmail. (You may override this setting for a specific browser session by appending <em>?login_theme=theme-name</em> to the HTTP Request-URI. Note that <em>theme-name</em> stands for the desired theme.)","label":"Default login theme"},"emailusers_mailbox_full_percent":{"help":"Threshold percentage to warn a user (via email) that their mailbox’s disk quota is considered to be in the “full” state.","label":"Mailbox disk quota “full” percentage","undef":"Disable this notification"},"autoupdate_certificate_on_hostname_mismatch":{"help":"When you enable this option, the checkallsslcerts script will replace any service SSL certificates that do not match the hostname of the server with a cPanel-signed certificate. This includes wildcard certificates.","label":"Replace service SSL certificates that do not match the local hostname"},"emailusers_diskusage_warn_contact_admin":{"label":"Notify admin or reseller when disk quota reaches “warn” state","help":"Notify the admin or reseller when an account has reached the “warn” disk quota state."},"permit_appconfig_entries_without_acls":{"label":"This setting allows WHM applications and addons to execute even if an ACL list has not been defined.","help":"Enabling this option will permit WHM apps and addons to run without an ACLs list defined in their AppConfig file."},"display_upgrade_opportunities":{"label":"Display Upgrade Opportunities column in “List Accounts”."},"disk_usage_include_mailman":{"label":"Include mailman in disk usage calculations"},"showwhmbwusageinmegs":{"label":"Show bandwidth usage in megabytes by default in WHM"},"share_docroot_default":{"label":"Share the document root by default when creating a domain","help":"Check the “Share document root” box by default on the “Create a New Domain” page in cPanel."},"dnsadmin_verbose_sync":{"label":"Enable verbose logging of DNS zone syncing","help":"Add additional information about DNS zone syncing to the cPanel error log. This is intended for testing or debugging purposes only."},"awstatsbrowserupdate":{"label":"Allow users to update Awstats from cPanel"},"loadthreshold":{"label":"Critical load threshold","undef":"# of CPUs (autodetect)","help":"Select the minimum load average for overall system load display purposes that will cause the server status to appear red. You may enter decimals in this field."},"logout_redirect_url":{"help":"Redirect user to the following URL (relative or absolute) upon logout of the cPanel interface. (ie http://your-website)","label":"Logout redirection URL"},"ftpquotacheck_expire_time":{"label":"Interval, in days, between rebuilds of the FTP quota and disk usage data (applies to Pure-FTPd only)","help":"If you use Pure-FTPd, setting this interval can allow the system to take into account disk usage information for files that are modified or added to a user's root FTP directory by processes other than the FTP server. A higher setting will reduce disk I/O but lower the accuracy of the usage data. A lower setting will improve accuracy, but consume more disk I/O."},"skipbwlimitcheck":{"help":"Automatically suspend HTTP service for accounts that exceed their bandwidth limit. Disabling this will disable all bandwidth notifications and treat all accounts as having unlimited bandwidth.","label":"Bandwidth limit check"},"cpsrvd-domainlookup":{"label":"cpsrvd username domain lookup","help":"Allow usernames to be determined from the account domain name when no username is provided."},"skip_rules_added_by_configure_firewall_for_cpanel":{"label":"Do not make changes to the firewall via scripts/configure_firewall_for_cpanel.","help":"By default, cPanel adds firewall rules to ensure that cPanel ports are open. When enabled, this setting disables adding these rules to the firewall."},"cpaddons_notify_owner":{"label":"Notify reseller of cPAddons Site Software installations","help":"Notify resellers when accounts they own are using cPAddons Site Software installations that require an update."},"popbeforesmtp":{"help":"Provides the IMAP/POP before SMTP authentication method. You must enable RecentAuthedMailIpTracker in the Service Manager for this functionality to work. However, we recommend that you do not enable this option, and you should instead use SMTP authentication on modern systems.","label":"Allow users to relay mail if they use an IP address through which someone has validated an IMAP or POP3 login within the last hour (Pop-before-SMTP)"},"awstatsreversedns":{"label":"Awstats reverse DNS resolution"},"exim-retrytime":{"help":"Time between mail server queue runs","label":"Email delivery retry time"},"autocreateaentries":{"label":"Automatically add A entries for registered nameservers when creating a new zone","help":"When adding a new domain, automatically create A entries for the registered nameservers if they would be contained in the zone."},"email_account_quota_userdefined_default_value":{"help":"This is the value that is prefilled in the quota box for new email accounts on supported themes","label":"Default user-defined quota value for new email accounts"},"notify_expiring_certificates":{"help":"Send a notification when an SSL certificate expires soon. The system will only send a notification for an AutoSSL-provided certificate if that certificate fails to renew. To manage who will receive these notifications, please update AutoSSL options found at <em>Home »SSL/TLS »Manage AutoSSL</em>.","label":"Send notifications when certificates approach expiry."},"coredump":{"help":"Allow WHM/Webmail/cPanel services to create core dumps for debugging purposes. Core dumps often contain sensitive information but may be necessary for debugging certain types of service crashes.","label":"Generate core dumps"},"jailapache":{"label":"EXPERIMENTAL: Jail Apache Virtual Hosts using mod_ruid2 and cPanel® jailshell.","help":"If mod_ruid2 is compiled in via EasyApache, mod_ruid2 is enabled, and a user has their shell set to jailshell or noshell, enabling this option will chroot() a user's Apache Virtual Host into the cPanel® jailshell environment. Each user will require 14 bind mounts. While modern Linux supports a very large number of bind mounts, many processes read /proc/mounts. Reading /proc/mounts can be quite expensive when it becomes large."},"emailpasswords":{"label":"Send passwords when creating a new account","help":"Send passwords in plaintext over email when creating a new acccount. Enabling this option is a security risk."},"skipnotifyacctbackupfailure":{"label":"Send a notification when a user’s backup has errors"},"allowparkhostnamedomainsubdomains":{"label":"Allow users to park subdomains of the server’s hostname."},"overwritecustomsrvrecords":{"label":"Overwrite custom SRV records used by Outlook AutoDiscover support","help":"When enabled, this setting will remove custom SRV records when Outlook AutoDiscover support is added or removed."},"numacctlist":{"undef":"All","label":"Number of accounts per page to display in “List Accounts”."},"bind_deferred_restart_time":{"label":"DNS server reload deferral time","help":"The time, in seconds, that the system will wait before reloads of the DNS server take effect. The system will suppress additional restart requests during the wait time to avoid multiple reloads. For systems that process frequent DNS updates, we recommend using a higher value. For systems with few DNS changes, we recommend the default setting. Note that DNS changes will not take effect until the DNS server reloads."},"httpd_deferred_restart_time":{"help":"Time (in seconds) that the system will wait before restarts of the web server take effect. The system will suppress additional restart requests during the wait time to avoid multiple reloads of the web server. Note that changes will not take effect until the web server reloads.","label":"HTTPD deferred reload time"},"ionice_quotacheck":{"label":"I/O priority level at which quota checks are run","help":"You must compile ionice with your kernel to use this option. ionice manages I/O scheduling for processes on your system. Specifying a lower value for this option gives the process a higher priority. This option can accept integer values between 0 and 7."},"extracpus":{"help":"The load average above the number of CPUs at which cpuwatch, cpanellogd, backups, and CPU stats consider the system to be in a critical load state. For example, a server with 4 physical CPUs and a value of 2 in this field will be considered “critical” in these cases once the load reaches 6.","label":"Extra CPUs for server load"},"php_memory_limit":{"label":"cPanel PHP memory limit"},"ipv6_listen":{"help":"This allows you to use WHM, cPanel, Webmail and Web Disk over IPv6.<br /><br /><i>After you change this setting, you must <a href=\"https://go.cpanel.net/restart\" target=\"_blank\">manually restart</a> cPanel & WHM’s services.","label":"Listen on IPv6 Addresses"},"publichtmlsubsonly":{"help":"This option mandates that document roots for all newly-created websites must reside under the document root for the account’s primary website. This option does not apply when you transfer or restore accounts.","label":"Restrict document roots to public_html"},"skipawstats":{"label":"Enable Awstats stats"},"enablefileprotect":{"help":"This option enables the EasyApache FileProtect module, which improves the security of each user’s <code>public_html</code> directory. [<a target=\"_blank\" href=\"https://go.cpanel.net/EasyApache4FileprotectOption\">More Info</a>]","label":"Enable File Protect"},"cookieipvalidation":{"label":"Cookie IP validation","help":"Validate the IP addresses used in all cookie-based logins. This will limit the ability of attackers who capture cPanel session cookies to use them in an exploit of the cPanel or WebHost Manager interfaces. For this setting to have maximum effectiveness, proxydomains should also be disabled. Strict validation requires the current IP address and the cookie IP address to exactly match. Loose validation only requires they are in the same /24."},"phploader":{"label":"cPanel PHP loader"},"skipoomcheck":{"label":"Out of memory warnings","help":"Enable Out of memory (OOM) Warnings"},"jailmountusrbinsuid":{"help":"Enable this option if you need to use suid binaries such as /usr/bin/crontab in jail mounts.","label":"Jailed /usr/bin mounted suid"},"usemailformailmanurl":{"help":"Add the mail. prefix for mailman URLs (ie http://mail.domain.com/mailman)","label":"Prefix “mail.” onto Mailman URLs"},"emailusers_diskusage_critical_percent":{"help":"The disk quota percentage at which an account enters the “critical” state. An email notification will be sent to the user.","label":"Account disk quota “critical” percentage","undef":"Disabled"},"eximmailtrap":{"label":"Track email origin via X-Source email headers","help":"Track the origin of messages sent through the mail server by adding the X-Source headers (exim 4.34+ required)"},"maintenance_rpm_version_check":{"label":"Maintenance cPanel RPM Check","help":"Enable this option to have the system check cPanel RPMS for problems during the maintenance script. If there are problems, the system will notify the administrator."},"php_max_execution_time":{"help":"This will only apply to PHP processes.","label":"cPanel PHP max execution time"},"emailusersbandwidthexceed90":{"help":"Email users when they have reached 90% of their bandwidth","label":"Bandwidth usage warning: 90%"},"emailusers_diskusage_full_contact_admin":{"help":"Notify the admin or reseller when an account has reached the “full” disk quota state.","label":"Notify admin or reseller when disk quota reaches “full” state"},"autodiscover_mail_service":{"label":"Preferred mail service to configure to use for Thunderbird and Outlook autodiscover and autoconfig support","help":"Choose to advertise IMAP or POP3 via autodiscovery."},"gzip_compression_level":{"help":"The level of compression to use (1 is faster but less compression, 9 is slower but provides maximum compression)","label":"gzip compression level"},"emailusers_mailbox_critical_percent":{"undef":"Disable this notification","label":"Mailbox disk quota “critical” percentage","help":"Threshold percentage to warn a user (via email) that their mailbox’s disk quota is considered to be in the “critical” state."},"debugui":{"label":"User Interface - Debug Mode","help":"The cPanel interface's debug mode. This setting changes the way the system generates user interfaces.","optionlabels":{"0":"Debug mode is off.","1":"Debug mode is on."},"default":"disabled"},"email_account_quota_default_selected":{"label":"Default quota option for new email accounts","optionlabels":{"unlimited":"Unlimited","userdefined":"User-defined"},"help":"This determines which option is preselected in the interface used to add new email accounts in cPanel on supported themes"},"emailusersbandwidthexceed98":{"label":"Bandwidth usage warning: 98%","help":"Email users when they have reached 98% of their bandwidth"},"allowresellershostnamedomainsubdomains":{"label":"Allow resellers to create accounts with subdomains of the server’s hostname."},"rotatelogs_size_threshhold_in_megabytes":{"help":"Threshold above which cpanellogd will rotate log files.","label":"Log rotation size threshold"},"ssl_default_key_type":{"help":"The type of key that the system will create by default for SSL/TLS certificates and signing requests.","label":"Default SSL/TLS Key Type"},"chkservd_plaintext_notify":{"label":"The option to enable or disable ChkServd HTML notifications.","help":"Disabling this option will cause ChkServd to send service notifications in plain text."},"cpaddons_notify_users":{"label":"Notify cPanel users when they need to update their cPAddons Site Software installations","help":"Notify cPanel users if they are using cPAddon Site Software installations that require an update."},"allowwhmparkonothers":{"help":"Allow WHM users to create subdomains (including creation of addon domains) of domains that other users own. Enabling this is not recommended.","label":"Allow WHM users to create subdomains across accounts"},"enable_api_log":{"label":"Enable cPanel API Log","help":"This setting allows you to log successful or failed cPanel API 1, successful cPanel API 2, and successful UAPI function calls. We store this log in the /usr/local/cpanel/logs/api_log file."},"email_outbound_spam_detect_action":{"optionlabels":{"hold":"Hold outgoing mail","block":"Reject outgoing mail","noaction":"Take no action"},"help":"The system will automatically take this action on every email account that it detects as a potential spammer. To detect spammers, the system monitors the number of emails to unique recipients that each individual user sends.","label":"Select the action for the system to take on an email account when it detects a potential spammer."},"exim_retention_days":{"help":"","label":"The interval, in days, to retain Exim stats in the database"},"cpaddons_moderation_request":{"label":"cPAddons Site Software moderation notification","help":"Alert the cPAddons Site Software administrator of pending moderation requests"},"skipparentcheck":{"label":"Allow other applications to run the cPanel and admin binaries","help":"If this setting is off, only cpsrvd will be able to run cPanel and the admin binaries."},"web_log_retention_days":{"label":"Number of days to retain web server logs before purging them","help":"A value of 0 will retain logs indefinitely."},"skipmailman":{"label":"Enable Mailman mailing lists"},"maxmem":{"undef":"Unlimited","label":"Max cPanel process memory","help":"The maximum memory a cPanel process can use before it is killed off. This setting’s minimum value depends on the number of cPanel accounts on the system."},"blockcommondomains":{"label":"Prevent cPanel users from creating specific domains","help":"Prevent cPanel users from creating a Parked or Addon domain that is listed in /usr/local/cpanel/etc/commondomains or /var/cpanel/commondomains. Recommended."},"TS_display":[["Compression",["gzip_compression_level","gzip_pigz_processes","gzip_pigz_block_size"]],["cPAddons Site Software",["cpaddons_adminemail","cpaddons_autoupdate","cpaddons_max_moderation_req_all_mod","cpaddons_max_moderation_req_per_mod","cpaddons_moderation_request","cpaddons_no_3rd_party","cpaddons_no_modified_cpanel","cpaddons_notify_owner","cpaddons_notify_root","cpaddons_notify_users"]],["Development",["debughooks","debugui"]],["Display",["default_login_theme","file_usage","numacctlist","display_cpanel_promotions","display_upgrade_opportunities"]],["Domains",["allowparkhostnamedomainsubdomains","allowparkonothers","allowwhmparkonothers","allowremotedomains","allowresellershostnamedomainsubdomains","allowunregistereddomains","autocreateaentries","autoupdate_certificate_on_hostname_mismatch","blockcommondomains","check_zone_syntax","check_zone_owner","create_account_dkim","create_account_spf","create_account_dmarc","dnsadminapp","proxysubdomains","autodiscover_proxy_subdomains","autodiscover_mail_service","autodiscover_host","overwritecustomproxysubdomains","overwritecustomsrvrecords","proxysubdomainsoverride","publichtmlsubsonly","share_docroot_default","useauthnameservers"]],["Logging",["dnsadmin_log","dnsadmin_verbose_sync","log_successful_logins","enable_api_log"]],["Mail",["maxemailsperhour","emailsperdaynotify","mailbox_storage_format","defaultmailaction","domainowner_mail_pass","disk_usage_include_mailman","exim-retrytime","eximmailtrap","email_send_limits_defer_cutoff","email_outbound_spam_detect_enable","email_outbound_spam_detect_action","email_outbound_spam_detect_threshold","email_send_limits_count_mailman","email_send_limits_max_defer_fail_percentage","email_send_limits_min_defer_fail_to_trigger_protection","smtpmailgidonly","nobodyspam","popbeforesmtp","popbeforesmtpsenders","skipboxtrapper","emailarchive","skipmailman","skiproundcube","skipspamassassin","skipspambox","usemailformailmanurl","email_account_quota_userdefined_default_value","email_account_quota_default_selected"]],["Notifications",["skipdiskusage","system_diskusage_warn_percent","system_diskusage_critical_percent","skipdiskcheck","skipoomcheck","emailusers_diskusage_warn_percent","emailusers_diskusage_warn_contact_admin","emailusers_diskusage_critical_percent","emailusers_diskusage_critical_contact_admin","emailusers_diskusage_full_percent","emailusers_diskusage_full_contact_admin","skipboxcheck","emailusers_mailbox_warn_percent","emailusers_mailbox_critical_percent","emailusers_mailbox_full_percent","skipbwlimitcheck","notify_expiring_certificates","emailusersbandwidthexceed","emailusersbandwidthexceed70","emailusersbandwidthexceed75","emailusersbandwidthexceed80","emailusersbandwidthexceed85","emailusersbandwidthexceed90","emailusersbandwidthexceed95","emailusersbandwidthexceed97","emailusersbandwidthexceed98","emailusersbandwidthexceed99"]],["Packages",["default_pkg_max_emailacct_quota","default_pkg_quota","default_pkg_bwlimit"]],["PHP",["php_max_execution_time","php_memory_limit","php_post_max_size","php_upload_max_filesize","phploader"]],["Redirection",["alwaysredirecttossl","cpredirect","cpredirectssl","logout_redirect_url"]],["Security",["allow_login_autocomplete","cgihidepass","cookieipvalidation","coredump","emailpasswords","enablefileprotect","referrerblanksafety","referrersafety","requiressl","disable-php-as-reseller-security","permit_unregistered_apps_as_reseller","permit_unregistered_apps_as_root","permit_appconfig_entries_without_acls","permit_appconfig_entries_without_features","use_apache_md5_for_htaccess","jailapache","signature_validation","ssl_default_key_type","selfsigned_generation_for_bestavailable_ssl_install","verify_3rdparty_cpaddons","allow_deprecated_accesshash","xframecpsrvd","ssh_host_key_checking","show_reboot_banner","csp"]],["Software",["dormant_services","maintenance_rpm_version_check","maintenance_rpm_version_digest_check","pma_disableis"]],["SQL",["disk_usage_include_sqldbs","use_information_schema","usemysqloldpass","mycnf_auto_adjust_openfiles_limit","mycnf_auto_adjust_maxallowedpacket","mycnf_auto_adjust_innodb_buffer_pool_size","database_prefix","force_short_prefix"]],["Stats and Logs",["awstatsbrowserupdate","dumplogs","default_archive-logs","default_remove-old-archived-logs","extracpus","keepftplogs","keeplogs","keepstatslog","logchmod","showwhmbwusageinmegs","statsloglevel","rotatelogs_size_threshhold_in_megabytes","exim_retention_days","modsec_keep_hits","upcp_log_retention_days","web_log_retention_days"]],["Stats Programs",["awstatsreversedns","skipanalog","skipawstats","skipwebalizer"]],["Status",["loadthreshold"]],["Support",["display_cpanel_doclinks","send_error_reports","update_log_analysis_retention_length"]],["System",["account_login_access","allow_server_info_status_from","allowcpsslinstall","apache_port","apache_ssl_port","api_shell","bind_deferred_restart_time","httpd_deferred_restart_time","chkservd_check_interval","chkservd_hang_allowed_intervals","chkservd_plaintext_notify","skip_chkservd_recovery_notify","conserve_memory","cpdavd_caldav_upload_limit","cpsrvd-domainlookup","disable_cphttpd","disablequotacache","dns_recursive_query_pool_size","dnslookuponconnect","empty_trash_days","enablecompileroptimizations","file_upload_max_bytes","file_upload_must_leave_bytes","ftpquotacheck_expire_time","htaccess_check_recurse","invite_sub","ipv6_listen","ionice_bandwidth_processing","ionice_log_processing","ionice_cpbackup","ionice_userbackup","ionice_userproc","ionice_quotacheck","ionice_ftpquotacheck","ionice_email_archive_maintenance","ionice_dovecot_maintenance","jaildefaultshell","jailprocmode","jailmountbinsuid","jailmountusrbinsuid","maxmem","maxcpsrvdconnections","min_time_between_apache_graceful_restarts","nosendlangupdates","remotewhmtimeout","repquota_timeout","resetpass","resetpass_sub","rpmup_allow_kernel","server_locale","skipnotifyacctbackupfailure","skipparentcheck","tcp_check_failure_threshold","transfers_timeout","skipfirewall","skip_rules_added_by_configure_firewall_for_cpanel","enforce_user_account_limits","copy_default_error_documents"]]],"signature_validation":{"help":"When you select a keyring type, signatures will be downloaded and verified against the type of keyring selected. Official releases are signed with the Release keyring. The Development keyring is used for test builds only and is not as safe. All signature validation will be turned off when you select the ‘Off’ option.","label":"Signature validation on assets downloaded from cPanel & WHM mirrors."},"usemysqloldpass":{"label":"Use pre-4.1-style MySQL<sup>®</sup> passwords","help":"Use old style (4.0) passwords with MySQL<sup>®</sup> 4.1+ (required if you have problems with PHP apps authenticating)"},"skiproundcube":{"label":"Enable Roundcube webmail"},"cpaddons_adminemail":{"help":"The default administrative contact for cPAddons Site Software moderation emails. (Resellers will be notified if their contact email is set in cPanel):","label":"cPAddons Site Software admin email"},"email_send_limits_count_mailman":{"undef":"Unlimited","label":"Count mailman deliveries towards a domain’s Max hourly emails.","help":"If enabled, messages sent from a mailing list owned by a user’s domain will be counted towards the maximum number of emails the domain is permitted to send per hour."},"skipfirewall":{"help":"By default, the system makes changes to the firewall when an account is modified. When enabled, this setting disables the corresponding changes to the firewall. The server administrator will need to perform any necessary changes to the firewall.","label":"Do not make changes to the firewall during account modification."},"emailusersbandwidthexceed85":{"help":"Email users when they have reached 85% of their bandwidth","label":"Bandwidth usage warning: 85%"},"mycnf_auto_adjust_openfiles_limit":{"help":"cPanel & WHM will use your total number of tables to adjust the open_files_limit value during each database server restart.","label":"Allow cPanel & WHM to determine the best value for your database service's open_files_limit configuration?"},"modsec_keep_hits":{"help":"","label":"The number of days to keep records of ModSecurity™ rule hits. (Use zero to keep forever)."},"chkservd_check_interval":{"label":"The number of seconds between ChkServd service checks.","help":"If service checks fail to complete and/or you recieve notifications about ChkServd/tailwatchd hangs, you should consider increase this value if you cannot increase available server resources or reduce server load. If notifications are infrequent, consider increasing the \"The number of times ChkServd allows a previous check to complete before termination\" instead."},"keeplogs":{"help":"Note: Selecting this option is not recommended, as log files can quickly use up your server’s disk space. If the “Delete each domain’s access logs after statistics are gathered” option is enabled, this option will be ignored.","label":"Keep log files at the end of the month"},"maintenance_rpm_version_digest_check":{"help":"Enable this option to have the system use digest verification during its maintenance script. This ensures that RPM package files are not corrupt and that nothing has tampered with them.","label":"Maintenance cPanel RPM Digest Check"},"file_upload_must_leave_bytes":{"help":"The minimum filesystem quota space required after file upload. This will prevent users from hitting their quota limit; it applies to all uploads and form submissions in all web interfaces throughout cPanel and WHM.","label":"File upload required free space"},"popbeforesmtpsenders":{"help":"Include a list of POP-before-SMTP senders in the X-PopBeforeSMTP header when relaying mail.","label":"Add X-PopBeforeSMTP header for mail sent via POP-before-SMTP"},"ionice_bandwidth_processing":{"help":"You must compile ionice with your kernel to use this option. ionice manages I/O scheduling for processes on your system. Specifying a lower value for this option gives the process a higher priority. This option can accept integer values between 0 and 7.","label":"I/O priority level at which bandwidth usage is processed"},"api_shell":{"label":"cPanel & WHM API shell (for developers)","help":"A shell for development use. Allows you to easily find and interact with existing API. When enabled, only root will have access in WHM, and only resellers will have access in cPanel."},"file_usage":{"label":"Display File Usage information in the cPanel stats bar (inode count)"},"skip_chkservd_recovery_notify":{"label":"The option to enable or disable ChkServd recovery notifications.","help":"Disabling this option will suppress notification of service recovery from ChkServd."},"defaultmailaction":{"help":"Forwarding destination for a new account’s catch-all/default address. (Users may modify this value via the Default Address interface in cPanel.) “<code>Fail</code>” rejects the message and notifies the remote SMTP server. This is usually the best choice if you are getting mail attacks. “<code>Blackhole</code>” accepts and processes the message but then silently discards it. This avoids notifying the remote SMTP server but violates SMTP RFC 5321 and generally should not be used.","optionlabels":{"localuser":"System account","fail":"Fail","blackhole":"Blackhole"},"label":"Initial default/catch-all forwarder destination"},"dnsadminapp":{"undef":"dnsadmin, auto-detect SSL","label":"DNS request management application"},"file_upload_max_bytes":{"help":"The maximum file size allowed for upload. This setting applies to all uploads and form submissions in all web interfaces throughout cPanel and WHM.","label":"Max HTTP submission size","undef":"Unlimited"},"log_successful_logins":{"help":"Enable this to record successful login events for cPanel, Webmail, WHM, and DAV.","label":"Log successful logins"},"system_diskusage_critical_percent":{"label":"Account system disk usage “critical” percentage","undef":"Disable this notification","help":"Threshold percentage to warn the system admin (via email) that the system disk usage is considered to be in the “critical” state."},"emailarchive":{"label":"Enable Email Archiving support"},"copy_default_error_documents":{"help":"When enabled, the system copies the default error documents to the document root directory when you create new accounts, addon domains, and subdomains. By copying the default error documents to the document root, this ensures that the global ErrorDocument configuration has the files its needs to prevent generating additional errors.","default":"disabled","optionlabels":{"0":"Disabled","1":"Enabled"},"label":"Copy default error documents to docroot for new accounts, addon domains, and subdomains"},"emailusersbandwidthexceed75":{"label":"Bandwidth usage warning: 75%","help":"Email users when they have reached 75% of their bandwidth"},"dns_recursive_query_pool_size":{"undef":"Unrestricted","label":"Recursive DNS query pool size","help":"This setting restricts the maximum number of currently-active recursive DNS queries. Use this setting if your firewall imposes rate limits on DNS queries. These rate limits can degrade recursive DNS queries in applications such as AutoSSL."},"skipspambox":{"label":"Enable Apache SpamAssassin™ Spam Box delivery for messages marked as spam (user configurable)"},"emailusers_diskusage_critical_contact_admin":{"help":"Notify the admin or reseller when an account has reached the “critical” disk quota state.","label":"Notify admin or reseller when disk quota reaches “critical” state"},"email_send_limits_defer_cutoff":{"label":"The percentage of email messages (above the account’s hourly maximum) to queue and retry for delivery.","help":"When an account exceeds the maximum number of emails it is allowed to send per hour, by default, any additional messages are queued for delivery and sent in the next hour. This setting allows you to limit the number of messages that will be queued by the system. For example, if you set this value to 125%, once the account reaches its hourly limit, Exim will queue any additional messages, up to <b>125</b>% of the <em>Max hourly emails per domain</em> value. Once the account reaches 125% of the <em>Max hourly emails per domain</em> value, any additional outgoing messages are discarded."},"gzip_pigz_block_size":{"label":"Number of kilobyte chunks per compression work unit","help":"The size (in 1024 byte chunks) of compression work units to be distributed to each pigz process. Default is 4096. Systems with larger L2/L3 caches may benefit from higher values."},"maxemailsperhour":{"help":"The maximum number of emails each <b>domain</b> can send out per hour.","undef":"Unlimited","label":"Max hourly emails per domain"},"skipboxcheck":{"label":"Enable mailbox usage warnings"},"use_information_schema":{"help":"Using INFORMATION_SCHEMA ensures that disk usage by database tables is included in totals. However, enabling this option may cause a significant drop in performance as your database server may become unresponsive until data collection is complete. Disabling this option causes the system to query the filesystem directly, potentially excluding disk space used by some database tables. Note: If you use a remote database server, you must turn this setting On in order to calculate database disk usage.","label":"Use INFORMATION_SCHEMA to acquire database disk usage"},"check_zone_syntax":{"label":"Check zone syntax","help":"Check zone file syntax when saving and syncing zones."},"apache_ssl_port":{"help":"The port (e.g. 443) on which Apache listens for HTTPS connections. An IP address may precede the port number, separated by a colon (“:”). Specifying a specific IP will prevent Apache from listening on all other IPs.","label":"Apache SSL port"},"ionice_userbackup":{"label":"I/O priority level at which cPanel-generated backups are run","help":"You must compile ionice with your kernel to use this option. ionice manages I/O scheduling for processes on your system. Specifying a lower value for this option gives the process a higher priority. This option can accept integer values between 0 and 7."},"disable_cphttpd":{"label":"Prevent cpsrvd from serving standard HTTP ports","help":"This setting prevents cpsrvd from taking over the standard HTTP ports if you disable the system’s “Web Server” role. This action renders any cPanel & WHM features that depend on the standard HTTP ports partially or entirely unusable. These features include service subdomains, AutoSSL, Mailman, and BoxTrapper."},"ionice_userproc":{"help":"This option applies to a few especially I/O-intensive user functions, such as actions initiated through the cPanel <em>File Manager</em>. You must compile ionice with your kernel to use this option. ionice manages I/O scheduling for processes on your system. Specifying a lower value for this option gives the process a higher priority. This option can accept integer values between 0 and 7.","label":"I/O priority level for user-initiated processes"},"permit_unregistered_apps_as_root":{"help":"This option was introduced in cPanel 11.38.1 to provide additional visibility of installed apps and addons and the privilege level at which they are installed. This forces apps and addons to register with AppConfig before WHM will execute them when logged in as root or a reseller with the \"all\" ACL.","label":"Allow apps that have not registered with AppConfig to be run when logged in as root or a reseller with the \"all\" ACL in WHM."},"xframecpsrvd":{"label":"Use X-Frame-Options and X-Content-Type-Options headers with cpsrvd","help":"Use the X-Frame-Options HTTP response header to indicate whether a browser can render a page in a <frame>, <iframe> or <object> tag. This allows websites to ensure that their contents are not embedded into other sites, to avoid clickjacking attacks.<br />The server uses the X-Content-Type-Options response HTTP header to indicate that the MIME types in the Content-Type headers should not be changed or followed.<br />When you enable this option, the system adds the X-Frame-Options header, with a value of SAMEORIGIN, and the X-Content-Type-Options header, with a value of nosniff, to cpsrvd responses."},"smtpmailgidonly":{"label":"Restrict outgoing SMTP to root, exim, and mailman (FKA SMTP Tweak)","help":"Enabling this feature will redirect outgoing SMTP connections to the local mail server. root, exim, and mailman are still allowed to make direct connections."},"display_cpanel_promotions":{"help":"Display a banner promoting new cPanel features. The user can dismiss this banner.","label":"Display announcement banner."},"ionice_dovecot_maintenance":{"help":"<b>dovecot_maintenance is a nightly maintenance tool that cPanel & WHM uses to maintain mailboxes</b>. You must compile ionice with your kernel to use this option. ionice manages I/O scheduling for processes on your system. Specifying a lower value for this option gives the process a higher priority.","label":"I/O priority level at which dovecot_maintenance is run"},"allowparkonothers":{"help":"Allow cPanel users to create subdomains (including the creation of addon domains) of domains that other users own. The restriction does not apply to resellers in WHM. Enabling this is not recommended.","label":"Allow cPanel users to create subdomains across accounts"},"cpaddons_max_moderation_req_all_mod":{"help":"The maximum number of moderated requests that a user may have at any given time","label":"Max cPAddons Site Software installation requests"},"keepstatslog":{"label":"Keep stats logs","help":"Keep stats log (/usr/local/cpanel/logs/stats_log) between cPanel restarts. Note that <a href=\"../cgi/cpanel_log_rotation.pl\">log rotation</a> may affect this as well."},"maxcpsrvdconnections":{"label":"Max cPanel/WHM/Webmail service handlers","help":"The maximum number of requests that can be served by the cPanel service daemon at one time (Keep this as low as possible to limit potential denial of service attacks)."},"cpaddons_notify_root":{"label":"Notify root of cPAddons Site Software installations","help":"Notify the cPAddons Site Software administrator of cPAddon installations that require an update."},"emailusersbandwidthexceed70":{"help":"Email users when they have reached 70% of their bandwidth","label":"Bandwidth usage warning: 70%"},"proxysubdomainsoverride":{"label":"Service subdomain override","help":"Allow users to create cpanel, webmail, webdisk, cpcalendars, cpcontacts, and whm subdomains that override automatically generated service subdomains"},"disablequotacache":{"help":"Setting this option to On causes WHM to cache disk usage information. This may result in disk usage information being up to 15 minutes out-of-date. Setting this option to Off will provide more up-to-date data, but may significantly slow your server’s performance.","label":"Cache disk quota information"},"invite_sub":{"label":"Account Invites for Subaccounts","help":"Allow cPanel account users to send invitations to new Subaccount users via User Manager. An invitation includes a link to a time-sensitive page where the Subaccount user can set his or her own password instead of relying on the cPanel account user to set one."},"alwaysredirecttossl":{"help":"When a user visits /cpanel, /webmail, /whm, or visits other URLs that redirect to a cPanel service, the system will redirect to an SSL URL for the closest matched domain that the system has a valid certificate. If you disable this option, the system will redirect to the equivalent URL that they visited based on the original request made via HTTPS or HTTP. This option also controls how the system will redirect unencrypted cPanel, Webmail, WHM, and DAV requests to the best matched certificate for the domain when “Require SSL” is enabled. When enabled, it will redirect closest matched domain that the system has a valid certificate for. When it is disabled, it will simply redirect equivalent HTTPS URL.","label":"Choose the closest matched domain for which that the system has a valid certificate when redirecting from non-SSL to SSL URLs. Formerly known as “Always redirect to SSL/TLS”"},"statsloglevel":{"label":"Stats log level","help":"Larger numbers indicate more debug information in /usr/local/cpanel/logs/stats_log."},"emailusers_diskusage_full_percent":{"label":"Account disk quota “full” percentage","undef":"Disabled","help":"The disk quota percentage at which an account enters the “full” state. An email notification will be sent to the user."},"resetpass":{"help":"Allow cPanel users to reset their password via email.","label":"Reset Password for cPanel accounts"},"skipdiskcheck":{"label":"Disk quota usage warnings","help":"Enable Disk Quota Usage Warnings"},"emailusersbandwidthexceed95":{"label":"Bandwidth usage warning: 95%","help":"Email users when they have reached 95% of their bandwidth"},"dnslookuponconnect":{"help":"Try to resolve each client’s IP to a domain name when a user connects to cPanel services (warning: This can degrade performance).","label":"Reverse DNS lookup upon connect"},"dumplogs":{"label":"Delete each domain’s access logs after statistics are gathered","help":"This setting will force the system to delete all access logs after each run."},"send_error_reports":{"label":"Send error reports to cPanel for analysis","help":"Help guide development of cPanel & WHM by sending information about errors that occur. Read our <a href=\"https://go.cpanel.net/datapolicy\" target=\"_blank\">Server Usage Analysis Data Collection Policy</a> for more information."},"ionice_cpbackup":{"help":"You must compile ionice with your kernel to use this option. ionice manages I/O scheduling for processes on your system. Specifying a lower value for this option gives the process a higher priority. This option can accept integer values between 0 and 7.","label":"I/O priority level at which nightly backups are run"},"default_pkg_max_emailacct_quota":{"label":"Default maximum email quota for new packages","help":"This value applies to new packages when the package creator lacks the “Create Packages with Unlimited Features” ACL. This logical default value for new packages preserves backward API compatibility when the user does not provide a value."},"skipboxtrapper":{"label":"Enable BoxTrapper spam trap"},"cpaddons_no_modified_cpanel":{"help":"Allow installation of cPAddons Site Software that have been altered. (Enabling this may be useful when testing custom addons.)","label":"Allow cPAddons Site Software installations from modified sources"},"mailbox_storage_format":{"help":"<a href=\"https://go.cpanel.net/dovecot_docs_dbox\">Mdbox</a> or <a href=\"https://go.cpanel.net/dovecot_docs_maildir\">Maildir</a><br />Transferred or restored accounts will retain their mailbox format settings.","label":"The mailbox storage format for new accounts"},"cpaddons_no_3rd_party":{"label":"Allow cPAddons Site Software installations from non-cPanel sources","help":"Allow installation of cPAddons Site Software packaged scripts that are not provided by cPanel"},"ionice_log_processing":{"label":"I/O priority level at which stats logs are processed","help":"You must compile ionice with your kernel to use this option. ionice manages I/O scheduling for processes on your system. Specifying a lower value for this option gives the process a higher priority. This option can accept integer values between 0 and 7."},"update_log_analysis_retention_length":{"label":"Update analysis retention interval","undef":"Save indefinitely","custom":{"0":"Disable message retention"},"help":"This option allows you to specify how long you wish to keep the update analysis files you send cPanel."},"skipanalog":{"label":"Enable Analog stats"}}