Feature Suggestions
Please provide here your suggestion for new functionality for Plesk. We encourage you to review and vote for suggestions of others. The top-ranked suggestions are likely to be included in the next versions of Plesk.
Please write in English so that voters from all over the world can read and support your request.
Off-topic posts will be removed from here
137 results found
-
Add blocking shell script to Plesk security power
As a web hosting provider, I would like Plesk to provide a feature for blocking shell scripts, to help me secure my server without requiring me to purchase third-party software.
1 voteUpd: Sorry, we are closing the request as no information were provided for over a month.
—
IG -
google two factor authentication for password protected directories
google two factor authentication for password protected directories
1 voteThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
Temporarily show an inputted password in web-form to check caps-lock and language
It would be great if Plesk allowed the option of being able to see the password. Many sites offer this capability now to ensure the administrator has not typed in the wrong password when logging in
1 voteThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
Custom Blocklist.
Is it possible to add a rule with downloadable html list of bad IP addresses from a central webserver for multiple plesk installations
1 voteThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
Update crucial security tools such as Fail2ban, Rootkit etc.
Hi guys,
I am still trying to figure out why is it that we have a VERY OLD Fail2ban security module for Plesk? This version needs a lot of tweaking and has many bug fixes in the latest updates (currently: 0.10.1 release date 2017/10/12. So may releases, features, bug fixes and optimizations have been released, yet Plesk is still using a very old version. I dont understand how is it that you guys value security, but this simple update isn't implemented, yet you guys have increased the Plesk License cost overall. I dont get it at all. My other issue…
1 voteThank you for your feedback. Unfortunately, this request contains several different suggestions, and it’s not technically possible to properly handle them inside one request.
1. Fail2Ban
Fail2Ban v0.9.x is a stable branch, that’s why we use it now.Currently, Fail2ban v0.10.x is experimental (https://www.fail2ban.org), but you can vote for https://plesk.uservoice.com/forums/184549-feature-suggestions/suggestions/17924536-fail2ban-now-supports-ipv6-please-upgrade and we will consider this functionality in upcoming releases if it will be popular and not experimental.
2. RkHunter v1.4.4
This functionality was added in Plesk Onyx 17.5.3 Update 15. We suggest you to upgrade to Plesk Onyx 17.5.3 Update 15 and check it out (https://docs.plesk.com/release-notes/onyx/change-log/#1753-mu15).— AY
-
Login History
History of logins including date/time information within the dashboard.
1 voteThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
Login / secure Plesk with Touch ID (Macbook) or Fingerprint Software like SecSign
Provide possibility to login to Plesk via some Fingerprint Software or enable the Touch ID (for MacOS) ...
Also SecSign provides TouchID via API and makes it usable for Wordpress, Joomla, Drupal and Typo.... etc.1 voteThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
New ModSecurity vendor (SecRemoteRules)
ModSecurity 2.9.x and newer support SecRemoteRules directive, which allow download rules from remote server.
This kind configuration is not now possible to ModSecurity Vendor list in Plesk GUI.
Syntax: SecRemoteRules [optional crypto] key https://url
Example: SecRemoteRules 12371283813.8712832abd https://rules.malware.expert/download.php?rules=genericWe offer shared webhosting modsecurity rules: https://malware.expert/modsecurity-rules
3 votesThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
Symantec SSL
Symantec SSL interesting feature. I specialy liked this part, "Help me pick the right certificate". But there is a big minus for this extension, there is no way you can see at forehand what you are going to pay at the end. Why don't put the prices beneed the several options and brands?
1 voteThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
control panel access
I have a dynamic ip address, unfortunately I can not use the feature
Please adjust for dynamic IP addresses and an interval (every hour) or a fixed time (always 3AM) where plesk is to search for the current ip. And not only allow ip addresses, but also domain names resp. xyz.dynadress.xyThanks
1 voteThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
1 vote
Thank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
FTP, sFTP and SSH access with console
Add a BackEnd and FrontEnd editor for usage and create FTP, sFTP and SSH access with console integrated like cPanels but on Onyx Plesk
2 votesThank you for your input!
Could you please explain your request in more detail? Do you want to access to (S)FTP/SSH from web-interface?
— AY
Upd: Sorry, we are closing the request as no information were provided for over a month.
-
2 votes
Thank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
Enable subscription system user handle modsecurity
Give system user permissions to handle modsecurity
2 votesThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
Mod_security
Add GUI for mod_security whitelisting in Plesk Onyx.
1 vote -
Add support for pam_shield
I know we have support for fail2ban. But fail2ban works reading the logs. A better tool for protecting the ssh console and others it's to use pam_shield module, with works directly when the "hacker" it's directly trying to guess the password of a system user.
It's configuration it's very easy, only /etc/security/shield.conf file.
It uses less resources to protect the services than fail2ban.
Regards,
2 votesThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
password changing option is missing in hosted control panel ........... web site download option is missing in control panel
password changing option is missing in hosted control panel ........... web site download option is missing in control panel
1 voteThank you for your feedback.
Unfortunately, this request contains several different suggestions, and it’s not technically possible to properly handle them inside one request. Please consider creating separate feature requests for each of the items below:
1. password changing option is missing in hosted control panel
You can do this, please see https://docs.plesk.com/en-US/onyx/customer-guide/customer-account-administration/changing-your-password-and-contact-information.65141/2. web site download option is missing in control panel
You can backups website, please see https://docs.plesk.com/en-US/onyx/customer-guide/backing-up-and-recovering-websites/backing-up-data.65198/— AY
-
Implement client SSL certificates for authentication into mail
There is an option in Outlook, mail.app and other clients "authenticate using certificate". HOwever Plesk does not allow to use this client based method of authentication.
4 votesThank you for your input!
Unfortunately, we have to close your request, because over the years it has not become quite popular for further implementation.
—
IG -
DrWeb (Premium AntiVirus) Global Activate and default active on create
We are using SpamAssassin and DrWeb globally and disabled the feature by service plan for all customers. But at the moment DrWeb has to be enabled for every mailbox manually or by MySQL Command. It would be awesome if this could be configured by Webinterface and on mailbox create.
1 voteAutomatic bulk activation of antispam and antivirus was not implemented because it would have led to a serious drop in performance of the Plesk server in the case of mass mailboxes creation. For example, spamassassin is very demanding of system resources.
Therefore as the possible solution you can use Event Manager for event ‘mailbox creation’ or something else. You can use variables for defining needed domains and mailboxes. More information in Plesk documentation.
—
IG -
security problems
you got some security esuies, its realy annoyng when your construction site become a addidas shop site
1 voteUpd: Sorry, we are closing the request as no information were provided for over a month.
- Don't see your idea?