Skip to content

Feature Suggestions

← Your Ideas for Plesk

Please provide here your suggestion for new functionality for Plesk. We encourage you to review and vote for suggestions of others. The top-ranked suggestions are likely to be included in the next versions of Plesk.

Please write in English so that voters from all over the world can read and support your request.

For technical assistance, contact Plesk support
For questions, bug reports, discussions and free assistance, check our Forum and Facebook page
For additional information, see Documentation, Knowledge Base and Blog
Follow us on Twitter for more news on Plesk development

Off-topic posts will be removed from here

I suggest you...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback

30 results found

  1. Passkey for Login

    As passkey is the strongest MFA, it should be implemented as an extension or directly

    3 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Admin →

  2. Add the ability to require 2FA for accounts.

    Many sites and online providers today require the use of 2FA to secure accounts. It would be great if Plesk could require the same thing (at least for administrative accounts). I think this could really help increase the security posture of the software.

    As it stands now, Google Auth is optional, and a user has the ability to enable/disable it at will, which isn't ideal.

    According to this thread, there are currently areas where 2FA wouldn't currently be possible, but all of these issues have already been solved by other companies. I have no doubt that Plesk could do it…

    13 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    3 comments  ·  Security  ·  Admin →
    completed  ·  AdminPlesk Staff (Community Manager, Plesk International GmbH) responded

    We are glad to announce the new Multi-Factor Authentication (MFA) extension (https://www.plesk.com/extensions/mfa/), coming to Plesk Obsidian 18.0.61 and later. The new extension is meant to offer seamless 2FA authentication to all Plesk users, and comes with one of the following benefits:

    If you have any feedback on the implementation of this feature, please let us know on the forum: https://talk.plesk.com/.


    — AY

  3. SMTP Smuggling - patch postfix 3.7.9-0+deb12u1 Update to postfix 3.8.3

    37C3 - SMTP Smuggling – Spoofing E-Mails Worldwide

    postfix is vulnerable

    2 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Admin →

  4. Track who changed the Plesk Administrator password

    The idea is to know who and when changed the Plesk admin password. If it's from CLI, what user (usually root), or if it's on GUI, what IP.
    That should be noted in the action log.
    Right now it isn't.

    2 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Admin →

  5. Upgrade ModSecurity IIS to 2.9.4

    Currently Plesk installs ModSecurity IIS 2.9.3, which was released on December 5 2018. On June 11 2021, ModSecurity 2.9.4 was released, it's important to stay up to date with software version releases.

    https://github.com/SpiderLabs/ModSecurity/releases/tag/v2.9.4

    Please note:

    • Windows installer no longer includes OWASP CRS.
    3 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Admin →

  6. Issue Let's Encrypt SSL certificate for mail server when the "A" DNS record for domain is pointing to another server

    This feature is required for users with the configuration when on the Plesk only mail server for domain is used.

    "A" DNS record for mail.example.com is pointing to Plesk server, when when "A" record for example.com is pointing to another server.

    187 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    64 comments  ·  Security  ·  Admin →

  7. Mod Security v3.x.x (aka libmodsecurity) for NGINX and Apache

    Hi,

    Please consider implementing Mod Security v3.x.x (aka libmodsecurity) for NGINX and Apache in the next Plesk update.

    At the moment any Plesk user if he wants to use Mod Security (official version supported by Plesk) is forced to use it as a web server:

    • Apache

    or

    • Apache + NGINX

    Any Plesk user who wants to use only NGINX as a web server and without using Apache at the moment cannot use Mod Security because Plesk does not currently support it for NGINX exclusively web servers.

    Here are some of the advantages of Mod Security v3.x.x (aka libmodsecurity and these…

    15 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    4 comments  ·  Security  ·  Admin →

  8. Provide ModSecurity 3 modules for supported operating systems

    ModSecurity 3.0 was released about a year and a half ago, and the 2.x branch support seems to decline.

    In addition to that there are some features of ModSecurity 3.x, that would be nice to have:
    * Proper support for webservers other than Apache, without having to resort to an Apache-like wrapper module running within other web servers
    * Better performance due to the architecture rewrite
    * GeoIP2 databases support out-of-box (MaxMind no longer provides new Legacy-GeoIP databases, so this would be very good to have)

    Considering that newer *nix OS (Debian 10, CentOS 7 through EPEL) ship libmodsecurity-3, I…

    11 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    3 comments  ·  Security  ·  Admin →

  9. Plesk interface's web server support for TLS 1.3

    Add support of TLS 1.3 to Plesk interface's web server. TLS 1.3. improves security.

    131 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    12 comments  ·  Security  ·  Admin →

  10. Secure MySQL connections (from Plesk to externally hosted databases)

    Secure MySQL connections via SSL/TLS: it is only a number of small changes in the code and a huge step in decreasing the attack surface.

    106 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    24 comments  ·  Security  ·  Admin →
    completed  ·  AdminPlesk Staff (Community Manager, Plesk International GmbH) responded

    This functionality was added in Plesk 18.0.52 ( https://docs.plesk.com/release-notes/obsidian/change-log/#plesk-18052 ). We suggest you to update to Plesk 18.0.52 and check it out.

    You can find additional information in https://docs.plesk.com/current/administrator-guide/database-servers/securing-connections-to-remote-mysql-database-servers.80017/. Let us know if you have any feedback - visit our forum at http://talk.plesk.com.

    — AY

  11. Enable Mail DKIM signing by default

    I suggest to add an option to Plesk Service Plans to enable DKIM signing when creating a new hosting package.

    Right now we have to manually enable DKIM signing for every new hosting account after creation.

    This should be inside a Service Plan under tab: Mail

    14 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    1 comment  ·  Security  ·  Admin →

  12. Fail2Ban rules block IP's permanently

    Ip's not only temporary ban but directly permanent

    1 vote

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Security  ·  Admin →
    completed  ·  AdminPlesk Staff (Community Manager, Plesk International GmbH) responded

    This functionality was added in Plesk 18.0.63 (https://docs.plesk.com/release-notes/obsidian/change-log/#plesk-18063). We suggest you to update to Plesk 18.0.63 and check it out.

    If you have any feedback on the implementation of this feature, please let us know on the forum: https://talk.plesk.com/forums/plesk-obsidian-for-linux.748/

    Thank you!


    — AY

  13. fail2ban now supports IPv6 - please upgrade

    At some time you closed the request "fail2ban for IPv6" stating that fail2ban does not support it. That was no doubt correct at the time - but now it does, see https://github.com/fail2ban/fail2ban/tree/0.10

    I'm seeing a lot of warnings in the fail2ban log on my dual stack servers, like this:

    66:1000:b01c:10ab:0:1: [Errno -9] Address family for hostname not supported

    and my log checking software is complaining to me about the overly long fail2ban log.

    See also: https://ctrl.blog/entry/fail2ban-ipv6

    Thanks! Tim.

    174 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    42 comments  ·  Security  ·  Admin →

  14. Lets Encrypt Certificate for Mailserver and Webmail.

    As descriebed earlier

    431 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    46 comments  ·  Security  ·  Admin →

  15. Possibility to force SSL on Webmail

    Some users don't know why they should enter https:// if they have to access webmail, they use http://
    http is insecure. Easpecially in combination with unencrypted wireless connections.
    Actually you have to go into the plesk code to set this function somewhere. Why does plesk provide the webmail-login insecure by default?
    If you have setup an Domain Certificate, at least then plesk should offer the option to force ssl on accessing webmail.mydomain.??

    135 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    13 comments  ·  Security  ·  Admin →
    completed  ·  AdminPlesk Staff (Community Manager, Plesk International GmbH) responded

    Hi!

    The functionality is now available:
    1. Linux: in the SSL It! Plesk Extension: https://ext.plesk.com/packages/3c4117f6-c05c-4d3b-9173-60f10096a9c4-sslit
    2. Windows: in Plesk Obsidian (by default if SSL is turned on for the domain)

    How to find it in SSL It! Extension:
    1. install SSL It! Extension (it’s available for Plesk 17.8+)
    2. go to > SSL/TLS Certificates
    3. if there is no SSL Certificate installed on the domain – issue one (using, for example, free Let’s Encrypt SSL Certificate)
    4. if an SSL Certificate is installed on the domain, there is a switcher “HTTPHTTPS redirect”, this switcher has an option “Webmail”, turn it on.
    5. Additionally, you can setup HSTS (for webmail too)
    6. Voila!

    We would appreciate hearing your feedback on the implementation of this functionality. Thanks in advance!

    — rk

  16. make DANE for email avaible

    295 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    110 comments  ·  Security  ·  Admin →
    completed  ·  AdminPlesk Staff (Community Manager, Plesk International GmbH) responded

    In  Plesk 18.0.54, published July 18th, 2023, Plesk has added the ability  to add Transport Layer Security Authentication (TLSA) DNS records to  domains’ DNS zones in Plesk. Such records are most commonly used to  implement DNS-based Authentication of Named Entities (DANE). With this  update the most popular DANE scenario is covered in Plesk for Linux.

    Now, with Plesk 18.0.56, published October 10th, 2023, the SSL It! extension supports DANE that ensures reliable encryption for email transport. When a Let’s Encrypt certificate is being issued, TLSA DNS records of  email services will now automatically contain information about the  certificate.

    Please let us know your thoughts on this feature or whether you require additional functions.

    -- PD

  17. Add ip manually to fail2ban

    It is not possible to add an ip manually to fail2ban trough Plesk interface. Sometimes you detect an offending ip address which you want to ban from your system, before it is detected by recidive rule.

    151 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    22 comments  ·  Security  ·  Admin →
    completed  ·  AdminPlesk Staff (Community Manager, Plesk International GmbH) responded

    This functionality was added in Plesk 18.0.63 (https://docs.plesk.com/release-notes/obsidian/change-log/#plesk-18063). We suggest you to update to Plesk 18.0.63 and check it out.

    If you have any feedback on the implementation of this feature, please let us know on the forum: https://talk.plesk.com/forums/plesk-obsidian-for-linux.748/

    Thank you!


    — AY

  18. Compile nginx with mod_security

    Basically, the title says it all.
    It can be done manually but then we wont be able to configure mod_security (rules, detection level, fail2ban) in Plesk.

    Please include mod_security in nginx.

    41 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    5 comments  ·  Security  ·  Admin →

  19. to do an upgrade of roundcube for plesk 17 to version 1.2.3

    This week a critical security issue for roundcube has been reported: https://blog.ripstech.com/2016/roundcube-command-execution-via-email/
    This is present in all roundcube versions below 1.2.3
    Thank you very much.

    11 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    3 comments  ·  Security  ·  Admin →
    completed  ·  AdminPlesk Staff (Community Manager, Plesk International GmbH) responded

    The Roundcube was updated in Plesk Onyx 17.8.11. We suggest you to upgrade to Plesk Onyx 17.8.11 MU1 and check it out (https://docs.plesk.com/release-notes/onyx/change-log/#contents-17811-mu1).

    The Roundcube also was updated in Plesk Onyx 17.5.3 MU29 (https://docs.plesk.com/release-notes/onyx/change-log/#contents-1753-mu29) and Plesk Onyx 17.0.17 MU40 (https://docs.plesk.com/release-notes/onyx/change-log/#contents-17017-mu40).

    Let us know if you have any feedback

    — AY

  20. Add subdomains in one Let's Encrypt certificate

    Add subdomains to one Let's Encrypt certificate.

    Why?

    Because Let's Encrypt has currently limit 5 certificates / 7 days on one domain.

    Example: in one Let's Encrypt cerftificate will be this DNS names: example.com; www.example.com; sub1.example.com; sub2.example.com

    I think it will be helpful if you can simply add your own domains and subdomains in Let's Encrypt Certificate.

    Thanks!

    248 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    33 comments  ·  Security  ·  Admin →
← Previous 1
  • Don't see your idea?

Feature Suggestions

Categories

Feedback and Knowledge Base

(thinking…)