Block users from re-using old password, especially for mailboxes
System could remember a certain number of old passwords (admin configurable) and prevent user from selecting these again.
Have had more cases than I'd like to admit where customer re-used a previously compromised password. If Plesk remembered the last x passwords used by that account it would help.
Also adding ability so Plesk checks a server configurable password blacklist before accepting customers new selection would be appreciated.
27
votes
![](https://secure.gravatar.com/avatar/8792e339bdf34c2676b17cb9b7377da8?size=40&default=https%3A%2F%2Fassets.uvcdn.com%2Fpkg%2Fadmin%2Ficons%2Fuser_70-6bcf9e08938533adb9bac95c3e487cb2a6d4a32f890ca6fdc82e3072e0ea0368.png)
-
Plesk Tech Support commented
Forbid specifying an already used password as new when resetting it.