cPanel Glossary

Account: A record for accessing privatized information. For example, your cPanel account lets you manage your website. In cPanel, other instances of the term “account” occur in email and FTP.

Account-Level Filter: A rule that determines where email, delivered to a domain’s main email account and meeting certain criteria, will be delivered. See also Filter.

Addon Domain: An additional domain name associated with your cPanel account. Each addon domain is stored in its own directory which you can configure. This allows you to manage multiple domains from a single cPanel account. Addon domains must be registered with a domain name registrar to work.

Analog: A program that provides information about the visitors to your website in both graphical and statistical views. More information about Analog can be found at its website: http://www.analog.cx/.

Anonymous FTP: A process whereby visitors without FTP accounts may upload and download files to and from your site. Although it poses security risks, anonymous FTP can be convenient if you wish to make files publicly available for downloading. When setting up anonymous FTP, it is important to protect any sensitive information by changing file permissions and directory access permissions.

Apache: A program that receives requests from web browsers. It then responds by “serving” web pages to the browsers; for this reason, it’s called web server software.

Apache Handler: A means of telling the Apache software how to process a given type of file. By default, Apache only handles certain file types; using cPanel, you can configure Apache handlers for other file types. For more information, see Apache‘s handler documentation.

Authentication: A process for confirming the identity of someone with whom you want to share sensitive information. On the web, authentication usually involves either a username and password set or a public/private key pair.

Auto Responder: A feature of cPanel that allows you to set up automated replies to incoming email. This feature can be useful for confirming the receipt of mail, or for informing correspondents that the recipient is unavailable (for example, while on vacation).

AWStats (Advanced Web Statistics): A program that provides information about the visitors to your website in both graphical and statistical views. More information about AWStats can be found at its website: http://awstats.sourceforge.net/.

Backscatter: Bounce email messages (or failed Delivery Status Notifications) erroneously sent to a domain whose name has been forged as the sender of spam. Using SPF on your mail server should reduce backscatter.

Backup: A copy of your website’s files, directories, databases, and email configurations. Keeping a backup copy of your website on your personal computer is a wise precaution.

Bandwidth: The amount of data transferred to and from a web server. Every time a visitor views a file (whether it’s a web page, image, video, or audio file), that file has to be transferred to the visitor’s computer. Bandwidth is the total size of all these files transferred to your visitors’ computers. It is important to keep track of bandwidth usage, as it is limited by web hosts.

Banners: Images which appear on a website, often as advertisements at the top or bottom of a page. Often, banners alternate with each successive visit to the page.

BoxTrapper: An application included with cPanel that filters spam by requiring would-be senders to reply to a verification email (also known as challenge-response verification). Only after the sender is verified through the reply will his or her original email be accepted.

BoxTrapper Blacklist: A list of email addresses from which incoming mail will be automatically blocked. cPanel automatically sends a configurable warning message upon receipt of mail from a blacklisted address. See also BoxTrapper Ignore List and Whitelist.

BoxTrapper Ignore List: A list of email addresses from which incoming mail will be blocked. cPanel does not send a warning message upon receipt of mail from an ignored address. See also BoxTrapper Blacklist and Whitelist.

BoxTrapper Whitelist: A list of email addresses from which incoming mail will automatically be accepted. See also BoxTrapper Ignore List and Blacklist.

Build: A minor version of cPanel. Builds exist in four types which are, in order from least to most stable, EDGE, CURRENT, RELEASE, and STABLE. Please visit our installation documentation for an in-depth look at each build type.

Catch-All Address: The email address to which cPanel routes any email message sent to email accounts which do not exist at your domain. Also called a Default Address.

CGI (Common Gateway Interface): A protocol that lets a web server communicate with scripts and other software. cPanel’s CGI Center provides an array of CGI scripts that let you generate and manage useful features for your website, including a guestbook, clock, hit counter, countdown clock, and banner ads.

CIDR (Classless Inter-Domain Routing): A routing method that assigns each Internet user to a four-part IP address, with each part separated by a decimal, followed by a slash and a number between 0 and 32.

CLI (Command Line Interface): A means of communicating with a computer by typing commands. On Unix systems, this is also often called a shell.

Client: Any application that accesses a service on another computer. Web browsers such as Internet Explorer can be called web clients. FTP clients include FileZilla and Cyberduck.

cPAddons: Pieces of software that you can install on your website through cPanel. cPAddons provide useful tools to your website. Common examples include bulletin boards, chat programs, and online shopping carts.

CPAN (Comprehensive Perl Archive Network): The main repository of Perl modules, pieces of Perl software. The CPAN library (located at http://www.cpan.org) contains over 12,000 modules, most of which are free of charge. cPanel allows you to search CPAN and install Perl modules.

Cron Job: A command on a server, executed at regular intervals. These commands are stored in a Unix configuration file called crontab.

CSR (Certificate Signing Request): A request, which you send to a certificate authority, for an identity certificate. cPanel can generate a CSR for you, but since authorities vary with regard to the information they require, you should check their requirements before applying for a certificate.

Default Address: The email address to which cPanel routes any email message sent to email accounts which do not exist at your domain. Also called a Catch-All Address.

Directory (Folder): A repository for files, analogous to a file folder on your personal computer. In website management, a directory will contain your web files.

DNS (Domain Name System): The component of the Internet which acts as a “phone book,” converting human-readable domain names (such as www.example.com) into computer-readable IP addresses (such as 208.77.188.166, in the case of example.com).

Domain: The name you give your website, which will appear in your website’s URL and email addresses. Usually seen as example.com, where “example” is meant for your domain’s name.

DomainKeys: An email authentication method that attempts to verify that a message actually came from the domain it appears to have come from.

DSA (Digital Signature Algorithm): A method of generating public and private keys for encrypting data. This algorithm was developed by the U.S. government.

Entropy Banner Manager: A script, included with cPanel, that lets you manage rotating banner images on your website.

Entropy Search: A script, included with cPanel, that creates a search engine for your website.

Error Pages: These pages display warning messages when visitors encounter problems while trying to access your site. cPanel lets you configure the error messages that display for your site. For an in-depth look at HTTP error codes, please visit our HTTP error codes documentation.

Filter: In cPanel, a tool that processes mail according to your preferences. For example, a filter can automatically discard spam or save mail from a specified sender to its own folder. In cPanel, filters can be applied to the main email account on a domain (Account Level Filters), or customized for each individual account (User Level Filters).

Forwarder: A tool that lets you forward a copy of every email message you receive to another address. When a forwarder is set up, you will still receive mail at the original recipient address. If, however, you create a forwarder without first creating the original address, messages will be forwarded to the end address without being sent to the original address, as it does not exist.

FrontPage®: A Microsoft® application that allows you to edit your web page in WYSIWYG (what-you-see-is-what-you-get) format, rather than using HTML code. cPanel provides FrontPage extensions, so you can publish your site using FrontPage, allowing you to skip the FTP process. Newer versions of FrontPage allow you to publish your site using FTP or WebDAV. See the FrontPage User Manual for more information about publishing.

FTP (File Transfer Protocol): A method of transferring files from one computer to another. cPanel comes equipped with an FTP server that can be configured to your preference. An FTP client must be installed on your computer in order to send files to and receive files from the FTP server. Some FTP clients include FileZilla (for Windows®, Linux, and Unix), and Cyberduck (for Mac®).

FQDN (Fully Qualified Domain Name): A name that uniquely defines a domain’s location. It is usually seen as host.example.com. with a trailing dot. For the purposes of cPanel, including a final dot is not necessary, but the domain name must contain at least 2 dots.

GnuPG (GNU Privacy Guard): Free encryption software that lets you generate a matching public and private key. These keys are useful for keeping files private during transfer.

gzip: A program which compresses files for quick transfer. The compressed files use the filename extension .gz.

Home Directory: Your cPanel account’s highest-level directory, which contains all the files and directories used by websites managed through your account. Files placed in your home directory are not viewable online unless they reside in the public_html directory or a subdirectory of public_html.

HotLink: Also known as an “inline link.” A hotlink is a direct link that embeds a file (such as an image or video) from your site into another website. When another site embeds your files, it is using your bandwidth to serve those files.

.htaccess: A file that resides in a specific directory, and contains configuration information applying to all the information in that directory. The .htaccess file may also contain authentication instructions.

HTML (Hypertext Markup Language): The language in which most pages on the World Wide Web are written.

.htpasswd: A file that resides in a specific directory, along with an .htaccess file. The .htpasswd file contains encrypted password information when authentication has been set up for the directory.

HTTP (Hyptertext Transfer Protocol): The method (protocol) for transferring data over the Internet.

IMAP (Internet Message Access Protocol): Along with POP3, one of the two most widely used email transfer methods. IMAP synchronizes email account information with the mail server on a regular basis. If you log in to multiple computers to check your email, IMAP will allow you to see what messages you have viewed, replied to, forwarded, etc. POP3 does not allow you to see this information.

Index Page: The page viewed by default when a visitor accesses a directory of your website. If no index page exists for the specified directory, the visitor will see a list of files in that directory, unless you turn off indexing in cPanel. This page is typically index.html, index.htm or index.php.

IP (Internet Protocol) Address: A number that identifies a computer on a network, making it possible for other computers to find and communicate with it.

Java: A computer programming language used by many web applications. cPanel uses the Java language to provide the SSHTerm and Java Telnet features. These small applications, which run within the context of a web browser, are called applets.

Key: In cryptography, a key is used to encrypt or decrypt information. Keys are an important part of encryption and security and should be guarded appropriately.

Leech: A visitor who uses another person’s password to access a restricted area of a website. cPanel allows you to prevent leeching by redirecting likely offenders or disabling accounts whose passwords have been compromised.

Legacy: A term for an old software program or computer system that is still in use.

Local Host: An easy way to refer to the computer that you are currently working on.

Log: A file, automatically created by the server, that records activities performed by or on the server. For instance, error logs are lists of errors that visitors have encountered on your site.

Mailing List: A list of email addresses which list members can use to communicate. Alternatively, such a list can be used to send email messages to a large group of people. cPanel uses a program called Mailman for mailing list software; for more information, please see its website, http://www.list.org.

MIME (Multipurpose Internet Mail Extensions) Type: Now called an Internet media type, this component of a file identifies the file type, so that web browsers know how to handle it. cPanel lets you specify which application should be used to open files with a given extension.

MX (Mail eXchanger) Entry: A record that specifies where email should be sent for a domain. If you are using an email scanning service or custom mail delivery, you may need to change the MX record for your domain.

MySQL: This term refers to a database management tool, as well as the type of database it manages. Such databases are integral to applications like bulletin boards and retail shopping. cPanel provides an integrated MySQL interface as well as a MySQL database editing tool called phpMyAdmin.

Nameserver: A computer that contains a list of domain names and their corresponding IP addresses. These computers are spread through the Internet and allow you to find where a domain is located. Nameservers gather data about domains over time; therefore, changes to DNS records can take up to a week to reach all the nameservers on the Internet (or “propagate”).

Parked Domain: A second domain that points to your primary domain. When users attempt to access the parked domain, they will see your main website. For example, both http://www.cpanel.net and http://www.cpanel.com go to the same place, as cpanel.com is a parked domain for cpanel.net.

PEAR (PHP Extension and Application Repository): A repository of PHP code. cPanel allows you to search for and install PEAR packages consisting of PHP programs which can perform useful functions for your website.

Perl: Known for its ability to process text, Perl is a useful language for web applications. Perl applications are commonly found as .pl, .pm, and .cgi files and may require Perl modules. Perl modules can be installed within cPanel.

Perl Module: A piece of software written in the Perl language. Modules are common pieces of software that are reused often. For example, rather than writing a set of functions to display calendars, you can simply use a calendar module.

PHP: A computer scripting language in which many web-based applications are written. PHP applications are commonly found with the filename extensions .php, .php4, or .php5. Some PHP applications require PEAR packages, which can be installed in cPanel through the PHP PEAR Packages feature.

PHP Package: A piece of software written in the PHP language.

phpMyAdmin: A graphical application that allows you to manipulate and manage MySQL databases over the Internet. Full documentation for phpMyAdmin can be found at its creators’ website: http://www.phpmyadmin.net.

POP3 (Post Office Protocol version 3): Along with IMAP, one of the two most widely used email transfer methods. POP3 simply copies every message in your email account to your local computer. No information is sent back to your email account about message replies, forwarding, etc. If you use multiple computers to check your email, it is advised that you use IMAP instead of POP3.

POSIX (Portable Operating System Interface): A standardized collection of commands for the Unix operating system.

Private Key: A string of characters that a computer uses to encode or decode encrypted messages it receives. Encryption schemes use a matching pair of keys (one public, one private) to create a secret code so that anyone looking at messages sent from or received by your computer will be unable to determine the contents of those messages without access to the private key. A private key is integral to protecting your confidential information and should be safeguarded appropriately.

Proxy: In computing, a computer or program that serves as an intermediary between two other entities. For instance, a proxy server receives a request from a client, finds the requested resource, and returns it to the client. You can use the cPanel Proxy to access to your cPanel interface when normal access is blocked (for example, from behind a firewall).

Public Key: A string of characters that a computer uses to encode or decode encrypted messages it receives. A public key is provided to anyone you wish to send sensitive information to. Typically, a public key will be placed on a server so you can access that server with encryption.

public_ftp: The subdirectory, located inside your home directory, that holds files available for public download. This is the default directory users will access when they connect to your site via anonymous FTP.

public_html: The subdirectory, located inside your home directory, that holds the files that make up your website. The www directory is a link to public_html. Any files and folders inside of public_html are visible over the Internet, unless you specifically protect them with password protection or using a .htaccess file.

Redirect: A feature that allows you to send visitors who try to access one URL to another URL. cPanel allows you to set up either temporary or permanent redirects. Redirects are useful when you change the URL of a page on your website. You can put up a redirect at the old URL to make sure your visitors are automatically sent to the new URL.

Referer: A web page which links to your site; also called an “HTTP referer.” This spelling is the industry standard term, though it is based on a misspelling of “referrer.”

Root: Specific to Unix and Unix-based systems, a computer account, used by a system administrator, which carries full privileges for configuring a computer system. Also called “superuser.”

RSA: An algorithm for generating public and private keys when sending encrypted data between a local machine and a remote machine. The name of this method is not an abbreviation; it is named after its three inventors.

SCP (Secure Copy Protocol): A method of transferring encrypted files from one computer to another. This method prevents data from being intercepted and read.

Shell: Software that allows you to interact with a computer. Many Unix shells allow you to type commands, and are often referred to as CLIs, or command line interfaces.

Shortcut: A link to an application which allows you to access it from a convenient location, like your computer’s desktop.

Spam: Chiefly, unsolicited email sent in bulk, usually by an automated system. As spam is considered a costly nuisance to the recipient, cPanel includes features like SpamAssassin and BoxTrapper that can cut down on the amount of spam received.

SpamAssassin: An application which can filter suspected spam before you receive it. SpamAssassin can be configured to filter spam more or less aggressively, according to your needs. Learn more about SpamAssassin at its website: http://spamassassin.apache.org/.

SPF (Sender Policy Framework): A feature that allows a recipient server to verify that an email message has really been sent from the domain specified in the From: field. Enabling SPF can prevent your server from receiving replies to spam that has forged your domain name as part of the sender’s address. SPF only works if both the sending and receiving mail servers have SPF enabled.

Spoofing: In email, this term is used to describe the forgery of a domain name as the sender in the header of an email. Enabling SPF makes it more difficult for spammers to spoof your domain.

SSH (Secure Shell Handler): A network protocol that allows a user to log into a remote machine user account securely. cPanel can create keys for authenticating your identity during SSH login, and provides a Java applet for accessing SSH through your web browser.

SSL Certificate: An electronic document (using the filename extension .crt) which binds a public key to an identity consisting of an email address, company, and location. This electronic document is a key piece in an authentication process.

SSL (Secure Sockets Layer)/TLS (Transport Layer Security): TLS is simply the more recent version of SSL. Both are cryptographic schemes that allow for secure interaction between a web browser and a web server. All sensitive data (credit card numbers, login information, etc) that is transmitted over the internet should be protected by SSL/TLS. You can install an SSL certificate on your web site to allow your site to be protected by SSL/TLS.

Subdomain: A subsection of your website that exists as a subdirectory in your home folder. If your domain were example.com, then the subdomain URL would appear as subdomain.example.com.

Tar: Originally derived from “Tape Archive,”a program that collates files for transfer or distribution. Files processed by this program are usually compressed, commonly called “tarballs,” and use the filename extension .tar. Due to the compression commonly used, .tar often precedes the .gz file extension.

Tarball: A file collated by the tar program, and usually compressed.

Telnet: A network protocol that allows a user to log into a remote machine user account remotely. Telnet is similar to SSH, but less secure. Telnet should not be used to connect to your web site except for testing purposes. Login information is sent through Telnet as plain text and can be easily intercepted.

Thumbnail: A version of an image file that is reduced in size, allowing for easy viewing of multiple images. cPanel includes a Thumbnailer tool as part of its Image Manager section.

Thumbnailer: A cPanel tool that automatically sizes down all the images in a directory. The new thumbnails are stored in a subdirectory named */Thumbnails, where * is meant to represent the parent directory containing the original images.

URI (Universal Resource Identifier): On the web, a URI is a string of characters that identifies a website. URI is often used synonymously with the terms “URL” and “web address,” although there are technical differences among the three.

URL (Universal Resource Locator): On the web, a URL is a string of characters that identifies the location of a website. Since IP addresses are difficult to remember, URLs are used instead. For example, it is much easier to remember to go to http://www.example.com than http://208.77.188.166. URL is often used synonymously with the terms “URI” and “web address,” although there are technical differences among the 3.

User: A person who uses a computer to accomplish some purpose.

Visitor: A person who views your website.

Web Browser: An application used to view and interact with sites and pages on the World Wide Web. Examples include Firefox®, Internet Explorer®, and Safari®.

Web Disk: A feature of cPanel that lets you manipulate your web files by dragging and dropping, just as you do on your local computer’s operating system.

Web Root: The top-most directory of your website (namely, public_html or www), inside which all of the files and subdirectories for your website reside.

Web Server: A program, such as Apache, which receives requests from clients (web browsers), retrieves the requested web pages, and “serves” them to the clients.

Webalizer, The: A program that displays various statistics for your website using tables and graphs. Full documentation for The Webalizer can be found at its creators’ website: http://www.webalizer.com.

Webmail: Any application which allows you to access your email through a web browser. The main advantage to webmail is the ability to access your email account from any computer connected to the Internet without having to install or configure a specific mail program.

WHM (WebHost Manager®): Companion software to cPanel, designed for web hosts.

www: For the purposes of cPanel, www is a link to the directory that holds the files that make up your website (/public_html).

Ever have Apache not respond, and in the logs shows:

[Fri May 04 16:10:35] [notice] child pid 9607 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9606 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9602 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9599 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9598 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9593 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9592 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9591 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9590 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9588 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9587 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9583 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9582 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9579 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9578 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9576 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9575 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9574 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9573 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9554 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 9551 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 7835 exit signal File size limit exceeded (25)
[Fri May 04 16:10:35] [notice] child pid 7817 exit signal File size limit exceeded (25)

This is due to Apache’s 1′s 2G file size limit. This could also be caused by anyone using an EXT2 file system, as it doesn’t support files over 2G in size.

This is pretty easy to fix. First we need to find the offending file:

find /usr/local/apache/ -size +2000000k -printf “Size: %kK\tPath: %p\n”

Once you find the offending file, you’ll need to get rid of it. You can do this by piping into the file via

> /path/to/file

Than restart Apache:

/etc/init.d/httpd startssl
/etc/init.d/httpd restart
service httpd startssl

Cpanel Important directories.

/usr/local/cpanel
/var/cpanel
/scripts

/usr/local/cpanel
—————
cpsrvd
cpsrvd-ssl
cpkeyclt

/usr/local/cpanel/bin
——————-
*Houses only scripts and binaries which provide installation
and configuration of many cPanel managed services

Notable Contents:
eximstats
checkperlmodules

/usr/local/cpanel/logs
——————–
CPSRVD ——-access_log, error_log
CPANELLOGD—stats_log
CPKEYCLT——license_lo

/usr/local/cpanel/base
——————–
frontend——-x, x2,xmail,monsoon
webmail——-x, monsoon
neomail
horde
3rdparty——-squirrelmail, phpPgAdmin, phpMyAdmin

/usr/local/cpanel/etc
——————-
init ———–start | stop cpsrvd AND start | stop AND start | stop cppop
exim———-cf, perl
ftptemplates —proftpd
httptemplates –apache1–default, ssldefault
zonetemplates–simple, standard, standardvirtualftp

/usr/local/cpanel/3rdparty
———————–
bin——php, stunnel, analog, awstats, webalizer
etc——php.ini, ixed, ioncube

/var/cpanel
———-
Houses proprietary configuration data for cPanel, including:
● Primary cPanel configuration
● User configurations
● Reseller configurations
● Accounting, conversion, and update logs
● Bandwidth data
● Customized service templates

/var/cpanel
———-
cpanel.conf
resellers
accounting.log
features–packages–logs
updatelogs–bandwidth–zone templates
users—mainips

/var/cpanel/cpanel.config
———————–
● The primary cPanel configuration file
● Each variable within influences the way cPanel behaves
● Variables are line delimited, with variables separated by an equal sign
● If file does not exist, cpanel falls back to defaults

/var/cpanel/resellers
——————

Lists each reseller with a comma-delimited list of WHM
resources that reseller has access to.

/var/cpanel/accounting.log
————————
Contains a list of accounting functions performed through
WHM, including account removal and creation.

/var/cpanel/bandwidth
——————–
● Files contain a list of the bandwidth history for each account.
Each named after their respective user.
● History files are stored in human-readable format, while actual
bandwidth data are stored in round robin databases.

/var/cpanel/features
——————

● File name is inherited from the feature list name
● Contains a line delimited list of feature variables and a zero or
one value
● Variables control what cPanel resources are available to users

/var/cpanel/packages
——————-
● Contains a list of packages, named after the packages they represent
● If package belongs to reseller, file name is prefixed with reseller name
● Each of these values determines the values created in cPanel user file

/var/cpanel/users
—————-
● Contains a list of cPanel user configuration files, named after the user
they pertain to.
● Variables define account resources, themes, domains, etc.

Other notable /var/cpanel directories
——————————–
● LOGS
– This directory contains logs from account copies/transfers.
Training Seminar 2006
● UPDATELOGS
– Contains the output of each cPanel update executed on the server.
● MAINIPS
– Named after the respective reseller users they represent, each
contains only the IP address which should be used as that
resellersmain shared ip
● ZONETEMPLATES
– Contains customized DNS zone templates created inWHM

/scripts
——-
This directory houses a large number of scripts which serve
as building blocks for many cPanel/WHM features.
The scripts can be used to:
● Update cPanel, and many of the services of which it
manages
● Customize account creation routines
● Perform backups of cPanel accounts
● Install and update cPanel managed services

cPanel Services
————-
Services
● CPSRVD
● CHKSERVD
● CPANELLOGD
● CPBACKUP
● EXIMSTATS

cpsrvd
——
● cpsrvd is the ‘master’ process for cPanel.
● Handles and dispatches all requests made through the cPanel,
WHM, and Webmail interfaces.
● Logs to access_log and error_log

cpsrvd and stunnel relationship
—————————
CPSRVD–2082–>cpanel<–2083<–stunnel
CPSRVD–2086–>WHM<–2087<–stunnel
CPSRVD–2095–>Webmail<–2096<–stunnel

SSL Certificates
————-
● Default certificate and key are stored in /usr/local/cpanel/etc/cpanel.pem
● User installed cert and cabundle are stored in:
– /usr/local/cpanel/etc/mycpanel.pem
– /usr/local/cpanel/etc/mycpanel.cabundle

cPanel Startup
————
● The following services are controlled by the cPanel
init script
– cpsrvd, both plain and secure
– cPanel POP Services
– cPanel Log Services
– Eximstats
– Chat Services
– Mailman
– Interchange

● Verify if ports are in use
– netstat -lnp | egrep ‘20(8|9)’

Troubleshooting Startup Issues(SSL)
——————————-
● If SSL services are not available
– execute /usr/local/cpanel/startstunnel
– check /usr/local/cpanel/3rdparty/bin/stunnel.log
● If cpsrvd is not available
– execute it directly `/usr/local/cpanel/cpsrvd`
– check /usr/local/cpanel/logs/error_log

Licensing
——–
● License requests are handled by /usr/local/cpanel/cpkeyclt
● Requests are transmitted to auth.cpanel.net over port 2089
● License requests are logged to license_log
● License key is stored at /usr/local/cpanel/cpanel.lisc

A valid license request:
root@server [~]# /
usr/local/cpanel/cpkeyclt
Updating Internal cPanel
Information…..Done
root@server [~]#

Troubleshooting License Issues
—————————
CHECKLIST:
● Verify if license is active for main server IP at http://verify.cpanel.net
● Check if server can establish connection to auth.cpanel.net over port 2089
● If the previous steps fail, check license_log for notable errors.
● If license is active, but refused with no notable errors, lodge support request.

root@server [~]# telnet auth.cpanel.net 2089
Trying 198.66.78.9…
Connected to auth.cpanel.net (198.66.78.9).
Escape character is ‘^]’.
200 cPanel License Service Version 12.0
root@server [~]#

cPanel Requests
————–
cPanel Requests
● Logins are authenticated against the system passwd and shadow files.
● Documents root is /usr/local/cpanel/base
● Theme is defined by RS variable in user’s cPanel configuration file.
● Resources are limited by the feature list of assigned to the given user.

WHM Requests
————-
● Root password will authenticate any reseller user
● Document root is /usr/local/cpanel/whostmgr/docroot/
● Reseller resources are limited by Access Control List
– Defined in WHM > Resellers > Reseller Center > Edit
Privileges/Nameservers
– Privileges are stored in /var/cpanel/resellers

cPanel Services
————–
● CPSRVD
● CHKSERVD
● CPANELLOGD
● CPBACKUP
● EXIMSTATS

Service Monitoring
—————-
● Located at /usr/local/cpanel/libexec/chkservd
● chkservd is a scalable connection and process based service monitoring
tool
● Provides monitoring of CPU, Memory, and Disk usage
● chkservd scans services once every eight minutes
– Logs to /var/log/chkservd.log
● Alerts are dispatched to server contact defined in Basic cPanel/WHM
Setup

chkservd Configuration
——————–
● Monitored services are determined by values stored in /
etc/chkserv.d/chkservd.conf.
– Syntax: servicename:0 for no monitoring, servicename:1 for
monitoring
● Actions, expected responses, and failure events are defined in
service configuration files stored in /etc/chkserv.d/
● Status files are stored in /var/run/chkservd/
– Plus (+) sign for active, Minus (-) sign for failed

cpanellogd
———-
● cpanellogd is responsible for parsing and updating bandwidth logs, and dispatching
statistics generators on each account, per their individual configurations.
● Configured through Statistics Software Configuration and Tweak Settings in WHM
● Statistics are compiled and stored for each account in /home//tmp, with
each respective statistics application being assigned it’s own individual subdirectory.

/home//tmp —-webalizer, analog, awstats, urchin

● Optional server-wide statistics configurations are stored in /
etc/stats.conf, while user-specific configurations may reside in /home/
/tmp.
● Notable Variables in /etc/stats.conf:
– BLACKHOURS: Comma separated list of numeric values, which
specify hours that logs may not be parsed.
– VALIDUSERS:Users which are allowed to supply their own
combination of statistics generators. By default users are
restricted to the generators defined by the administrator.

Calling cpanellogd
—————-
● cpanellogd is started with the cPanel service, but can be executed
directly with:
– No Argument: Daemonize, and wait for a suitable time to scan
logs
– One Argument (username): Execute an immediate statistics run
for the specified user, and exit once completed.
● Two scripts are available to provide these functions as well:
– /scripts/runlogsnow – Execute a full log run immediately
– /scripts/runweblogs – Execute a log run for a single
user

Bandwidth Statistics
—————–
● Bandwidth statistics are accumulated from a combination of the
following cPanel managed services:
– HTTP
– EXIM
– IMAP / POP
– FTP
● Bandwidth data is logged to /usr/local/apache/domlogs/*bytes_log
● Parsed bandwidth data is stored in /var/cpanel/bandwidth

COMMON ISSUES
● Bandwidth parsing is taking an exceedingly long time to complete
– First check the size of the logs being parsed. Excessively large
log files can and typically will take a long time to complete.
– Additionally, if RRDtool is not installed, bandwidth parsing
performance will drop signifigantly.
● RRDtool can be installed by executing `/scripts/rrdtoolinstall`

Log Processing
————-
● Statistics are parsed for each child domain of the given account.
● Will be influenced by variables in /var/cpanel/cpanel.config
– Skip statistics generator
● skip
– Logs will be retained or deleted based on
● keeplogs – keep logs at the end of the month.
● dumplogs – dump logs after parsing

Common cpanellogd Issues
————————
● Statistics are stalling, or are taking unreasonable amounts of
time.
– Usually indiates that the server load average is consistently
exceeding the defined load limit.
● Limit is defined as ‘extracpus’ in /var/cpanel/cpanel.config
– Restrictive BLACKHOUR definitions in WHM > Statistics Software
Configuration.
– All other issues should be present in /
usr/local/cpanel/logs/stats_log

cPanel Backups
————-
GENERAL INFORMATION
● Backup configuration is performed in WHM > Backup > Configure
Backup
● cPanel backups are performed by /scripts/cpbackup, which is
configured by default to execute at 1:00 AM in the root crontab.
● Backup archives are created using the /scripts/pkgacct utility, and
may be restored using /scripts/restorepkg respectfully.
● Uses CPU resource limits based upon extracpus definition in
cpanel.config

Backup Configuration
——————-
BACKUP INTERVALS
● Backup script can be configured to operate in daily, weekly, and monthly intervals.
● Each interval is given it’s own respective directory within the backup root.
● Backup intervals are executed when the current time minus the last modification time
of the interval directory is less than or equal to zero.

BACKUP METHODS
—————-
Three backup methods are available:
● Standard: This method entails archiving the accounts, and storing
them at the specified path/mount point. This is the default method
used by the backup script.
● Incremental: This method uses rsync to incrementally backup user
data. This option will only operate locally, storing the data at the
specified path/mount point.
● Remote: This method transmits account archives to a specified ftp
server. Remote backups are typically more time consuming, and
more error prone when transmitting large accounts.

Common Backup Issues
——————–
● Backup intervals are not executed when expected.
– Modification times are incorrect or not functional
– System time is incorrect.
– Backups have not been defined to run on that day.
● Backups stall, or take an exceedingly long time to complete.
– Verify that the transmission rate to remote server is suitable
– Verify that server load average has not exceeded defined
resource limit.

● Can’t call method “login” on an undefined value
This indicates the host or passive setting is not properly
defined for remote backups.
● Unable to login to remote FTP server.
This indicates that either the username and password
were not specified, or are incorrect in the backup configuration.
● Can’t call method “prepare” on an undefined value
The password stored for the root mysql user in /root/.my.cnf is
incorrect. Reset or correct this password, and re-execute the backup
script.

eximstats
———
● The eximstats daemon is responsible for harvesting bandwidth
information from exim transactions.
● Continually monitors the exim_mainlog, and stores information in the
eximstats database, including host and sender information, message
size, and transaction times.
● Is started with the cPanel service, but can be called directly at /
usr/local/cpanel/bin/eximstats

● Heavily mysql dependent
– data is stored in the ‘eximstats’ database.
● ‘eximstats’ mysql user password is stored in /var/cpanel/eximstatspass.
– password is generated by /usr/local/cpanel/bin/eximstatspass
● Database can be installed by running /
usr/local/cpanel/bin/updateeximstats

cPanel Maintenance
—————–
● Update configuration
● Update scripts
● Applying updates

● By default, cPanel applies nightly updates at 2:13AM in the root crontab.
● /scripts/upcp dispatches these updates, using the following key
components:
– /scripts/updatenow – synchronize /scripts directory
– /scripts/sysup – updates cPanel managed rpms
– /scripts/rpmup – all other system updates
● Updates are logged to timestamped files in /var/cpanel/updatelogs
● Update configuration is stored in /etc/cpupdate.conf.

/etc/cpupdate.conf
—————–
● The following variables are available in cpupdate.conf:
– CPANEL = [ manual- ] stable | release | current | edge
This variable controls which update branch is used for
cPanel updates, and controls whether the updates are applied
manually or automatically (Default value: release)
– SYSUP = never (all other values are assumed true)
– RPMUP = never (all other values are assumed true)

CPANEL=current
RPMUP=daily
SYSUP=daily

● cPanel updates can be called outside of the regularly scheduled cron
time simply by executing /scripts/upcp.
● If cPanel components are missing or corrupted that were not replaced
with the regular cPanel update, they can be replaced by executing /
scripts/upcp –force

Components of upcp
——————
● /scripts/cpanelsync
● /scripts/updatenow
● /scripts/sysup
● /scripts/rpmup

/scripts/cpanelsync
—————–
● /scripts/cpanelsync is called upon by /scripts/updatenow and /
scripts/upcp
● Provides md5sum based synchronization with update servers
● md5sum table is stored in /destination_directory/.cpanelsync
● Accepts three arguments host, remote path, local path :
/scripts/cpanelsync ‘httpupdate.cpanel.net’
‘/cpanelsync/RELEASE/scripts’ ‘/scripts’

/scripts/updatenow
—————–

Calls cpanelsync to update contents of scripts
directory, which then stores it’s md5sum table
at /scripts/.cpanelsync
● Should only be run from upcp, but can be
executed from command line when ‘–fromupcp’
is passed.
● Is the first update script called upon from /scripts/upcp

UPCP–>updatenow–>FTPUP–>EXIMUP–>MYSQLUP–>BANDMINUP–>COURIERUP–>RPMUP

RPMUP
——–
● Calls the underlying package manager to apply system package
updates
● The package manager which is used is determined by the presence
of:
– /var/cpanel/useup2date (Redhat)
– /var/cpanel/useyum (CentOS,Fedora)
– /var/cpanel/useapt (Debian)
– /var/cpanel/useswup (Trustix)
– /var/cpanel/userug (SuSE)

cPanel Updates
—————-
● After updatenow, sysup, and rpmup complete, cpanelsync is used to
complete the cPanel updates based on md5sum table stored at /
usr/local/cpanel/.cpanelsync
● If any special configurations are required on server after updates,
they can be applied in /scripts/postupcp, which is executed if such a
file exists and is executable.
● Once updates complete, all cPanel services are restarted for changes
to take effect

cPanel Scripts
————–
● Account Management
● Package Management
● Service Update and Configuration
– MySQL
– Exim
– Named
– Apache
● cPanel and System

Account Management Scripts
——————————
● /scripts/wwwacct (account creation)
Accounts can be created via the command line using the following
syntax: /scripts/wwwacct exampledomain.com username password 0
x n
● /scripts/killacct (account termination)
Takes a single argument of the user to terminate.
● /scripts/suspendacct (account suspension)
Will suspend an account from accessing all cPanel managed
services.
● /scripts/unsuspendacct
Will reinstate any account suspended via suspendacct

● /scripts/addpop (Create pop account)
Handles creation of virtual mail accounts. Accepts either no
arguments, or two arguments consisting of the e-mail address and
password.
● /scripts/updateuserdomains
Updates the user:owner and user:domain tables stored in:
– /etc/userdomains
– /etc/trueuserdomains
– /etc/trueuserowners
– These tables are used to enumerate and keep track of accounts
and their owners.

Package Management
———————-
● /scripts/ensurerpm
Takes argument list of rpms, which are then passed to the
underlying package manager
● /scripts/ensurepkg
The equivalent of ensurerpm for FreeBSD. Updates specified
packages from ports.
● /scripts/realperlinstaller
Takes argument list of perl modules to install via CPAN
● Each of the aforementioned scripts can accept an argument of ‘–force’
to force package installations.

● /scripts/mysqlup
Can be called to apply MySQL updates independent of upcp
● /scripts/cleanupmysqlprivs
Will clean up the default MySQL privilege tables, by installing
a more restrictive privilege schema.
● /scripts/mysqlconnectioncheck
Will verify that mysql is accessible with password stored in /root/.my.cnf,
and force a reset with a random 16 character string if inaccessible.
● /scripts/restartsrv_mysql

● /scripts/eximup
Can be called to apply exim updates independent of upcp
● /scripts/buildeximconf
Will rebuild exim.conf, and merge local, distribution, and cPanel
configurations
● /scripts/restartsrv_exim

● /scripts/rebuildnamedconf
Rebuild named.conf based on existing zone files
● /scripts/restartsrv_bind

● /scripts/easyapache
Download, extract, and execute apache build script
● /scripts/rebuildhttpdconf
Rebuilds httpd.conf based on DNS entries found in each
cPanel user configuration
● /scripts/restartsrv_httpd

cPanel Scripts
————–
Useful Scripts – cPanel and System
● /scripts/restartsrv_
The majority of cPanel managed service can be scripts named
appropriately.
● /scripts/makecpphp
Will rebuild the PHP interpreter used internally by cpsrvd
● /usr/local/cpanel/bin/checkperlmodules
Will scan for and install any Perl modules required by cPanel.
● /scripts/fullhordereset
Updates horde and resets the horde mysql user password
● /scripts/fixquotas
Will attempt to rebuild quota database per information stored in /
etc/quota.conf