Feature Suggestions
Please provide here your suggestion for new functionality for Plesk. We encourage you to review and vote for suggestions of others. The top-ranked suggestions are likely to be included in the next versions of Plesk.
Please write in English so that voters from all over the world can read and support your request.
Off-topic posts will be removed from here
137 results found
-
Required restriction executable files, While Upload files in Plesk File Manager
Hi,
Required restriction ( .exe, .dat, .rar, unsecured file and other executable file ) While Upload files in Plesk File Manager
2 votesUnfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
mod_evasive in Plesk
Add mod evasive as module for Plesk
22 votesYou can enable EPEL yum repository and install and configure mod_evasive for your Apache. But in latest Plesk Onyx versions it’s better and effective using ModSecurity Plesk feature for protecting attacks.
—
IG -
3 votes
Thank you for your input!
Unfortunately, we have to close your request because it has not become quite popular for further implementation over the years.
—
IG -
Bind poppasd service to localhost only
Currently poppassd listens on all IPs. Due to that an intruder can connect to the service via 106.
Please implement binding of poppassd to localhost only.2 votesThank you for your input!
Unfortunately, we have to close your request because it has not become quite popular for further implementation over the years.
—
IG -
Anonymize current log files, not only rotated ones.
Implement anonymization for current log files, not only for rotated ones on Linux.
4 votesSorry, but it is impossible because of different important Plesk features like Fail2ban, for instance, can work only with active logs .
—
IG -
Create a feature that to restrict password changing for additional Plesk users on their own
Create a feature that additional Plesk user cannot change its password in Plesk > My Profile tab
1 voteUpd: Sorry, we are closing the request as no information were provided for over a month.
—
IG -
htaccess: let me rewrite to - [L,R=444] (tell the server to be silent, like in nginx)
Save megawatts of electric power and hours of processor time.
Let all those small-minded referral-spammers become desesperate, simply by not answering them at all.
Of course, such a (non-)reaction is also useful in other cases.1 voteUpd: Sorry, we are closing the request as no information were provided for over a month.
—
IG -
secure plesk.uservoice.com login
A login as a returning user with mail address only is totally insecure.
1 voteI suppose that this is feature request for UserVoice.com but not for Plesk.
—
IG -
1 vote
Thank you for your input!
Unfortunately, we have to close your request because it has not become quite popular for further implementation over the years.
—
IG -
letsencrypt
to work and auto renew the mail server and console certs correctly
1 vote -
Entered Password field
Show when a password field has a previously entered password. (as dots)
1 voteThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
to correct auto-update settings/comment
I use your auto-update feature, also of the server itself (not only Plesk) and enabled recently just to update from the repos the package recently came from. This setting result in many problems up to an unusable system. So the recommendations mentioned looks vice-versa: It's safe to disable the feature instead of enabling it.
1 voteThe installed and configured by default system of updates works correctly if it was not been customized.
To solve your issue, please contact your hosting provider (the company that hosts your website) and request support from them directly. We are the authors of the software you and your hosting provider are using, and unfortunately, we cannot help with this particular request because we do not host your website.
We are closing your request as it doesn’t include any software improvement proposal.
—
IG -
Block an IP address based on page requests by specific period of time. (rate limiting)
A tool or a default setting on Fail2Ban to block an ip based on page requests per time period
1 voteUpd: Sorry, we are closing the request as no information were provided for over a month.
—
IG -
Why dont you guys introduce IP based login to website that the user wishes to secure
IP based login to website that the user wishes to secure
1 voteUpd: Sorry, we are closing the request as no information were provided for over a month.
—
IG -
Trusona NoPassword Login
Create a trusona login extension.
Trusona is leading the #NoPasswords Revolution so you can login to your plesk admin/user accounts without any passwords.
Just point your phone to the dynamic QR code and voila – you are in.1 voteAt the moment we have no plan for Trusona Plesk extension. But you can create it by yourself with help of this documentation – https://docs.plesk.com/en-US/onyx/extensions-guide/plesk-extensions-in-a-nutshell.76331/
—
IG -
Secure Plesk using basic HTTP authorization
Please add feature to secure Plesk using basic HTTP authorization
1 voteUpd: Sorry, we are closing the request as no information was provided for over a month.
—
IG -
Disable permission to manage ModSecurity settings for a customer/reseller
Revoke permission to manage ModSecurity settings via Service Plan for a customer/reseller
1 voteUpd: Sorry, we are closing the request as no information were provided for over a month.
—
IG -
easy htacces
Edit htaccess only once, and use it where needed
OR
Split htacces into 3 sections, then use 'em where needed:
- allow-deny
- bad bots
- other functions (redirect, passwords, etc)1 voteThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
Change the "secure settings preset"
In the "Hosting Settings" menu, if the «Security» sub-menu, there is a link «If you want the provided hosting to be the most secure, apply secure settings preset.»
When we click on "apply secure settings preset" PHP version is changed and some options on the same page are also changed.
Where can we define the PHP version to be selected by this setting ?
We should be allowed to change these settings in the GUI.
Thank you
2 votesThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
add support for ufw firewall extension to iptables
As it is hard to configure iptables, the current solution for setting up firewall rules out of plesk is awkward - understood. But wouldn't it be easy to add support for ubuntus ufw and similar handlers (like fail2ban), iptables forwards packets to? You could simply save and restore the corresponding ufw rules in iptables (as you do with other rules) and add an option to activate ufw (and similar if available on the system) on the firewall setting page. This immediately solves the requests for outside configurable firewall rules as in blocking malicious misbehavin attackers out of a script run…
1 voteThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG
- Don't see your idea?