meta data for this page
All config file options
Constants and variables
- admin
- anti-spam
- authentication
- aws
- bounce management
- composition
- database
- feedback
- i18n
- queue processing
- rendering
- security
- segmentation
- sending
- social networking
- statistics
- subscriber management
- subscription
- system
Filtered by category='security'
| # | edit | category | type | purpose | allowed values | ↓ default |
|---|---|---|---|---|---|---|
| 1 | askforpassword | security | constant | Ask subscribers to enter a password for their profile when they register | true false 0 1 | 0 |
| 2 | check_sessionip | security | constant | Verify the session of the logged in administrator | true false 0 1 | 1 |
| 3 | encrypt_admin_passwords | security | constant | Enable encryption of admin passwords | true false 0 1 | 1 |
| 4 | check_referrer | security | constant | Verify that the referring web page is allowed | true false 0 1 | 1 |
| 5 | add_email_throttle | security | constant | Limit the use of the Add email in the send test functionality | Any number | 1 |
| 6 | sendtest_throttle | security | constant | Limit the use of the send test functionality | Any number | 1 |
| 7 | require_login | security | variable | Activate the authentication system | 0 1 | 1 |
| 8 | password_change_timeframe | security | constant | Time allowed for an admin to use the token to change their password. | A valid mySQL INTERVAL value | 1 day |
| 9 | sendtest_max | security | constant | Limit the number of email addresses that can be used in the send test functionality | Any number | 999 |
| 10 | allowed_referrers | security | variable | Domains that can refer to the phpList system | array of domains | empty array |
| 11 | unsubscribe_requires_password | security | constant | Request a valid password before acting on unsubscribe. | true false 0 1 | false |
| 12 | access_control_allow_origin | security | constant | Block requests from an incorrect location | http://'.$_SERVER['HTTP_HOST'] | |
| 13 | encryption_algo | security | constant | The encryption method to use when encrypting passwords | any algorithm accepted in your PHP system, see http://php.net/hash-algos | sha256 |
| 14 | hash_algo | security | constant | The hash method to use when hashing passwords | any algorithm accepted in your PHP system, see http://php.net/hash-algos | sha256 |
| 15 | access_control_allow_origins | security | constant | Block requests from an incorrect location, but allow multiple domains | array of domains | undefined |