Feature Suggestions
Please provide here your suggestion for new functionality for Plesk. We encourage you to review and vote for suggestions of others. The top-ranked suggestions are likely to be included in the next versions of Plesk.
Please write in English so that voters from all over the world can read and support your request.
Off-topic posts will be removed from here
1651 results found
-
Administration: list domains, using the installed SSL certificates
If I want to remove on "Tools & Settings > SSL Certificates" expired certificates, I can not delete it when it is still used by a domain. I can not see which subscriptions use the expired SSL certificate. So I have to click through all domains individually and look in the hosting settings. The assigning of a standard certificate via "Tools & Settings > IP Address" does not work for all domains.
23 votesThank you for your input! We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
ET -
Set right ciphers by default on Windows
There is a documentation how to do it manually: https://docs.plesk.com/en-US/onyx/administrator-guide/plesk-administration/securing-plesk/pci-dss-compliance/tune-plesk-to-meet-pci-dss-on-windows.78901/
but there is no tool to do it automatically (and by default during the installation).
4 votesAFAIU, the request is about right ciphers for SSL configuration. We have a documentation how to do it manually: https://docs.plesk.com/en-US/onyx/administrator-guide/plesk-administration/securing-plesk/pci-dss-compliance/tune-plesk-to-meet-pci-dss-on-windows.78901/ but have no tool to do it automatically, so, this is a valid request, we’ll look into it.
There is no ETA at the moment, but we would really appreciate you voting for this request so that we can accurately assess its popularity relative to other features. Thanks in advance!
— rk
-
sort, archive or filter (not spam) email on server directly when received
I'm using different (imap) clients on different devices to read emails. Many of them can be sorted / filtered / archived in specific subfolders by subject, sender or similar.
Most - but not all - clients can be configured to do so - but this means also to reconfigure several clients on rule changes.So i'd like to suggest the possibility to handle emails on receiving on the server.
E.g:
- if sender ends with "domain.foo" or subject contains "project bar" then move to folder bar and mark as read
- if sender is "foo@domain.bar" forward to "…6 votesThank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.— rk
-
Make PLESK compatible with "Microsoft Security Essential" for Windows servers
Microsoft Security Essential is a free and powerful security software for windows server. I recommend make PLESK compatible with this software to have a powerful and simple security solution.
8 votesThank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
— SU -
Add an option to lock/freeze a website
Hi,
some Hosts (e.g. Strato) use a functionality to completely lock a site. This is very useful for customers that dont want to do any changes to their website anymore but use an old version of a cms and forget/dont want to upgrade.
Of course there should be a warning about the consequences like non working file caching etc.
11 votes -
Add a warning before application installation
Actualy to instal an application, the user just clik on "install" bouton in application list.
- No warning
- No options
Plesk directly install the application in httpdocs....
Good but if user already got a website in httpdocs... this website is définityvely break.
So i suggest to a a warning or installation options when user clik on install button
Best regard
13 votesThank you for your input! We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
— ES
-
Don't send Auto-Reply when message detected as spam
Don't send Auto-Reply when message detected as spam
When a mail account has Auto-Reply and Spamassassin enabled, the Auto-Reply function should read the x-spam header and, if the incoming message was found to be spam, the automatic response should not be sent.
At the moment I often see Automatic replies stuck in the outgoing mail queue because they're being sent to spammers. This is silly!
60 votesThank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-
Improvements for Wordpress Toolkit
Disable the built-in code editor adding define('DISALLOWCODEEDIT', true); in wp-config.php
Anonymize login error message because it actually tells you what is wrong (the username or the password), hooking into loginerrors with addfilter('login_errors, function() { return 'Login error'; });
Apply permission 400 (-rw-------) to wp-config.php
Change login URL avoiding the standard /wp-login.php or /wp-admin/ (pre)installing plugin "Lockdown WP Admin" or applying the same idea.
Block brute force (pre)installing plugin "Limit Login Attempts" or applying the same idea.
Mentioned plugins may be installed by default when Wordpress is installed through the APS, and may be added as an…
49 votesThese suggestions look quite reasonable. We encourage other WPT users to join and let us know what other security improvements you’d like us to implement in WPT.
—AK
-
Prevent users from installing SSL certificates
As reseller (or administrator) we should be able to prevent customers installing a selfsigned or 3rd party bought SSL certificate themselves.
It's not possible to disable the 'SSL support' check box within the
'Service Plans' menu section 'Hosting Parameters' because as Administrator we install customer SSL certificates by API. Disabling 'SSL support' will also disable installing SSL certificates by API.13 votes -
Support Wordpress multi-site network in WP toolkit
It's a useful for me, to manage all my sites in one wp instance, using 3rd level domains, like mydomain.com, forum.mydomain.com, shop.mydomain.com, catalog.mydomain.com, etc.
31 votesHi Jeremy,
WP Toolkit supports WordPress multi-site if you enable the multi-site feature manually. However, it seems to make sense for us to provide an option of creating a multi-site WP instance upon the installation. Let us know if this will help you out.
—AK
-
Enable fetchmail feature
I would like to enable and configure fetchmail on mailbox level. Main reason is easy migration for customers to new hosting providers including moving mails from existing mail servers.
"fetchmail" is already installed together with PLESK, needs just to get properly configured.
48 votesThank you for your input! We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
— ES
-
Wordpress install
Allow reseller/customer to install wordpress (and maybe apps) via XML-API. (without APS / admin permission).
9 votesThank you for your input! We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
— ES
-
Check details about POP3/IMAP/SMTP traffic for single email
Sometimes is useful check the details about POP3/IMAP/SMTP traffic for a single email, to look and find problems.
70 votesThank you for your input! We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.—
IG -
Integrate awesome Security from "Sophos Anti-Virus for Linux Free Edition"
There should be a Scanner for Malware by default.
"Wordpress" already has a super Tool but what about the the other Apps on Server ...11 votes -
Windows - Cron Job Wizard
Plesk now include cron job format , but with inputbox.
Please something like WYSIWYG
Sample: http://crontab-generator.org/
9 votesThank you for your input! We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
— ES
-
Disable Apache & Nginx access logs (and error maybe) through Plesk panel.
Access logs are not useful in most cases and we should have a feature to disable them through Panel not go and edit vhosts.
28 votesThank you for your input! We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—ET -
Implement DNS Whitelists
Plesk does not currently support DNS Whitelists like it does RBLs, such as the list at dnswl.org. There needs to be a way to add this from the Plesk UI.
The Postfix main.cf config directive is permitdnswlclient.
Whenever a Plesk upgrade happens, the setting, if added is removed and needs to be added back manually.16 votesThank you for your input! We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
IG -
Support HPKP
I'd like to see HPKP integrated into the SSL certificate management of Plesk. This would allow, in combination with standard Nginx/Apache config, for a strongly recommended and worthwhile security element to be added to hosted sites.
Testing tool
https://securityheaders.ioMore info
https://scotthelme.co.uk/hpkp-http-public-key-pinning/57 votes -
Allow domain forwarding for every domain in a subscription, including the subscription domain
Currently it is not possible to make domain-forwarding for every Domain in an Abonnement. You have to select website-Hosting for the first domain to enable Forwarding for other Domains.
41 votesMany providers set a placeholder domain as the main subscription domain so that all domains actually "in use" in a subscription can be freely configured. Please consider this option as it will immediately solve the issue for you.
Besides that, this is a valid request. Everyone, please keep voting for it if you believe it is important.
-- PD
-
Hide/Show Database Servers for clients
Administrator should have the possibility to make Database Servers hidden from Clients.
My scenario is:
1 or more servers that are intended for Web only (Nginx+Apache+PHP/Ruby/Python)
2 or more servers for Databases (MySQL / could be PostgreSQL also)In the Database Servers, the administrators should be able to select visible servers for clients.
Why? Ideal is to hide the localhost server when only external are to be used. Some DB servers may get to full and you want the clients to select only from lower used ones. You have demands from different clients to support older versions of MySQL for…
39 votesThank you for your input. We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.—
IG
- Don't see your idea?