cPanel Teams – Enabling Multi-User cPanel Access

A frequent question from clients over the past 20 years has been “How do I grant someone else access to my cPanel?” and up until recently there hasn’t been a solution other than providing the individual with the cPanel account’s login information. This is where cPanel’s relatively new Manage Team feature steps in and allows you to create team users within cPanel, granting them a selection of privileges to the cPanel account.

To get started, you’ll first need to create a feature list within WHM with the “Manage Team” feature enabled. To avoid confusion for clients that don’t require this functionality, we do not enable it by default. You can then edit your packages to use this feature list where necessary. After this is completed, you’ll notice that the left menu of cPanel now has a “Manage Team” link.

Upon selecting the “Manage Team” menu item, you’ll be presented with a list of your current team users along with options to create users and view the audit log. As you can see below, this demo account has one user present with the “Database” role selected. You can also see when the user was created and when they most recently logged in. Continue reading →

Server Upgrades Completed, CPU & RAM Limits Increased

Over the past several months, we have been diligently working to upgrade all of our hosting servers and we’re happy to report that these have all been completed. These upgrades bring significant hardware and software upgrades to every client, details of which can be found in our previous blog post.

The servers themselves received significant increases in RAM, processing power and storage performance. Most notably, all client data is now stored exclusively on new NVMe storage arrays which are already proving to be very beneficial.

With these additional hardware resources now available, we’re excited to announce that CPU and RAM limits have been doubled for all cPanel accounts. This means that instead of cPanel LVE limits being set to 1 CPU core and 1GB of RAM, these are now set to 2 CPU cores and 2GB of RAM. While the majority of accounts don’t come close to needing these additional resources, we’ve seen the positive impact this has had on some busier sites dealing with traffic spikes and abusive bots.

We hope you find these upgrades to be helpful and, as always, please don’t hesitate to reach out to us if we can be of any assistance!

Upcoming Changes: PHP 5.4, 5.5 Removal & MariaDB 10.6

Over the next few months, we will once again be revamping all of our hosting servers. We’re excited to deploy hardware upgrades across the board, including additional processing cores and RAM as well as NVMe SSD storage arrays. One of our goals has always been to provide the best performance possible and these upgrades will enable us to continue doing so.

We’ll also be making the switch from CloudLinux 7, which will reach end of life soon, to CloudLinux 9. This will make for some meaningful upgrades to a lot of core system software and libraries such as OpenSSL. We’ve been eagerly awaiting cPanel’s official support of CloudLinux 9 to move forward and have already deployed it and AlmaLinux 9 across all of our internal systems with great success. While the operating system upgrade doesn’t have a significant impact to hosted accounts, there are a couple of related changes that you should be aware of.

PHP 5.4 & 5.5 Removal

CloudLinux 9 no longer supports PHP 5.4 and PHP 5.5 so these will no longer be available for you to use. All accounts still using these very old versions will be switched to PHP 5.6 before servers are upgraded. We encourage you to use PHP 8.1 or newer wherever possible. As always, you can continue to select your desired PHP version via the “Select PHP Version” section of cPanel.

MariaDB 10.6

Replacing servers also provides us with a great opportunity to upgrade the database server software; so MariaDB will be upgraded from 10.5 to 10.6. For most users, this will not be a noticeable change unless you’re planning to use new functionality that the upgrade will provide. Please make sure that your scripts are kept updated as usual and you won’t run into any issues.

All clients can expect to receive a notification with further details as soon as their server’s upgrade is scheduled. If you have any questions meanwhile, please submit a ticket and we’ll be happy to answer them.

PHP 8.3 Now Available

We’re pleased to announce that PHP 8.3 is now available on all of our servers. You can easily change the PHP version per cPanel account via the “Select PHP Version” option in cPanel.

PHP 8.3 comes with numerous improvements and new features such as:

The full change log for version 8.3 can be found on PHP’s website here and the migration guide is also available. Please consult these for a detailed list of new features and backward incompatible changes. For third party applications, it’s best to confirm that they support PHP 8.3 before making the switch. However, if you run into any issues you can quickly and easily revert back to your prior version.

Please note that only a limited number of extensions are currently available for PHP 8.3. We will continue to make new ones available as soon as they are offered. We now offer secure versions of PHP 5.4 through 8.3 which are all easily selectable from within cPanel. Version 8.1 is now the default for all new cPanel accounts while existing accounts will continue to retain their prior settings.

Gmail SPF and DKIM Authentication

Over the past few months, some clients have reported issues with Gmail not accepting their emails due to a lack of SPF and DKIM records configured on their domain. When this happens you’ll receive a bounce message similar to this:

host gmail-smtp-in.l.google.com [142.250.114.27]
SMTP error from remote mail server after end of data:
550-5.7.26 This mail is unauthenticated, which poses a security risk to the
550-5.7.26 sender and Gmail users, and has been blocked. The sender must
550-5.7.26 authenticate with at least one of SPF or DKIM. For this message,
550-5.7.26 DKIM checks did not pass and SPF check for [example.com] did
550-5.7.26 not pass with ip: [ip-address]. The sender should visit
550-5.7.26 https://support.google.com/mail/answer/81126#authentication for
550 5.7.26 instructions on setting up authentication.

This primarily occurs for a few different reasons:

The cPanel account is very old and does not have an SPF or DKIM record configured.
The SPF and DKIM records were incorrectly modified.
The domain does not utilize our DNS and thus the records have to be manually added at the DNS host.

If you host your domain’s email with us, this can be addressed via the Email Deliverability section of cPanel. Once navigating to that section you’ll see a screen similar to below.

If the “Repair” option is available, simply select it and the necessary records will automatically be created on the domain. This should resolve your issue as soon as these changes propagate within a few hours.

If the “Repair” option is disabled as shown above, this usually indicates that the domain is not using our DNS. As such, you’ll need to either reconfigure the domain to use our DNS or manually setup the records at the domain’s DNS host. Upon selecting “Manage”, you’ll be provided with the needed DKIM and SPF record to setup at your DNS host.

Lastly, if the domain’s email is not hosted by us, you’ll need to obtain the necessary DKIM and SPF records from your email provider. These records will need to be added to the domain’s DNS zone at the DNS host. If we host the domain’s DNS, this can be done via the cPanel or WHM zone editor.

If you find yourself stuck or needing assistance at any point, please do not hesitate to submit a ticket. We’re happy to help in any capacity that we can.

PHP 8.2 Now Available

We’re pleased to announce that PHP 8.2 (8.2.2) is now available on all of our servers. You can easily change the PHP version per cPanel account via the “Select PHP Version” option in cPanel.

PHP 8.2 comes with numerous improvements and new features such as:

Readonly classes
Disjunctive Normal Form (DNF) Types
New stand-alone types: null, false, and true
New “Random” extension
Constants in traits
Deprecate dynamic properties

The full change log for version 8.2 can be found on PHP’s website here and the migration guide is also available. Please consult these for a detailed list of new features and backward incompatible changes. For third party applications, it’s best to confirm that they support PHP 8.2 before making the switch. However, if you run into any issues you can quickly and easily revert back to your prior version.

We now offer secure versions of PHP 5.4 through 8.2 which are all easily selectable from within cPanel. Version 8.0 remains the default for all new cPanel accounts while existing accounts will continue to retain their prior settings.

cPanel 106 Changes

While there aren’t any significant changes in cPanel 106, we did want to quickly highlight a few changes that you might notice or find helpful.

Customizable Favorites in WHM

The Top Tools section has been replaced with a Favorites section that you can customize to more prominently show the features that you use the most.

Server and username data added to top navigation

The username, hostname, OS, cPanel & WHM version, and load average details have returned to the top navigation bar in WHM.

Empty Junk Button in RoundCube

An Empty Junk button has been added to Roundcube. This button allows you to remove all the messages in the Junk folder at once.

Password Required to Update Contact Email Address

For security, you must now provide your password to change your cPanel contact email address.

Removed the Addon Domains, Alias Domains and Subdomains sections

These sections have been removed from the Jupiter cPanel theme. All of this functionality has long been consolidated under the Domains section / interface so this is just a removal of redundant pages.

cPanel 104 Roundcube Updates

cPanel 104 has introduced a couple of useful changes to the Roundcube webmail client. First, it now has a dark mode that is easily toggled via the icon in the lower left corner. You can see what both of these modes look like below.

You can now also train SpamAssassin directly from within the Roundcube webmail client. When selecting any email outside of the Junk folder, you have the option to select “Junk” which will move the email to your Junk folder and submit it to SpamAssassin for local spam training.

Similarly, if you select an email in your Junk folder, you’ll have the option to select “Not Junk”. This will move the email to your inbox and submit it to SpamAssassin for local ham (not spam) training.

If at any point you make a mistake, you can simply locate the email and select the opposite action.

Imunify360 Now Available

We are pleased to announce that the Imunify360 security suite is now installed across all of our servers. We evaluated this product for some time and after an extended period of testing we are very confident in its ability to better protect our servers and our clients.

Security has always been at the forefront of our minds and Imunify360 has helped us to take this to the next level. Here are just a few things that Imunify360 provides:

Faster, real-time malware scanning – Each file is scanned almost as quickly as it is written. Malware uploaded via the cPanel file manager can even be blocked in real time.
Advanced Web Application Firewall – This helps to stop web application attacks before they even reach your website. From known vulnerabilities to more general protection, the WAF examines all traffic to your website for malicious requests.
Proactive Defense – Imunify360 is able to detect and block malicious code in real time as it is being executed. Malicious code is often hidden or fetched remotely and Proactive Defense is able to stop this activity in its tracks before it causes harm.
Automatic Cleanup – In many cases, Imunify360 is able to remove injected malware from infected files automatically. This is particularly useful for those moving their sites from another host where they may have been previously compromised.

While many of these functionalities were already present on our servers to a degree, Imunify360 has further improved upon these and added even greater security with a focus on prevention. Preventing issues before they occur allows you to better focus your time and resources where they are needed.

cPanel 102: Jupiter WHM Theme & cPanel Icons

Nearly four months after its initial edge release, cPanel 102 has reached the stable release tier and we’ve been slowly deploying it across our servers. The biggest and most immediate change that you’ll notice is the new Jupiter WHM theme which has replaced the old X3 theme. After receiving several updates in earlier releases, the new theme is now functionally similar to that of the old one, just with a fresh look that matches the Jupiter cPanel theme. Here’s a quick comparison look:

Overall, we think this is a nice improvement and know that the cPanel developers are still working towards improving it further. The Jupiter cPanel theme has also been updated with icons for each item:

If you have any questions or run into any issues with the new WHM theme please let us know and we’ll be happy to lend a hand or report any issues to cPanel directly.