title: The cpanel.config File created at: Wed Nov 06 2024 07:28:03 GMT+0000 (Coordinated Universal Time) updated at: Sat Feb 08 2025 14:22:38 GMT+0000 (Coordinated Universal Time) --- # The cpanel.config File # Overview The `/var/cpanel/cpanel.config` file stores settings for WHM’s [*Tweak Settings*](https://docs.cpanel.net/whm/server-configuration/tweak-settings) interface (*WHM » Home » Server Configuration » Tweak Settings*). !! Note: !! You can preconfigure settings before you install cPanel & WHM. For more information, read our [Customize Your Installation](https://docs.cpanel.net/installation-guide/customize-your-installation) documentation. # Cached values To improve performance, the system caches the `/var/cpanel/cpanel.config` file’s settings in the `/var/cpanel/cpanel.config.cache` file. This file updates each time that the `/var/cpanel/cpanel.config` file updates, to keep the cached settings up-to-date. # Configuration setting validation The settings in the `/var/cpanel/cpanel.config` file use the `key=value` format. The system validates each `key=value` pair whenever you edit these settings. If the system encounters problems during validation, it takes other actions. ## Absent cpanel.config file If the entire `/var/cpanel/cpanel.config` file does not exist: 1. The server copies the default `/usr/local/cpanel/etc/cpanel.config` file and saves it as the `/var/cpanel/cpanel.config` file. 2. The server copies the `/var/cpanel/cpanel.config.cache` file. If the system cannot find the `/var/cpanel/cpanel.config.cache` file, it will regenerate both the `/var/cpanel/cpanel.config.cache` and `/var/cpanel/cpanel.config` files. 3. For any unset dynamic values, the server attempts to guess the correct value. For example, to set the `mailserver` value, the server checks whether your system uses the `dovecot` package. 4. The server logs the changes to the `/usr/local/cpanel/logs/error_log` file. ## Absent values If a key doesn’t exist in the `/var/cpanel/cpanel.config` file, the server attempts to generate a value from the following sources in the following order: 1. The server copies the `key=value` pair from the `/var/cpanel/cpanel.config.cache` file, if it exists. 2. If the key’s value is static and it doesn’t exist in the `/var/cpanel/cpanel.config.cache` file, the system copies the `key=value` pair from the `/usr/local/cpanel/etc/cpanel.config` file. 3. If the key’s value is dynamic and it doesn’t exist in the `/var/cpanel/cpanel.config.cache` file, the server calculates a value. 4. The server logs the changes to the `/usr/local/cpanel/logs/error_log` file. ## Invalid values If one or more of the following values are invalid, the server tries to replace them with valid values: * `local_nameserver_type` * `mailserver` * `ftpserver` ## Keys and default settings !! Note: !! You can find the default values for these keys in the `/usr/local/cpanel/etc/cpanel.config` file. | Key | Tweak Settings section | Setting or description | Default and validation requirements | | -------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ | | `access_log` | No *Tweak Settings* equivalent. | This sets the location of cPanel’s [*Raw Access*](https://docs.cpanel.net/cpanel/metrics/raw-access) logs. These logs store general information about cPanel access requests. | `/usr/local/cpanel/logs/access_log` | | `account_login_access` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Accounts that can access a cPanel user account:* | `owner_root`<br />!! Warning:<br />!! **Only** set this value to `owner`, `owner_root`, or `user`. | | `allow_deprecated_accesshash` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Allow deprecated WHM accesshash authentication* | `0`<br />!! Warning:<br />!! We deprecated WHM’s *Remote Access Key* feature in cPanel & WHM version 64. We **strongly** recommend that you use API tokens instead. | | `allow_login_autocomplete` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Allow autocomplete for login screens.* | `1` | | `allow_server_info_status_from` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Allow server-info and server-status* | *(an empty string)* | | `allowcpsslinstall` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Allow cPanel users to install SSL Hosts.* | `1`<br />!! Warning:<br />!! If you set this value to `0`, cPanel users can’t enable the *Force HTTPS Redirects* option for any domain in cPanel’s [*Domains*](https://docs.cpanel.net/cpanel/domains/domains) interface (*cPanel » Home » Domains » Domains*). | | `allowparkhostnamedomainsubdomains` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Allow users to park subdomains of the server’s hostname.* | `0` | | `allowparkonothers` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Allow cPanel users to create subdomains across accounts* | `0` | | `allowremotedomains` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Allow Remote Domains* | `0` | | `allowresellershostnamedomainsubdomains` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Allow resellers to create accounts with subdomains of the server’s hostname.* | `0` | | `allowunregistereddomains` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Allow unregistered domains* | `0` | | `allowwhmparkonothers` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Allow WHM users to create subdomains across accounts* | `0` | | `alwaysredirecttossl` | [*Redirection*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#redirection) | *Choose the closest matched domain for which that the system has a valid certificate when redirecting from non-SSL to SSL URLs. Formerly known as “Always redirect to SSL/TLS”* | `1` | | `apache_port` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Apache non-SSL IP/port* | `0.0.0.0:80` | | `apache_ssl_port` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Apache SSL port* | `0.0.0.0:443` | | `api_shell` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *cPanel & WHM API shell (for developers)* | `0` | | `autocreateaentries` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Automatically add A entries for registered nameservers when creating a new zone* | `1` | | `autodiscover_host` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Host to publish in the SRV records for Outlook autodiscover support.* | `cpanelemaildiscovery.cpanel.net` | | `autodiscover_mail_service` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Preferred mail service to configure to use for Thunderbird and Outlook autodiscover and autoconfig support* | `imap` | | `autodiscover_proxy_subdomains` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Thunderbird and Outlook autodiscover and autoconfig support (enables service subdomain and SRV record creation)* | `1`<br />!! Warning:<br />!! This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value in the interface.<br />!! If you set this value to `0`, your users may have issues when they set up their email, calendars, or contacts. | | `autoupdate_certificate_on_hostname_mismatch` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Replace service SSL certificates that do not match the local hostname* | `1` | | `awstatsbrowserupdate` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Allow users to update Awstats from cPanel* | `0` | | `awstatsreversedns` | [*Stats Programs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-programs) | *Awstats reverse DNS resolution* | `0` | | `bind_deferred_restart_time` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *DNS server reload deferral time* | `2` | | `blockcommondomains` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Prevent cPanel users from creating specific domains* | `1` | | `bwcycle` | No *Tweak Settings* equivalent. | This configures the bandwidth cycle for statistics. You can change this value in WHM’s [*Statistics Software Configuration*](https://docs.cpanel.net/whm/server-configuration/statistics-software-configuration) interface (*WHM » Home » Server Configuration » Statistics Software Configuration*). | `2`<br />!! Note:<br />!! When your server validates the `cpanel.config` file, it rounds this value to the nearest quarter hour. | | `cgihidepass` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Hide login password from cgi scripts* | `0` | | `check_zone_owner` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Check zone owner* | `1` | | `check_zone_syntax` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Check zone syntax* | `1` | | `chkservd_check_interval` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *The number of seconds between ChkServd service checks.* | `300` | | `chkservd_hang_allowed_intervals` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *The number of times ChkServd allows a previous check to complete before termination.* | `2` | | `chkservd_plaintext_notify` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *The option to enable or disable ChkServd HTML notifications.* | `0` | | `cluster_autodisable_threshold` | No *Tweak Settings* equivalent. | This sets a number of failed `dnsadmin` commands. After reaching this number, the system disables that DNS cluster member. You can change this value via the *Failure threshold for cluster members* setting in WHM’s [*DNS Cluster*](https://docs.cpanel.net/whm/clusters/dns-cluster) interface (*WHM » Home » Clusters » DNS Cluster*). | `10` | | `cluster_failure_notifications` | No *Tweak Settings* equivalent. | This sets whether to send an email if the system disables a DNS cluster member. You can change this value via the *Receive a notification when WHM disables an unresponsive cluster member* setting in WHM’s [*DNS Cluster*](https://docs.cpanel.net/whm/clusters/dns-cluster) interface (*WHM » Home » Clusters » DNS Cluster*). | `1` | | `conserve_memory` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Conserve memory* | `0`<br />!! Warning:<br />!! This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value in the interface. | | `cookieipvalidation` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Cookie IP validation* | `strict` | | `copy_default_error_documents` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Copy default error documents to docroot for new accounts, addon domains, and subdomains* | `0` | | `coredump` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Generate core dumps* | `0` | | `cpaddons_adminemail` | [*cPAddons Site Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#cpaddons-site-software) | *cPAddons Site Software admin email* | *(an empty string)* | | `cpaddons_autoupdate` | [*cPAddons Site Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#cpaddons-site-software) | *cPAddons Site Software source automatic updates* | `1` | | `cpaddons_max_moderation_req_all_mod` | [*cPAddons Site Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#cpaddons-site-software) | *Max cPAddons Site Software installation requests* | `99` | | `cpaddons_max_moderation_req_per_mod` | [*cPAddons Site Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#cpaddons-site-software) | *Max cPAddons Site Software installation requests per addon* | `99` | | `cpaddons_moderation_request` | [*cPAddons Site Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#cpaddons-site-software) | *cPAddons Site Software moderation notification* | `0` | | `cpaddons_no_3rd_party` | [*cPAddons Site Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#cpaddons-site-software) | *Allow cPAddons Site Software installations from non-cPanel sources* | `0` | | `cpaddons_no_modified_cpanel` | [*cPAddons Site Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#cpaddons-site-software) | *Allow cPAddons Site Software installations from modified sources* | `1` | | `cpaddons_notify_owner` | [*cPAddons Site Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#cpaddons-site-software) | *Notify reseller of cPAddons Site Software installations* | `1` | | `cpaddons_notify_root` | [*cPAddons Site Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#cpaddons-site-software) | *Notify root of cPAddons Site Software installations* | `1` | | `cpaddons_notify_users` | [*cPAddons Site Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#cpaddons-site-software) | *Notify cPanel users when they need to update their cPAddons Site Software installations* | `Allow users to choose` | | `cpanel_locale` | No *Tweak Settings* equivalent. | The `cpanel` user’s locale. | *(an empty string)* | | `cpdavd_caldav_upload_limit` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Max upload size for CalDAV/CardDAV server* | `10` | | `cpredirect` | [*Redirection*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#redirection) | *Non-SSL redirect destination* | `Origin Domain Name` | | `cpredirectssl` | [*Redirection*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#redirection) | *SSL redirect destination* | `SSL Certificate Name` | | `cpsrvd-domainlookup` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *cpsrvd username domain lookup* | `0` | | `create_account_dkim` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Enable DKIM on domains for newly created accounts* | `1` | | `create_account_dmarc` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Enable DMARC on domains for newly created accounts* | `1`<br />!! Important:<br />!! DMARC **requires** valid SPF and DKIM records. To enable DMARC, you must **also** set the `create_account_spf` and `create_account_dkim` keys to `1`. | | `create_account_spf` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Enable SPF on domains for newly created accounts*<br />!! Note:<br />!! The `/scripts/enable_spf_dkim_globally` script allows you to enable SPF and DKIM for accounts that exist on the server, and to create the appropriate DNS records for their domains. For more information, read our [The `enable_spf_dkim_globally` Script](https://docs.cpanel.net/whm/scripts/the-enable_spf_dkim_globally-script) documentation. | `1` | | `csp` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Enable Content-Security-Policy on some interfaces* | `0` | | `cycle_hours` | No *Tweak Settings* equivalent. | This setting adjusts log processing frequency. You can change this value in WHM’s [*Statistics Software Configuration*](https://docs.cpanel.net/whm/server-configuration/statistics-software-configuration) interface (*WHM » Home » Server Configuration » Statistics Software Configuration*). | `24`<br />!! Note:<br />!! When your server validates the `cpanel.config` file, the system rounds this value to the nearest quarter hour. | | `database_prefix` | [*SQL*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#sql) | *Require a username prefix on names of new databases and database users* | `1` | | `debughooks` | No *Tweak Settings* equivalent. | This setting acts as a fallback setting for the values in the `/var/cpanel/debughooks` file.<br />- The *Standardized Hooks - Debug Mode* setting in the *Development* section of WHM’s [*Tweak Settings*](https://docs.cpanel.net/whm/server-configuration/tweak-settings) interface (*WHM » Home » Server Configuration » Tweak Settings*) controls this file. <br />- For more information, read our [Guide to Standardized Hooks - Debug Mode](https://api.docs.cpanel.net/guides/guide-to-standardized-hooks/guide-to-standardized-hooks-debug-mode/) documentation. | `0` | | `debugui` | [*Development*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#development) | *User Interface - Debug Mode* | `0` | | `default_archive-logs` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Archive logs in the user’s home directory at the end of each stats run unless configured by the user.* | `1` | | `default_login_theme` | [*Display*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#display) | *Default login theme* | `cpanel` | | `default_pkg_bwlimit` | [*Packages*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#packages) | *Default bandwidth limit for new packages* | `1048576` | | `default_pkg_max_emailacct_quota` | [*Packages*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#packages) | *Default maximum email quota for new packages*<br />!! Important:<br />!! This setting applies to each email account and **not** each cPanel account. | `1024` | | `default_pkg_quota` | [*Packages*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#packages) | *Default disk usage quota for new packages* | `10240` | | `default_remove-old-archived-logs` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Remove the previous month’s archived logs from the user’s home directory at the end of each month unless configured by the user.* | `1` | | `defaultmailaction` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Initial default/catch-all forwarder destination* | `localuser` | | `disable_cphttpd` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Prevent cpsrvd from serving standard HTTP ports* | `0` | | `disable-php-as-reseller-security` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Allow PHP to be run when logged in as a reseller to WHM* | `0` | | `disablequotacache` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Cache disk quota information* | `0` | | `disk_usage_include_mailman` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Include mailman in disk usage calculations* | `1` | | `disk_usage_include_sqldbs` | [*SQL*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#sql) | *Include databases in disk usage calculations* | `1` | | `display_cpanel_doclinks` | [*Support*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#support) | *Display documentation links in cPanel interface* | `0` | | `display_cpanel_promotions` | [*Display*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#display) | *Display announcement banner.* | `1` | | `display_upgrade_opportunities` | [*Display*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#display) | *Display the Upgrade Opportunities column in WHM’s *[*List Accounts*](https://docs.cpanel.net/whm/account-information/list-accounts)* interface (WHM » Home » Account Information » List Accounts).* | `0` | | `dns_recursive_query_pool_size` | [*Display*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#display) | *This setting restricts the maximum number of currently-active recursive DNS queries. Use this setting if your firewall imposes rate limits on DNS queries. These rate limits can degrade recursive DNS queries in applications such as AutoSSL.* | `10` | | `dnsadmin_log` | [*Logging*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#logging) | *dnsadmin logging level* | `0` | | `dnsadmin_verbose_sync` | [*Logging*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#logging) | *Enable verbose logging of DNS zone syncing* | `0` | | `dnsadminapp` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *DNS request management application* | `undef`<br />!! Note:<br />!! If this value is an empty string when your server validates the `cpanel.config` file, the system converts it to `undef`. | | `dnslookuponconnect` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Reverse DNS lookup upon connect* | `0` | | `docroot` | No *Tweak Settings* equivalent. | This setting specifies the document root for WHM. | `/usr/local/cpanel/base` | | `domainowner_mail_pass` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Mail authentication via domain owner password* | `0`<br />!! Warning:<br />!! This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value through the interface. | | `dormant_services` | [*Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#software) | *Dormant services* | `cpdavd,cphulkd,cpsrvd,dnsadmin,spamd`<br />!! Warning:<br />!! This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value through the interface. | | `dumplogs` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Delete each domain’s access logs after statistics are gathered* | `1` | | `email_account_quota_default_selected` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Default quota option for new email accounts* | `userdefined` | | `email_account_quota_userdefined_default_value` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Default user-defined quota value for new email accounts* | `1024` | | `email_outbound_spam_detect_action` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Select the action for the system to take on an email account when it detects a potential spammer.* | `noaction` | | `email_outbound_spam_detect_enable` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Monitor the number of unique recipients per hour to detect potential spammers.* | `1` | | `email_outbound_spam_detect_threshold` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Number of unique recipients per hour to trigger potential spammer notification.* | `500` | | `email_send_limits_count_mailman` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Count mailman deliveries towards a domain’s Max hourly emails.* | `0` | | `email_send_limits_defer_cutoff` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *The percentage of email messages (above the account’s hourly maximum) to queue and retry for delivery.* | `125` | | `email_send_limits_max_defer_fail_percentage` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Maximum percentage of failed or deferred messages a domain may send per hour* | `undef` | | `email_send_limits_min_defer_fail_to_trigger_protection` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Number of failed or deferred messages a domain may send before protections can be triggered* | `5` | | `emailarchive` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Enable Email Archiving support* | `0` | | `emailpasswords` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Send passwords when creating a new account* | `0` | | `emailsperdaynotify` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Number of emails a domain may send per day before the system sends a notification* | No default value. | | `emailusers_diskusage_critical_contact_admin` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Notify admin or reseller when disk quota reaches “critical” state* | `1` | | `emailusers_diskusage_critical_percent` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Account disk quota “critical” percentage* | `90`<br />!! Note:<br />!! If this value is `0` when your server validates the `cpanel.config` file, the system converts it to `undef`. | | `emailusers_diskusage_full_contact_admin` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Notify admin or reseller when disk quota reaches “full” state* | `1` | | `emailusers_diskusage_full_percent` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Account disk quota “full” percentage* | `98`<br />!! Note:<br />!! If this value is `0` when your server validates the `cpanel.config` file, the system converts it to `undef`. | | `emailusers_diskusage_warn_contact_admin` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Notify admin or reseller when disk quota reaches “warn” state* | `0` | | `emailusers_diskusage_warn_percent` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Account disk quota “warn” percentage* | `80`<br />!! Note:<br />!! If this value is `0` when your server validates the `cpanel.config` file, the system converts it to `undef`. | | `emailusers_mailbox_critical_percent` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Mailbox disk quota “critical” percentage* | `90`<br />!! Note:<br />!! If this value is `0` when your server validates the `cpanel.config` file, the system converts it to `undef`. | | `emailusers_mailbox_full_percent` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Mailbox disk quota “full” percentage* | `98`<br />!! Note:<br />!! If this value is `0` when your server validates the `cpanel.config` file, the system converts it to `undef`. | | `emailusers_mailbox_warn_percent` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Mailbox disk quota “warn” percentage* | `80`<br />!! Note:<br />!! If this value is `0` when your server validates the `cpanel.config` file, the system converts it to `undef`. | | `emailusersbandwidthexceed` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Send bandwidth limit notification emails* | `1` | | `emailusersbandwidthexceed70` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Bandwidth usage warning: 70%* | `0` | | `emailusersbandwidthexceed75` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Bandwidth usage warning: 75%* | `0` | | `emailusersbandwidthexceed80` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Bandwidth usage warning: 80%* | `1` | | `emailusersbandwidthexceed85` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Bandwidth usage warning: 85%* | `0` | | `emailusersbandwidthexceed90` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Bandwidth usage warning: 90%* | `0` | | `emailusersbandwidthexceed95` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Bandwidth usage warning: 95%* | `0` | | `emailusersbandwidthexceed97` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Bandwidth usage warning: 97%* | `0` | | `emailusersbandwidthexceed98` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Bandwidth usage warning: 98%* | `0` | | `emailusersbandwidthexceed99` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Bandwidth usage warning: 99%* | `0` | | `empty_trash_days` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Age, in days, of content to purge from users’ File Manager Trash* | `disabled` | | `enable_api_log` | [*Logging*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#logging) | *This setting allows you to log successful or failed cPanel API 1, successful cPanel API 2, and successful UAPI function calls. We store this log in the *`/usr/local/cpanel/logs/api_log`* file.* | `0` | | `enablecompileroptimizations` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Enable optimizations for the C compiler* | `0` | | `enable_piped_logs` | No *Tweak Settings* equivalent. | This sets whether to use piped logging with Apache. You can change this value in WHM’s [*Apache Configuration*](https://docs.cpanel.net/whm/service-configuration/apache-configuration) interface (*WHM » Home » Service Configuration » Apache Configuration*). | `1` | | `enablefileprotect` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Enable File Protect* | `1` | | `enforce_user_account_limits` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Enforce user account limits for resellers with the “Account Modification” ACL.* | `0` | | `engine` | No *Tweak Settings* equivalent. | This sets the name of the cPanel binary. | `cpanel`<br />!! Warning:<br />!! Do **not** modify this value. | | `enginepl` | No *Tweak Settings* equivalent. | This sets the name of the `cpanel.pl` file. | `cpanel.pl`<br />!! Warning:<br />!! Do **not** modify this value. | | `engineroot` | No *Tweak Settings* equivalent. | This sets the location of the cPanel binary. | `/usr/local/cpanel`<br />!! Warning:<br />!! Do **not** modify this value. | | `exim_retention_days` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *The interval, in days, to retain Exim stats in the database* | `10` | | `exim-retrytime` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Email delivery retry time* | `15` | | `eximmailtrap` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Track email origin via X-Source email headers* | `1`<br />!! Warning:<br />!! This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value in the interface. | | `extracpus` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Extra CPUs for server load* | `0` | | `file_upload_max_bytes` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Max HTTP submission size* | `undef`<br />!! Note:<br />!! If this value is `unlimited` when your server validates the `cpanel.config` file, the system converts it to `undef`. | | `file_upload_must_leave_bytes` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *File upload required free space* | `5` | | `file_usage` | [*Display*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#display) | *Display File Usage information in the cPanel stats bar (inode count)* | `0` | | `force_short_prefix` | [*SQL*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#sql) | *Force short prefix for MySQL and MariaDB databases* | `0` | | `ftpquotacheck_expire_time` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Interval, in days, between rebuilds of the FTP quota and disk usage data (applies to Pure-FTPd only)* | `30` | | `ftpserver` | No *Tweak Settings* equivalent. | This sets the FTP server. You can select an FTP server in WHM’s [*FTP Server Selection*](https://docs.cpanel.net/whm/service-configuration/ftp-server-selection) interface (*WHM » Home » Service Configuration » FTP Server Selection*). | `disabled`<br />!! Warning:<br />!! This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value in the interface. | | `gzip_compression_level` | [*Compression*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#compression) | *gzip compression level*<br />!! Note:<br />!! This setting does **not** affect the [NGINX gzip package’s](https://docs.cpanel.net/knowledge-base/web-services/nginx-with-reverse-proxy/#gzip-compression) settings. | `6` | | `gzip_pigz_block_size` | [*Compression*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#compression) | *Number of kilobyte chunks per compression work unit*<br />!! Note:<br />!! This setting does **not** affect the [NGINX gzip package’s](https://docs.cpanel.net/knowledge-base/web-services/nginx-with-reverse-proxy/#gzip-compression) settings. | `4096` | | `gzip_pigz_processes` | [*Compression*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#compression) | *Number of pigz processes*<br />!! Note:<br />!! This setting does **not** affect the [NGINX gzip package’s](https://docs.cpanel.net/knowledge-base/web-services/nginx-with-reverse-proxy/#gzip-compression) settings. | `1`<br />!! Warn*ing:*<br />!! \_This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value in the interf\_ace. | | `htaccess_check_recurse` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Depth to recurse for .htaccess checks* | `2` | | `httpd_deferred_restart_time` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *HTTPD deferred reload time* | `0` | | `invite_sub` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Account Invites for Subaccounts* | `1` | | `ionice_bandwidth_processing` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *I/O priority level at which bandwidth usage is processed* | `6` | | `ionice_cpbackup` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *I/O priority level at which nightly backups are run* | `6` | | `ionice_dovecot_maintenance` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *I/O priority level at which dovecot\_maintenance is run* | `7` | | `ionice_email_archive_maintenance` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *I/O priority level at which email\_archive\_maintenance is run* | `7` | | `ionice_ftpquotacheck` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *I/O priority level at which FTP quota checks are run (when Pure-FTPd is enabled)* | `6` | | `ionice_log_processing` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *I/O priority level at which stats logs are processed* | `7` | | `ionice_quotacheck` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *I/O priority level at which quota checks are run* | `6` | | `ionice_userbackup` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *I/O priority level at which cPanel-generated backups are run* | `7` | | `ionice_userproc` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *I/O priority level for user-initiated processes* | `6` | | `ipv6_control` | No *Tweak Settings* equivalent. | *Control IPv6 Addresses* | `0` | | `ipv6_listen` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Listen on IPv6 Addresses* | `0` | | `jailapache` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *EXPERIMENTAL: Jail Apache Virtual Hosts using mod\_ruid2 and cPanel\_\_ jailshell.* | `0` | | `jaildefaultshell` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Use cPanel\_\_ jailshell by default* | `0` | | `jailmountbinsuid` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Jailed /bin mounted suid*<br />!! Note:<br />!! This setting has no effect on servers that run the CloudLinux 8, AlmaLinux OS 8, Rocky Linux 8, or Ubuntu operating systems. | `0` | | `jailmountusrbinsuid` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Jailed /usr/bin mounted suid* | `0` | | `jailprocmode` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Jailed /proc mount method* | `mount_proc_jailed_fallback_full` | | `keepftplogs` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Keep master FTP log file* | `0` | | `keeplogs` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Keep log files at the end of the month* | `0` | | `keepstatslog` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Keep stats logs* | `0` | | `loadthreshold` | [*Status*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#status) | *Critical load threshold* | `undef`<br />!! Warning:<br />!! This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value in the interface. | | `local_nameserver_type` | No *Tweak Settings* equivalent. | This sets your nameserver’s type. You can select a nameserver type in WHM’s [*Nameserver Selection*](https://docs.cpanel.net/whm/service-configuration/nameserver-selection/) interface (*WHM » Home » Service Configuration » Nameserver Selection*). | `powerdns`<br />!! Warning:<br />!! This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value in the interface. | | `logchmod` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Apache log file chmod value* | `0640` | | `log_successful_logins` | [*Logging*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#logging) | *Log successful logins* | `0` | | `logout_redirect_url` | [*Redirection*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#redirection) | *Logout redirection URL* | *(an empty string)* | | `mailbox_storage_format` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *The mailbox storage format for new accounts* | `maildir` | | `mailserver` | No *Tweak Settings* equivalent. | This sets the mailserver type. | `dovecot`<br />!! Warning:<br />!! This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value in the interface. | | `maintenance_rpm_version_check` | [*Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#software) | *Maintenance cPanel RPM Check* | `1` | | `maintenance_rpm_version_digest_check` | [*Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#software) | *Maintenance cPanel RPM Digest Check* | `1` | | `maxcpsrvdconnections` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Max cPanel/WHM/Webmail service handlers* | `200`<br />!! Note:<br />!! If this value is less than `200` when your server validates the `cpanel.config` file, it will convert it to the default value. | | `maxemailsperhour` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Max hourly emails per domain* | `undef`<br />!! Note:<br />!! If this value evaluates to zero when your server validates the `cpanel.config` file, it will convert it to `undef`. | | `maxmem` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Max cPanel process memory* | `4096`<br />!! Note:<br />!! This value is dynamic. | | `min_time_between_apache_graceful_restarts` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Minimum time between Apache graceful restarts.* | `10` | | `minpwstrength` | No *Tweak Settings* equivalent. | This sets the minimum strength for cPanel account passwords. You can set the minimum strength for cPanel users’ passwords in WHM’s [*Password Strength Configuration*](https://docs.cpanel.net/whm/security-center/password-strength-configuration) interface (*WHM » Home » Security Center » Password Strength Configuration*). | `65`<br />!! Note:<br />!! When your server validates the `cpanel.config` file, it rounds this value to the nearest multiple of five. | | `modsec_keep_hits` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *The number of days to keep records of ModSecurity\_\_ rule hits. (Use zero to keep forever).* | `7` | | `mycnf_auto_adjust_maxallowedpacket` | [*SQL*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#sql) | *Allow cPanel & WHM to determine the best value for your MySQL max\_allowed\_packet configuration?* | `1` | | `mycnf_auto_adjust_openfiles_limit` | [*SQL*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#sql) | *Allow cPanel & WHM to determine the best value for your MySQL open\_files\_limit configuration?* | `1` | | `mycnf_auto_adjust_innodb_buffer_pool_size` | [*SQL*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#sql) | *Allow cPanel & WHM to determine the best value for your MySQL innodb\_buffer\_pool\_size configuration?* | `0` | | `mysql-version` | No *Tweak Settings* equivalent. | This sets the MySQL version. You can upgrade to a new MySQL version in WHM’s [*Upgrade Database Version*](https://docs.cpanel.net/whm/database-services/upgrade-database-version/) interface (*WHM » Home » Database Services » Upgrade Database Version*). | `undef`<br />!! Warning:<br />!! This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value in the interface. | | `mysql-host` | No *Tweak Settings* equivalent. | This sets the MySQL host. You can specify a remote MySQL host in cPanel’s [*Remote Database Access*](https://docs.cpanel.net/cpanel/databases/remote-database-access) interface (*cPanel » Home » Databases » Remote Database Access*). | `localhost`<br />!! Warning:<br />!! This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value in the interface. | | `nobodyspam` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Prevent “nobody” from sending mail* | `1` | | `nocpbackuplogs` | No *Tweak Settings* equivalent. | This sets whether backups and log analysis run at the same time. You can modify this setting in WHM’s [*Statistics Software Configuration*](https://docs.cpanel.net/whm/server-configuration/statistics-software-configuration) interface (*WHM » Home » Server Configuration » Statistics Software Configuration*). | `0` | | `nosendlangupdates` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Send language file changes to cPanel* | `0` | | `notify_expiring_certificates` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Send notifications when certificates approach expiry.* | `1` | | `numacctlist` | [*Display*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#display) | *Number of accounts per page to display in “List Accounts”.* | `30`<br />!! Note:<br />!! If this value contains `all` (case-insensitive) when your server validates the `cpanel.config` file, it will convert it to `undef`. | | `overwritecustomproxysubdomains` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Overwrite custom A records used for service subdomains* | `0` | | `overwritecustomsrvrecords` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Overwrite custom SRV records used by Outlook AutoDiscover support* | `0` | | `permit_appconfig_entries_without_acls` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *This setting allows WHM applications and addons to execute even if an ACL list has not been defined.* | `0` | | `permit_appconfig_entries_without_features` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *This setting allows cPanel and Webmail applications and addons to execute even if a feature list has not been defined.* | `0` | | `permit_unregistered_apps_as_reseller` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Allow apps that have not registered with AppConfig to be run when logged in as a reseller to WHM.* | `0` | | `permit_unregistered_apps_as_root` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Allow apps that have not registered with AppConfig to be run when logged in as root or a reseller with the “all” ACL in WHM.* | `0` | | `php_max_execution_time` | [*PHP*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#php) | *cPanel PHP max execution time* | `90`<br />!! Note:<br />!! This key updates cPanel & WHM’s internal `php.ini` files. If you edit these files directly, the system will overwrite your changes. Use the PHP section of the [*Tweak Settings*](https://docs.cpanel.net/whm/server-configuration/tweak-settings/#php) interface to edit cPanel & WHM’s internal `php.ini` files. | | `php_memory_limit` | [*PHP*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#php) | *cPanel PHP memory limit* | `128`<br />!! Note:<br />!! This key updates cPanel & WHM’s internal `php.ini` files. If you edit these files directly, the system will overwrite your changes. Use the PHP section of the [*Tweak Settings*](https://docs.cpanel.net/whm/server-configuration/tweak-settings/#php) interface to edit cPanel & WHM’s internal `php.ini` files. | | `php_post_max_size` | [*PHP*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#php) | *cPanel PHP max POST size* | `55`<br />!! Note:<br />!! This key updates cPanel & WHM’s internal `php.ini` files. If you edit these files directly, the system will overwrite your changes. Use the PHP section of the [*Tweak Settings*](https://docs.cpanel.net/whm/server-configuration/tweak-settings/#php) interface to edit cPanel & WHM’s internal `php.ini` files. | | `php_system_default_version` | No *Tweak Settings* equivalent. | This sets the system’s default version of PHP. You can change this value in WHM’s [*MultiPHP Manager*](https://docs.cpanel.net/whm/software/multiphp-manager-for-whm) interface (*WHM » Home » Software » MultiPHP Manager*).<br />!! Note:<br />!! This setting does not exist in the `/usr/local/cpanel/etc/cpanel.config` file. | `ea-php81` | | `php_upload_max_filesize` | [*PHP*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#php) | *cPanel PHP max upload size* | `50`<br />!! Note:<br />!! This key updates cPanel & WHM’s internal `php.ini` files. If you edit these files directly, the system will overwrite your changes. Use the PHP section of the [*Tweak Settings*](https://docs.cpanel.net/whm/server-configuration/tweak-settings/#php) interface to edit cPanel & WHM’s internal `php.ini` files. | | `phploader` | [*PHP*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#php) | *cPanel PHP loader* | *(an empty string)*<br />!! Note:<br />!! This key updates cPanel & WHM’s internal `php.ini` files. If you edit these files directly, the system will overwrite your changes. Use the PHP section of the [*Tweak Settings*](https://docs.cpanel.net/whm/server-configuration/tweak-settings/#php) interface to edit cPanel & WHM’s internal `php.ini` files. | | `phpopenbasedirhome` | No *Tweak Settings* equivalent. | This setting enables or disables the `open_basedir` tweak. You can change this value in WHM’s [*MultiPHP INI Editor*](https://docs.cpanel.net/whm/software/multiphp-ini-editor) interface (*WHM » Home » Software » MultiPHP INI Editor*). | `0` | | `pma_disableis` | [*Software*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#software) | *Enable phpMyAdmin information schema searches* | `0` | | `popbeforesmtp` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Allow users to relay mail if they use an IP address through which someone has validated an IMAP or POP3 login within the last hour (Pop-before-SMTP)* | `0` | | `popbeforesmtpsenders` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Add X-PopBeforeSMTP header for mail sent via POP-before-SMTP* | `0` | | `product` | No *Tweak Settings* equivalent. | This setting is unused. | `cPanel` | | `proxysubdomains` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Service subdomains* | `1`<br />!! Warning:<br />!! This value is dynamic. You must perform additional steps to update it manually. We recommend only modifying this value in the interface.<br />!! If you set this value to `0`, your users may have issues when they set up their email, calendars, or contacts. | | `proxysubdomainsoverride` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Service subdomain override* | `1` | | `publichtmlsubsonly` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Restrict document roots to public\_html* | `1` | | `query_apache_for_nobody_senders` | No *Tweak Settings* equivalent. | This sets whether the system will try to find the real sender of messages that the nobody user sent. You can change this value via the *Query Apache server status to determine the sender of email sent from processes running as nobody* setting in WHM’s [*Exim Configuration Manager*](https://docs.cpanel.net/whm/service-configuration/exim-configuration-manager) interface (*WHM » Home » Service Configuration » Exim Configuration Manager*). | `1` | | `referrerblanksafety` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Blank referrer safety check* | `0` | | `referrersafety` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Referrer safety check* | `0` | | `remotewhmtimeout` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Remote WHM timeout* | `35` | | `repquota_timeout` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Disk usage/quota bailout time* | `60` | | `requiressl` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Require SSL for cPanel Services* | `1` | | `resetpass` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Reset Password for cPanel accounts* | `1` | | `resetpass_sub` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Reset Password for Subaccounts* | `1` | | `root` | No *Tweak Settings* equivalent. | This sets the location of the cPanel & WHM `root` installation. | `/usr/local/cpanel` | | `rotatelogs_size_threshhold_in_megabytes` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Log rotation size threshold* | `300` | | `roundcube_db` | No *Tweak Settings* equivalent. | This sets the type of database that Roundcube uses. | `sqlite` | | `rpmup_allow_kernel` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Enable Linux kernel update during nightly maintenance.* | `0` | | `RS` | No *Tweak Settings* equivalent. | This sets the cPanel interface theme. | `jupiter` | | `SecurityPolicy::PasswordAge` | No *Tweak Settings* equivalent. | This enables password aging on the server. You can change this value via the *Password Age* setting in WHM’s [*Configure Security Policies*](https://docs.cpanel.net/whm/security-center/configure-security-policies) interface (*WHM » Home » Security Center » Configure Security Policies*).<br />!! Note:<br />!! This setting may not appear in the `/var/cpanel/cpanel.config` file until you enable it in the interface. This setting also does not appear in the `/usr/local/cpanel/etc/cpanel.config` file. | `1` | | `SecurityPolicy::PasswordAge::maxage` | No *Tweak Settings* equivalent. | This sets the maximum age, in days, of passwords on the server. You can change this value via the *Password Age* setting in WHM’s [*Configure Security Policies*](https://docs.cpanel.net/whm/security-center/configure-security-policies) interface (*WHM » Home » Security Center » Configure Security Policies*).<br />!! Note:<br />!! This setting may not appear in the `/var/cpanel/cpanel.config` file until you enable it in the interface. This setting also does not appear in the `/usr/local/cpanel/etc/cpanel.config` file. | `90` | | `SecurityPolicy::PasswordStrength` | No *Tweak Settings* equivalent. | This sets the required password strength for passwords on the server. You can change this value via the *Password Strength* setting in WHM’s [*Configure Security Policies*](https://docs.cpanel.net/whm/security-center/configure-security-policies) interface (*WHM » Home » Security Center » Configure Security Policies*).<br />!! Note:<br />!! This setting may not appear in the `/var/cpanel/cpanel.config` file until you enable it in the interface. This setting also does not appear in the `/usr/local/cpanel/etc/cpanel.config` file. | `1` | | `SecurityPolicy::SourceIPCheck` | No *Tweak Settings* equivalent. | This sets whether to allow unverified IP addresses to log in. You can change this value via the *Limit logins to verified IP addresses.* setting in WHM’s [*Configure Security Policies*](https://docs.cpanel.net/whm/security-center/configure-security-policies) interface (*WHM » Home » Security Center » Configure Security Policies*).<br />!! Note:<br />!! This setting may not appear in the `/var/cpanel/cpanel.config` file until you enable it in the interface. This setting also does not appear in the `/usr/local/cpanel/etc/cpanel.config` file. | `1` | | `SecurityPolicy::TwoFactorAuth` | No *Tweak Settings* equivalent. | This sets whether the system requires Two-Factor Authentication. You can change this value via the *Two-Factor Authentication* setting in WHM’s [*Configure Security Policies*](https://docs.cpanel.net/whm/security-center/configure-security-policies) interface (*WHM » Home » Security Center » Configure Security Policies*).<br />!! Note:<br />!! This setting may not appear in the `/var/cpanel/cpanel.config` file until you enable it in the interface. This setting also does not appear in the `/usr/local/cpanel/etc/cpanel.config` file. | `1` | | `SecurityPolicy::dnsclustering` | No *Tweak Settings* equivalent. | This sets whether to use your security settings for DNS clusters. You can change this value via the *DNS Cluster Requests* setting in WHM’s [*Configure Security Policies*](https://docs.cpanel.net/whm/security-center/configure-security-policies) interface (*WHM » Home » Security Center » Configure Security Policies*).<br />!! Note:<br />!! This setting may not appear in the `/var/cpanel/cpanel.config` file until you enable it in the interface. This setting also does not appear in the `/usr/local/cpanel/etc/cpanel.config` file. | `1` | | `SecurityPolicy::xml-api` | No *Tweak Settings* equivalent. | This sets whether to use your security settings for API requests. You can change this value via the *API requests* setting in WHM’s [*Configure Security Policies*](https://docs.cpanel.net/whm/security-center/configure-security-policies) interface (*WHM » Home » Security Center » Configure Security Policies*).<br />!! Note:<br />!! This setting may not appear in the `/var/cpanel/cpanel.config` file until you enable it in the interface. This setting also does not appear in the `/usr/local/cpanel/etc/cpanel.config` file. | `1` | | `selfsigned_generation_for_bestavailable_ssl_install` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Generate a self signed SSL certificate if a CA signed certificate is not available when setting up new domains.* | `1` | | `send_error_reports` | [*Support*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#support) | *Send error reports to cPanel for analysis* | `0` | | `server_locale` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Server Locale* | `en` | | `share_docroot_default` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Share the document root by default when creating a domain* | `1` | | `show_reboot_banner` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Display a message to reboot the server after essential software updates.* | `1` | | `showwhmbwusageinmegs` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Show bandwidth usage in megabytes by default in WHM* | `0` | | `signature_validation` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Signature validation on assets downloaded from cPanel & WHM mirrors.* | `Release Keyring Only` | | `skip_chkservd_recovery_notify` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *The option to enable or disable ChkServd recovery notifications.* | `0` | | `skipanalog` | [*Stats Programs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-programs) | *Enable Analog stats* | `0` | | `skipapacheclientsoptimizer` | No *Tweak Settings* equivalent. | This setting is unused. | `0` | | `skipawstats` | [*Stats Programs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-programs) | *Enable Awstats stats* | `0` | | `skipboxcheck` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Enable mailbox usage warnings* | `1` | | `skipboxtrapper` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Enable BoxTrapper spam trap* | `0` | | `skipbwlimitcheck` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Bandwidth limit check* | `0` | | `skipchkservd` | No *Tweak Settings* equivalent. | This sets whether to monitor the `chkservd` service. You can change this value via the *ChkServd* setting in WHM’s [*Service Manager*](https://docs.cpanel.net/whm/service-configuration/service-manager) interface (*WHM » Home » Service Configuration » Service Manager*). | `0` | | `skipcpbandwd` | No *Tweak Settings* equivalent. | This sets whether to monitor bandwidth. You can change this value via the *cPBandwd* setting in WHM’s [*Service Manager*](https://docs.cpanel.net/whm/service-configuration/service-manager) interface (*WHM » Home » Service Configuration » Service Manager*). | `0` | | `skipdiskcheck` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Disk quota usage warnings* | `0` | | `skipdiskusage` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *System disk space usage warnings* | `0` | | `skipeximstats` | No *Tweak Settings* equivalent. | This sets whether to monitor mail services. You can change this value via the *Eximstats* setting in WHM’s [*Service Manager*](https://docs.cpanel.net/whm/service-configuration/service-manager) interface (*WHM » Home » Service Configuration » Service Manager*). | `0` | | `skipfirewall` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Do not make changes to the firewall during account modification.* | `0` | | `skiphttpauth` | No *Tweak Settings* equivalent. | This setting skips HTTP authorization. | `1` | | `skipjailmanager` | No *Tweak Settings* equivalent. | This sets whether to monitor jailed shells. You can change this value via the *JailManager* setting in WHM’s [*Service Manager*](https://docs.cpanel.net/whm/service-configuration/service-manager) interface (*WHM » Home » Service Configuration » Service Manager*). | `0` | | `skipmailauthoptimizer` | No *Tweak Settings* equivalent. | You can change this value via the *MailAuthOptimizer* setting in WHM’s [*Service Manager*](https://docs.cpanel.net/whm/service-configuration/service-manager) interface (*WHM » Home » Service Configuration » Service Manager*). | `0` | | `skipmailman` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Enable Mailman mailing lists* | `0` | | `skipmodseclog` | No *Tweak Settings* equivalent. | This sets whether to monitor IP addresses for IMAP and POP3 sessions. You can change this value via the *RecentAuthedMailIp* setting in WHM’s [*Service Manager*](https://docs.cpanel.net/whm/service-configuration/service-manager) interface (*WHM » Home » Service Configuration » Service Manager*). | `0` | | `skipoomcheck` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Out of memory warnings* | `0` | | `skipnotifyacctbackupfailure` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Send a notification when a user’s backup has errors* | `0` | | `skipparentcheck` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Allow other applications to run the cPanel and admin binaries* | `0` | | `skiprecentauthedmailiptracker` | No *Tweak Settings* equivalent. | This sets whether to monitor ModSecurity logs. You can change this value via the *ModSecLog* setting in WHM’s [*Service Manager*](https://docs.cpanel.net/whm/service-configuration/service-manager) interface (*WHM » Home » Service Configuration » Service Manager*). | `0` | | `skiproundcube` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Enable Roundcube webmail* | `0` | | `skip_rules_added_by_configure_firewall_for_cpanel` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings/#system) | *Do not make changes to the firewall via scripts/configure\_firewall\_for\_cpanel.* | `0` | | `skipspamassassin` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Enable Apache SpamAssassin\_\_ spam filter* | `0` | | `skipspambox` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Enable Apache SpamAssassin\_\_ Spam Box delivery for messages marked as spam (user configurable)* | `0` | | `skiptailwatchd` | No *Tweak Settings* equivalent. | This sets whether to monitor the tailwatchd service. You can change this value via the *tailwatchd* setting in WHM’s [*Service Manager*](https://docs.cpanel.net/whm/service-configuration/service-manager) interface (*WHM » Home » Service Configuration » Service Manager*). | `0` | | `skipwebalizer` | [*Stats Programs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-programs) | *Enable Webalizer stats* | `0` | | `smtpmailgidonly` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Restrict outgoing SMTP to root, exim, and mailman (FKA SMTP Tweak)* | `1` | | `ssh_host_key_checking` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Enable strict SSH host key checking* | `0` | | `ssl_default_key_type` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | The type of key that the system will create by default for SSL/TLS certificates and signing requests.<br />- `rsa-2048` <br />- `rsa-4096` <br />- `ecdsa-prime256v1` <br />- `ecdsa-secp384r1` | `rsa-2048` | | `statsloglevel` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Stats log level* | `1` | | `stats_log` | No *Tweak Settings* equivalent. | This setting specifies the location of the `stats_log` file. | `/usr/local/cpanel/logs/stats_log` | | `statthreshhold` | No *Tweak Settings* equivalent. | This sets the minimum amount of disk space to process statistics.<br />!! Note:<br />!! If an account doesn’t meet this minimum, the system doesn’t process statistics for it. | `256` | | `system_diskusage_critical_percent` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Account system disk usage “critical” percentage* | `92.55` | | `system_diskusage_warn_percent` | [*Notifications*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#notifications) | *Account system disk usage “warn” percentage* | `82.55` | | `tcp_check_failure_threshold` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *ChkServd TCP check failure threshold* | `3`<br />!! Note:<br />!! If this value is `0` when your server validates the `cpanel.config` file, the system converts it to `undef`. | | `transfers_timeout` | [*System*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#system) | *Number of seconds an SSH connection related to an account transfer may be inactive before timing out* | `1800` | | `tweak_unset_vars` | No *Tweak Settings* equivalent. | This sets which items display warning icons in WHM’s [*Tweak Settings*](https://docs.cpanel.net/whm/server-configuration/tweak-settings) interface (*WHM » Home » Server Configuration » Tweak Settings*). | No default value.<br />!! Note:<br />!! The system **only** uses this value internally. | | `upcp_log_retention_days` | [*Stats and Logs*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#stats-and-logs) | *Number of days to retain upcp logs before purging them* | `45` | | `update_log_analysis_retention_length` | [*Support*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#support) | *Update analysis retention interval* | `90` | | `use_apache_md5_for_htaccess` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Use MD5 passwords with Apache* | `1` | | `use_information_schema` | [*SQL*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#sql) | *Use INFORMATION\_SCHEMA to acquire MySQL disk usage* | `1` | | `useauthnameservers` | [*Domains*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#domains) | *Always use authoritative (registered) nameservers when creating a new DNS zone.* | `0` | | `usemailformailmanurl` | [*Mail*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#mail) | *Prefix “mail.” onto Mailman URLs* | `0` | | `usemysqloldpass` | [*SQL*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#sql) | *Use pre-4.1-style MySQL\_\_ passwords* | `0` | | `userdirprotect` | No *Tweak Settings* equivalent. | This setting enables or disables the `mod_userdir` tweak. You can change this setting in WHM’s [*Apache mod\_userdir Tweak*](https://docs.cpanel.net/whm/security-center/apache-mod_userdir-tweak) interface (*WHM » Home » Security Center » Apache mod\_userdir Tweak*). | `1` | | `verify_3rdparty_cpaddons` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Verify signatures of 3rdparty cPaddons.* | `0` | | `version` | No *Tweak Settings* equivalent. | This setting is unused. | `3.4` | | `VFILTERDIR` | No *Tweak Settings* equivalent. | This sets the location of the Exim email filter storage directory. | `/etc/vfilters` | | `xframecpsrvd` | [*Security*](https://docs.cpanel.net/whm/server-configuration/tweak-settings#security) | *Use X-Frame-Options and X-Content-Type-Options headers with cpsrvd* | `1` |