Feature Suggestions
Please provide here your suggestion for new functionality for Plesk. We encourage you to review and vote for suggestions of others. The top-ranked suggestions are likely to be included in the next versions of Plesk.
Please write in English so that voters from all over the world can read and support your request.
Off-topic posts will be removed from here
134 results found
-
ProFTPd with ClamAV support (mod_clamav)
Compile ProFTPd daemon with mod_clamav support, that FTP uploaded files can be scanned with malware.
cPanel & DirectAdmin support this:
https://github.com/jbenden/mod_clamav
and External Signatures with ClamAV:
6 votesThank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
— AY
-
Enhanced VPN support
Since VPN connection are more and more common, and mobile devices used to connect to monitor servers, there is a need for an enhancement on the old VPN Add-on on plesk (linux).
Currently the IOS and Android OpenVPN client does not support secret — Static key encryption mode (non-TLS) is not supported.
from https://docs.openvpn.net/docs/openvpn-connect/openvpn-connect-ios-faq.html
Which is the only way to use the Plesk VPN connection because it does not support certificates.
There is a lot of literature on troubles with VPN on mobile, but basically, all of them are due to old style, unsecured way to connect to VPN.Can…
56 votesThank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
AA -
Make default Plesk Firewall rules more strict
Right now "System policy for outgoing traffic" rule is set to allow all outgoing traffic as default which is not secure enough.
Please consider to make default firewall rules for outgoing traffic more secure and allow only Plesk services to send outgoing packets
5 votes -
Add ip manually to fail2ban
It is not possible to add an ip manually to fail2ban trough Plesk interface. Sometimes you detect an offending ip address which you want to ban from your system, before it is detected by recidive rule.
148 votesThank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
ET -
8 votes
Thank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
IG -
Hotlink protection for Linux
A feature to help you configure the hotlink protection with nginx and apache
32 votes -
Implement OSSEC
Implement as an add-on, or possibly through an Extension, the ability to install and configure OSSEC. An Extension GUI which provides simple, limited functionality to configure the most frequently used features of OSSEC would be an awesome addition to Plesk.
23 votesThank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
ET -
Make more Jails for Fail2Ban e.g. mysql error log
see header
please make plesk saver with more helpful Jails for fail2ban
mysql error log
typo3 login fails
joomla login fails
shopware
email
ftp
webmailan any more
27 votes -
Import and export buttons to allow fail2ban Trusted IP or Banned IP Addresses
Button that can import or export the Fail2ban Trusted or Banned IP lists. At the moment you can only add one by one.
8 votes -
Allow Let's Encrypt to validate over 80 or 443 (not just 80)
We're very excited to see Let's Encrypt in Plesk 17, it makes secure sites much, much easier. However, port 80 is not open on a number of our servers for security reasons and it would appear the Plesk coding for the API to Let's Encrypt forces the use of port 80. Let's Encrypt supports validation of domains over 80 OR 443, but Plesk is requiring 80. The only workaround is to open 80 to the world so it can be validated since Let's Encrypt does supply a list of public IP's their traffic could source from.
49 votesThank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.— rk
-
Add ipset in Firewall to increase performance
Please extend the Firewall / Concept to make the use of ipset, because it is generally the fastest solution i found so far. Chains like "f2b-recidive" can also be implemented as ipset list. This will speed up the whole process while adding or removing ips. I dont know if there is a cidr support in ipset...
For example, remove the following chain:
f2b-plesk-postfix tcp -- 0.0.0.0/0 0.0.0.0/0 multiport dports 25,465,587
And extend the firewall with a native DROP on the ports as described below:
DROP tcp -- 0.0.0.0/0 0.0.0.0/0 multiport dports 25,465,587 match-set f2b-plesk-postfix src
And then (or before?) just…
15 votesThank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
ET -
Integration with firewall service on the blocked addresses. https://www.abuseipdb.com/api.html
Allowing you to see information from other participants and automatically deny access to all new locations as they are very much in a day.
AbuseIPDB
making the internet safer, one IP at a time35 votesWe will consider this functionality in upcoming releases if it will be popular. However, in part of integration with 3rd party, probably it will be faster if you create Plesk extension. Please refer to https://docs.plesk.com/en-US/17.0/extensions-guide/what-are-plesk-extensions%3F.76331/ to know how.
Everyone, please continue voting for this feature if you consider it important.
—
ET -
6 votes
Thank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
— AY
-
Description of IP in Firewall Rules to e.g. name the IP 'Office', 'Home', 'IP John'
Description of IP in Firewall Rules to e.g. name the IP 'Office', 'Home', 'IP John'
24 votesThank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.— rk
-
ProFTPd GeoIP blocking
Compile proftpd with "GeoIP"
http://www.proftpd.org/docs/contrib/mod_geoip.htmlThis would allow to block or whitelist countries - even on a per user basis.
We did research on this and most of the foreign FTP attempts are malicious.15 votesThank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.— rk
-
11 votes
Thank you for your input! We will consider functionality to implement ability to set TLS as required for email connections in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
Please note that STARTSSL is a service of StartCom and there are issues with them to stay in CA role http://www.pcworld.com/article/3129725/certificate-policy-violations-force-reform-at-startcom-and-wosign.html so STARTSSL support will not be implemented in Plesk.
—
ET -
Secure default HTTPS settings
Set the default settings so that websites (e.g. Wordpress) created in Plesk have a good score in online scanners (are secure).
One very good scanner is https://observatory.mozilla.org/
This includes some headers to be sent, and secure TLS settings.
Mozilla also offers a guide concerning web server settings: https://wiki.mozilla.org/Security/Server_Side_TLSThe remaining things should be set in Wordpress directly directly by Plesk.
19 votesThank you for your input! We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
— ES
-
Add SMS (text) verification as optional 2FA
sms verifying on login
9 votesThis is a valid request. Please keep voting on this if you believe it is an important feature.
-- PD
-
Set right ciphers by default on Windows
There is a documentation how to do it manually: https://docs.plesk.com/en-US/onyx/administrator-guide/plesk-administration/securing-plesk/pci-dss-compliance/tune-plesk-to-meet-pci-dss-on-windows.78901/
but there is no tool to do it automatically (and by default during the installation).
4 votesAFAIU, the request is about right ciphers for SSL configuration. We have a documentation how to do it manually: https://docs.plesk.com/en-US/onyx/administrator-guide/plesk-administration/securing-plesk/pci-dss-compliance/tune-plesk-to-meet-pci-dss-on-windows.78901/ but have no tool to do it automatically, so, this is a valid request, we’ll look into it.
There is no ETA at the moment, but we would really appreciate you voting for this request so that we can accurately assess its popularity relative to other features. Thanks in advance!
— rk
-
Make PLESK compatible with "Microsoft Security Essential" for Windows servers
Microsoft Security Essential is a free and powerful security software for windows server. I recommend make PLESK compatible with this software to have a powerful and simple security solution.
7 votesThank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
— SU
- Don't see your idea?