Increasing PHP security php functions
dl — Loads a PHP extension at runtime
This function is required for loading ionCube on the fly. However if you have a popular sites using ionCube then the better way is to load it from php.ini anyway. Not only because of speed increase, also you would be in control of ionCube versions so you can make sure that they match with your PHP versions.
exec — Execute an external program
This function is required for XCart and spellcheck feature of Horde. There is no good thing about letting this function work. You could perhaps use safe_mode to designate a safebin environment where you let users to execute only the binaries you allow.
fsockopen — Open Internet or Unix domain socket connection
This function is unfortunately required for Virtuemart paypal module. Thus removed from the example above. You can add it if you are sure that it wont break anything in your system.
cPanel Version 11.25 XML API Functions
Version 11.25 adds 16 new XML API functions to better integrate cPanel/WHM with custom software.
New API functions:
View information about a domain
Add a DNS zone record
Edit a DNS zone record
View all DNS zone records for a domain
Remove a DNS zone record
Reset a DNS zone record to the settings found in httpd.conf
Assign a reseller IP addresses
Set reseller limits
Set a reseller’s main IP address
Define reseller packages
Suspend a reseller’s account
Unsuspend a reseller’s account
View information about a reseller’s accounts
Define a reseller’s nameservers
Configure a service
Change the IP address of a domain
DNS Functions
The following functions were added to the XML-API in cPanel™ 11.25.0:
addzonerecord
This API function allows you to add a zone record.
editzonerecord
This function allows you to edit an existing zone record.
getzonerecord
This function allows you to view DNS zone records associated with a given domain.
removezonerecord
This function allows you to remove a zone record from the server.
resetzone
This API function will reset a DNS zone to its default values.
Blocking Access to Updater Functions from the Control Panel Linux Hosting
If you delegate server administration tasks to other users, but do not want them to use the Updates function or change the updating settings from the control panel, you can remove the screens related to Updater settings and the Updates icon from the control panel.
To do this, use the following MySQL command:
echo ‘REPLACE misc SET param=”disable_updater”, val=”true”‘ | mysql psa -uadmin -p`cat /etc/psa/.psa.shadow`
To restore the Updates icon and screens in the control panel, use the following MySQL command:
echo ‘REPLACE misc SET param=”disable_updater”, val=”false”‘ | mysql psa -uadmin -p`cat /etc/psa/.psa.shadow`
Reference : parallels.com/Plesk/