Feature Suggestions
Please provide here your suggestion for new functionality for Plesk. We encourage you to review and vote for suggestions of others. The top-ranked suggestions are likely to be included in the next versions of Plesk.
Please write in English so that voters from all over the world can read and support your request.
Off-topic posts will be removed from here
2103 results found
-
Apply mail filters to existing emails in PPE
At this time, Plesk Premium Email filters use sieve filters, which by default are only applied to new emails.
An option should exist such as a Run Now button which applies the filter to existing emails like what can be done within Outlook, as can be done through CLI with this method:
https://shoreless.limited/en/knowledge-base/kb20224071315-reapply-dovecot-sieve-filters2 votes -
use this external SMTP server to send watchdog emails
Provide the ability to use this external SMTP server to send watchdog emails.
2 votes -
Manage DNS records type stnc with Cloudflare on domain level
currently, there's an option to select DNS record types for syncing with Cloudflare only on server level in panel.ini:
[ext-cloudflaredns]
defaultSyncableDnsRecordTypesAdd an option to do the same on domain/subdomain level.
2 votes -
Ability to add HINFO dns record in Plesk
Please add ability to set HINFO dns record in Plesk (RFC 1033).
2 votes -
Fail2ban does not block failed login attempts to Plesk Premium Email webmail.
Fail2ban does not block failed login attempts to Plesk Premium Email webmail.
Plain Roundcube is blocked by jail plesk-roundcube after failing all attempts to log in.
If the webmail is switched to Plesk Premium Email, the jail plesk-roundcube does not block failed attempts.
As a workaround create the following filter:
cat /etc/fail2ban/filter.d/kolab-webmail.conf
[Definition]
failregex = ^[\d{4}-[A-Za-z]{3}-\d{2} \d{2}:\d{2}:\d{2} +\d{4}]: <[^>]+> Failed login for .* from <HOST> in session .*ignoreregex =
Also add the jail into /etc/fail2ban/jail.d/plesk.conf:
[kolab-webmail]
enabled = true
filter = kolab-webmail
port = http,https
logpath = /var/log/roundcubemail/userlogins.log
maxretry = 1
findtime = 600
bantime = 3600
backend =…2 votes -
Create Passenger Performance Booster tool to automatically change performance parameters
A possible extension tool like Performance Booster for Passenger would be best fit to automatically update the performance settings of Passenger, instead of manually updating settings.
2 votes -
Restricted ssh user for additional administrators
When logging to Plesk with an additional administrator, with restricted mode enabled, you would be able to login through SSH Terminal* however wouldn't be able change the password*
Drop into a user with limited access/shell.2 votes -
Independent Bandwidth and Storage Measurement
Implement a built-in method to measure bandwidth and storage utilization in Plesk without relying on third-party analytics modules like Webalizer or AWStats.
This feature would optimize performance by reducing CPU and IOPS usage, allowing users to disable these optional modules while still accurately tracking pure traffic (bandwidth) and storage metrics directly within Plesk.
2 votes -
Add CLI Support in WP Toolkit to Apply Security Measures (e.g., disable XML-RPC)
Currently, WordPress Toolkit in Plesk does not support applying security measures (such as blocking access to xmlrpc.php) via CLI.
This limits automation and scalability, especially for hosting providers managing multiple WordPress installations.
Please consider adding CLI options to apply specific security measures—similar to what’s available in the UI and API—for improved scripting and bulk management capabilities.
2 votes -
Create a tool to anonymize logs before it rotated using a cronjob
Create a tool to anonymize logs before it rotated using a cronjob. It still have time to be processed by fail2ban and modsecurity, but still GDPR compliant.
2 votes -
Unable to select “All” domains in Plesk: Option missing from dropdown
In Plesk, the "All" option for selecting domains on the Domains page is hidden when the number of domains exceeds 500.
While this improves performance, some administrators require the ability to select and print all domains and aliases.
It would be helpful to make this behavior configurable — e.g., via panel.ini or a toggle — for experienced admins on high-performance servers.2 votes -
Limit site bots instead of blocking
Bots blocking negatively affects sites SEO.
Need ability to limits bots instead of blocking2 votes -
Scheduled Plesk repair runs with admin email notification in case of errors
schedule plesk repair so it runs at specific times and notify admin of any errors
2 votesThank you for your input! We will consider this functionality in upcoming releases if it becomes popular.
Everyone, please continue voting for this feature if you consider it important.
-- SH
-
Implement Ubuntu 22 to 24 upgrade script
Implement Ubuntu 22 to 24 upgrade script
2 votes -
Introduce a built-in CLI tool (e.g. plesk bin monitoring) that allows administrators to monitor and report memory limit breaches
Introduce a built-in CLI tool (e.g. plesk bin monitoring) that allows administrators to monitor and report memory limit breaches across multiple domains or subscriptions.
The goal is to provide a fully CLI-based method for identifying which domains have exceeded memory limits — particularly in environments where GUI-based tools like Resource Controller (ResCtrl) are disabled, or when automated monitoring scripts are needed.
2 votes -
MFA extension does not generate security codes
Most accounts with MFA have the option of generating emergency one-time codes to ensure continuity of the account. Currently, If one user loses its MFA device, the extension has to be reinstalled, which will cause all users having to reset their tokens,
2 votesThis is a valid request, so we'll look into it. There is no ETA at the moment, but we would really appreciate you voting for this request so that we can accurately assess its popularity relative to other features. Thanks in advance!
In the meantime, if a particular user loses access to their MFA device, you can deactivate MFA only for that particular user by:
- Logging into Plesk panel as the admin user
- Navigating to Extensions > Multi-Factor Authentication (MFA) > Accounts tab
- Clicking on the Minus icon next to the corresponding user.
It is not necessary to completely reset MFA and affect all users on the server.
-- SH
-
Enable dynamic IP restriction in IIS for newly created domains
Dynamic IP restriction in IIS is useful to restrict IPs to certain connection rate limits, for example during DDoS attacks. Enabling the feature on newly created domains could be useful.
2 votes -
Disable SSH terminal for additaionl subscription user
In case, if SSH access is enabled in Plesk > Domains > example.com > Hosting & DNS > Hosting, all subscription's additional users who have access to Plesk can use the SSH terminal.
Therefore, it would be good to have the possibility to disable/restrict the use of the SSH terminal for specific subscription additional users.2 votes -
Dovecot replication
Dovecot replication would be nice to be available via the Plesk panel
2 votesThank you for your input! We will consider this functionality in upcoming releases if it becomes popular.
Everyone, please continue voting for this feature if you consider it important.
--SH
-
Adjust the Website Log Checker to not show errors related to blocked xmlrpc.php requests by ModSecurity
Currently, Website Log Checker flags rejectred access to xmlrpc.php as issues of "Modsecurity: access denied with access code 403" kinds of errors. Additionally, the requests to xmlrpc.php is being blocked by WP Toolkit security measure "restrict access to xmlrpc.php"
ModSecurity protects website by detecting and blocking dangerous requests. If ModSecurity rules are disabled, the extra layer of protection is lost.
Relying only on WP Toolkit to block access is risky. If I forget to set it up, my site could be left vulnerable. ModSecurity is reliable, and I woouldn’t remove it just to clean up logs.
My Suggestion: Adjust the…
2 votes
- Don't see your idea?