Improved Client Area Single Sign-On

On our web hosting platform, there are several ways customers can log in to cPanel, WHM, or Plesk.

You can either access:

  • cPanel & WHM at Port 2083 and 2087 respectfully
  • Plesk Admin at Port 8443
  • SSH via Port 22
  • or via our billing system single sign-on

Single sign-on enables you to access your active services such as cPanel and Plesk hosting accounts directly from the Client Area.

Today, we want to let you know that the single Customer Dashboard to cPanel or Plesk sign-on has been re-designed. 

To take a look at it and/or access cPanel or Plesk, visit your services at and you will see this interface:

Once you log in and need to log in to cPanel, WHM, or Plesk, click on the Manage option to automatically access your cPanel, WHM, or Plesk servers.

How To Keep A PHP5.6 Website (Or Lower) Online With Ease

HardenedPHP hosting for old PHP versions

Picture this!

You have spent years, tons of time, and money creating a website.

But technology evolves.

As it does, you discover that the PHP version the website is using is no longer compatible with the website framework, the plugins/extensions, and/or theme/templates.

You took a look, ran some tests, and lo and behold, the website goes down every time you switch to a new upstream supported PHP version.

Kinda a dilemma you find yourself in, huh.

And to make things even more tricky, you see no clear upgrade path.

Today, we are reaching out to tell you that there is an option.

You see, we have been providing a service called HardenedPHP hosting service.

Our HardenedPHP supports using older versions of PHP.

This service is capable of hosting (at the time of this writing):

  • PHP 4.4.9 (not really recommended to be used for any production website but available if you must)
  • PHP 5.1
  • PHP 5.2
  • PHP 5.3
  • PHP 5.4
  • PHP 5.5
  • PHP 5.6
  • PHP 7.0
  • PHP 7.1
  • PHP 7.2
  • PHP 7.3
  • PHP 7.4
  • PHP 8.0
  • PHP 8.1

But there is more.

This service also patches these PHP versions against known vulnerabilities.

That means no script re-writes.

No website breakage with a forced upgrade.

All without compromising your website security.

If you ever have the need for the service, check out and use our HardenedPHP hosting packages to ensure maximum security and flexibility.

Recently Updated Web Applications

Our web hosting platform gives you the capability to do more with the best web applications.

And these are always updated to keep you safe.

These are the current ones updated this week:

Mahara has been updated to version 21.04.2. Mahara is an open-source e-portfolio system with a flexible display framework. To install visit our Mahara web hosting packages.

UVdesk has been updated to version 1.0.18. UVdesk community helpdesk project skeleton packaged along with the bare essential utilities and tools to build and customize your own helpdesk solutions.

Bugs package has been updated to version 1.87o. Bugs is a simple issue tracking for teams.

CE Phoenix package has been updated to version CE Phoenix is a powerful e-commerce shop ready to use out of the box, putting you online and in full control of your business.

Symfony3 has been updated to version 4.4.33. Symfony aims to speed up the creation and maintenance of web applications and to replace the repetitive coding tasks with power, control, and pleasure.

Symfony has been updated to version 5.3.10. Symfony aims to speed up the creation and maintenance of web applications and to replace the repetitive coding tasks with power, control, and pleasure.

WHMCS has been updated to version 8.3.1. WHMCS is an all-in-one client management, billing, and support solution for online businesses. WHMCS handles everything from signup to termination, with automated billing, provisioning, and management.

To install visit our WHMCS web hosting packages.

Pimcore has been updated to version 10.2.3. Pimcore is a powerful and robust Zend Framework-based PHP content management system (WCMS) for creating and managing digital content and assets.

To install visit our Pimcore web hosting packages.

TastyIgniter has been updated to version 3.1.1. TastyIgniter is a free open source restaurant ordering and management system. TastyIgniter provides a professional and reliable platform for restaurants wanting to offer customers ways to order food online.

Chevereto Free has been updated to version 1.5.1. Chevereto Free is an application that allows you to set up your own image-sharing website.

DHTMLX has been updated to version 7.2.5. DHTMLX Suite is a JavaScript library that provides a complete set of Ajax-powered UI components to build rich web apps.

UIkit LogoUIkit has been updated to version 3.8.0. UIkit A lightweight and modular front-end framework for developing fast and powerful web interfaces.

LEPTON has been updated to version 5.3.0. LEPTON is an easy-to-use but full customizable Content Management System (CMS). LEPTON enables you to run nearly all the websites most others current CMS promises but never deliver.

To install visit our Lepton CMS web hosting packages.

GRAV has been updated to version 1.7.24. Grav is a modern, fast, simple, and open-source flat-file CMS. Packed to the gills with amazing features and tools, coupled with heaps of detailed documentation, Grav will make you look like a hero developer. To install visit our Grav web hosting packages.

Invoice Ninja has been updated to version 5.3.29. Invoice Ninja was built to serve freelancers and business owners with a complete suite of invoicing & payment tools to advance your business.

To install visit our Invoice Ninja web hosting packages.

For all others, create a web hosting account and install over 430 web applications with just a click.

Lastly, WordPress Toolkit Deluxe is now included as part of the cPanel & WHM license.

Every cPanel & WHM web hosting package now automatically have access to the Deluxe feature-set, providing enhanced security, cloning, staging, smart updates, and more.

WordPress Toolkit Deluxe Available To All Accounts

WordPress Toolkit Deluxe is now a standard hosting feature for all paying hosting accounts at Web Hosting Magic.

WordPress Toolkit is an all-in-one WordPress management solution for WordPress® installations.

better WordPress hosting with WordPress Toolkit Deluxe

WordPress Toolkit makes working with WordPress easier even if you have 1000 of them installed.

With WordPress Toolkit Deluxe, you get:

  • feature-rich & hassle-free management of WP websites, with plugin & theme set management.
  • staging and cloning functionality make experimenting and testing updates easier than ever.
  • advanced security features such as smart updates to ensure the safety of your websites.

To use WordPress Toolkit, visit the Domain section of your cPanel.

If you are unable to see WordPress Toolkit, use the search field in cPanel to look for it.

As recommended before, do not use Softaculous WordPress Manager at the same time with WordPress Toolkit.

Elect to go with one: Softaculous WordPress Manager or WordPress Toolkit Manager.

We hope that this will make your WordPress hosting experience even better.

If you are not a customer yet, please visit our web hosting plans at ⁣ to gain access to a better WordPress hosting with WordPress Toolkit Deluxe.

How To Optimize Your PHP Website Using PHP X-Ray

The Web Hosting Magic team is happy to announce that our PHP optimization tool called PHP X-Ray has exited beta testing and is now available to customers.

You know that feeling you get when you have done everything you could to optimize your PHP website performance, and still, nothing seems to work.

As a good webmaster, you have gone through the code, done everything you could, and even reinstall the CMS software.

You just can't seem to nail the cause of the sluggish-performing website which can be because of:

  • poorly-coded plugins & theme
  • slow database queries
  • poorly-written code functionality
  • external calls
  • slow APIs
  • and even possibly spikes in website traffic.

The fact is that without a dedicated tracing tool that easily plugs into your CMS and analyzes the site to help you identify the root cause, resolving this might be like shooting in the wind and hoping something will stick.

Enter PHP X-Ray.

PHP X-Ray (located in the Software section) is a tool you can use to monitor and diagnose performance in content management systems (CMS) applications such as WordPress, Joomla, or Drupal easily without affecting uptime.

So instead of tediously combing through web application code and plugins, you can scan your website, identify performance bottlenecks in case of a slow website and resolve them swiftly.

How To Find Your Slow Website Issue Using PHP X-Ray

For accounts or hosting packages with PHP X-Ray enabled, all you need to do is to:

  1. Log in to your cPanel and scroll down to Software.
  2. Click on PHP X-Ray and when the page loads, create a tracing task. If you are unable to see the tool in Jupiter, please change your theme to paper_lantern.
  3. Specify the site URLs or domains that have performance issues by selecting the domain from the drop-down list. To specify URL or wildcard, end-users should use the input field next to the domain. Please note that the URL option should be a valid URL of the domain that exists on your current hosting account. The field supports wildcard matching. Click How to use special characters to learn more about wildcard matching.
  4. Click Run, then visit the site and perform an action.

For instance, you can submit a form on the site to perform a POST request, which will trigger PHP X-Ray data collection.

Now return to the tracing dashboard to review feedback.

You will see the task in the list of tracing tasks.

PHP X-Ray will sort requests by order of the slowest requests at the top so that you can prioritize issues.

View the Details page to get additional information about the performance issue and feedback on the root cause.

Let's say that a WordPress plugin is using extensive resources for the request, you will find the details on this page.

All you have to do is to disable the plugin in the CMS administrative dashboard.

Revisit the site, and performance should improve.

The Details page in the trace dashboard should also show no performance issues.

We hope that this will help you optimize your website without the need to spend a fortune on doing just that.

Not yet a customer yet?

Get one of our budget-friendly web hosting packages at

Web Application-Specific Firewall Released

To maximize Web Application Firewall effectiveness (cover as many attacks as possible), yet minimize “false-positives” for them, our WAF is been automated to be more accurate.

This web application firewall auto-configurator generates a set of rules on a per-domain basis, taking into consideration the content management system (WordPress, Joomla, etc)), that you install on the website.  

It works in the background scanning domains for the installed CMS each day.

And once it is done, it completely rebuilds the configuration based on the detected software. 

The main benefits of this feature is a complete reduce in false-positive hits caused by rules designed for applications that aren’t installed on the web site.

For now, this feature is limited to customers in Portland, Oregon using the hostname: west.cpanel.

You Can Now Use Old PHP Version For Your Website

When a new account is provisioned on our system, it defaults to the latest upstream supported version.

At the time of this publication, the latest is PHP7.3.

Latest PHP versions are optimized:

- to speed up your website twice as fast than before,
- make the maintenance of large pieces of code by multiple developers significantly easier
- and give you the ability to write more robust applications by detecting early programming mistakes caused by passing values of the wrong types to and from functions.

But we know that each customer is uniquely different.

And each has different set of business needs that he or she is trying to solve.

One of the issues that 18% of our customer base (often developers) runs into is how to keep applications running old unsupported PHP online while they work behind the doors to upgrade their code.

To help with this challenge, we do offer multiple versions of PHP that a customer can select from.

When hosting your website or application with us, you can select and switch between PHP 4.4, 5.1, 5.2, 5.3, 5.4, 5.5, 5.6, and 7.0, 7.1, 7.2, 7.3 and whatever version that comes after these.

This unique needs also extends to the kind of extension that the customers wishes to use to optimize his or her web application.

That is why we also provide over 120 different PHP extensions that you can select from, giving you even greater control on what how to use PHP.

Our systems also ensure that each of these PHP version is updated fast to make the websites secure and your website visitors, happier.

Please note that the hosting packages that will enable you to run these upstream-unsupported PHP versions are uniquely different from our normal hosting packages.

If you are a new customer and wish to start off with these, all you have to do is to visit

The hosting plan gives you everything you need to host old PHP versions securely and highly scalable.

If you are an existing customer with a website that need to run old PHP, you can easily add this package to the new account.

We are always looking for ways to serve you better.

So please do let us know if there is a feature that you would want see by visiting

We Have Rolled Out New cPanel Features With 80

Web Hosting Magic has rolled these out to our cPanel customers exciting new features and improvements that came with cPanel version 80.

One-Click HTTPS Redirection of Websites

The importance of having an SSL for services and websites on your server cannot be understated.

It is for this reason why when you create a new website with Web Hosting Magic or migrate your websites to our system, we install an SSL to that website automatically.

However, there are times when resources on such website may not have been configured to serve via HTTPS.

As "how do I redirect traffic to the secure or HTTPS version of the URL" has been one of the most common support requests we get from our cPanel end-users is, we have added a new feature to make that redirection even easier.

Our server upgrades to cPanel version 80 brings a Force HTTPS Redirect toggle to cPanel's Domains interface at cPanel >> Home >> Domains >> Domains.

In the Domains interface in cPanel (Home >> Domains), there’s an option to enable Force HTTPS Redirection from the insecure version (HTTP) to the secure version (HTTPS) with a toggle switch.

When enabled, it automatically redirects website visitors who attempt to access the insecure version of a website (HTTP) to the secure version (HTTPS).

This information is stored in the account’s userdata files (/var/cpanel/userdata), and the redirection is built into the domain’s vhost configuration.

No more messing around with your .htaccess or deal with the risk that comes with editing the file manually or use WordPress plugins to redirect resources to HTTPS.

Please note that you can only enable redirection on main domains that also possess a valid SSL certificate.

Aliases (aka Parked Domains) will inherit their redirection status from their parent domain.

cPanel API Tokens

We added the Manage API Tokens interface to cPanel allowing cPanel users to issue API tokens.

Hosting resellers and third-party developers can now use these tokens to authenticate as the cPanel user and issue API calls.

You can find this cPanel >> Home >> Security >> Manage API Tokens.

SpamBox for new cPanel accounts

We are added a feature that simplifies the process of preventing spam in users' inboxes.

Each new account created now will have this created by default.

This makes the process of keeping spam out of your users' inboxes much easier.

Plus addressing mailbox creation

Our cPanel users can disable automatic mailbox creation for plus addressing in the Email Accounts interface found at cPanel >> Home >> Email >> Email Accounts.

The server still delivers plus address messages to the proper mailbox. The Automatically Create Folders setting only affects mailbox creation.

Webmail Roundcube Calendar

Webmail Roundcube interface found at Webmail >> Home >> Roundcube now ships with an internal calendar.

Roundcube's database stores the internal calendar's data.

As our cPanel customers, you can also add a CalDAV calendar to your Roundcube account.

Improved password strength check algorithm

Password strength check algorithm has now been improved to return lower scores for passwords with common dictionary words.

Using words found in the dictionary as password is really a very bad idea as it is often the first place that password crackers starts.

This feature allows you to define minimum strengths for passwords for all of cPanel & WHM's features that require password authentication.

The system rates password strength on a scale of 0 to 100, where 100 represents a very strong password.