Add the possibility to protect Plesk panel with Web Application Firewall (ModSecurity)
Plesk should provide a way to secure the Plesk administration panel with the Web Application Firewall (ModSecurity).
Currently, when Plesk is accessed via 8443, Apache is not handling any request. However, when Plesk is accessed via port 443, Nginx is working as a proxy.
This setup should be changed, Apache should work as a proxy to be able to filter the HTTP request with ModSecurity, adding an additional security layer.
5
votes
anonymous
shared this idea
We do not see how this feature could improve Plesk security. All Plesk panel functions are behind a login, and the login can effectively be protected with the existing Fail2Ban jail. Also, this request only received very few votes through many years. We must decline it.
-- PD