Feature Suggestions
Please provide here your suggestion for new functionality for Plesk. We encourage you to review and vote for suggestions of others. The top-ranked suggestions are likely to be included in the next versions of Plesk.
Please write in English so that voters from all over the world can read and support your request.
Off-topic posts will be removed from here
37 results found
-
CLI for Security Advisor
Plesk now has the wonderful Security Advisor feature. It desperately need a CLI interface to automate securing websites on multiple servers, especially in the light of incoming changes to Chrome and Firefox, and Google search results requiring SSL.
1 votePlease use
plesk ext advisor —help
Thanks.
—
IG -
Easily manage ssh authorized keys per domain
Allow adding ssh keys to the "Web Hosting Access" page of a domain, so that I can easily share ssh access to a domain.
1 votePlease use SSH keys manager extension https://ext.plesk.com/packages/2f00d082-7349-4d0b-bfd4-b4c624955806-ssh-keys
—
IG -
nginx session cache
For a better SSLlabs rating add sslsessioncache shared:sslsessioncache:10m;
1 voteYou can add this setting in Additional nginx directives for your site.
—
IG -
You make it simpler for SSL to be installed. Also provide instructions in detail how to add a VPN and dedicated IP
Security and SSL are a topic that Google is stressing on.
It should be simple to implement SSL
1 voteAt the moment you can easily protect your site, webmail with SSL certificate using Plesk Let’s Encrypt extension.
Plesk VPN extension documentation is here – https://docs.plesk.com/en-US/12.5/deployment-guide/appendix-g-configuring-additional-plesk-components-linux/vpn-component.70444/
About using dedicated IP addresses in Plesk you can read here – https://docs.plesk.com/en-US/onyx/administrator-guide/server-administration/ip-addresses-management.59410/—
IG -
Update for rkhunter
An update for rkhunter would be very nice =)
1 voteRkhunter was updated to version 1.4.4 in Plesk Onyx 17.8 Preview 4 https://docs.plesk.com/release-notes/onyx/change-log/#contents-178-preview4
—
IG -
SpamAssassin Global Configuration Bayes not working by default
If SpamAssasin globally enabled the Bayes Filter is not working by default anymore. The global bayes database has to created manually. Also the "bayes_path" have to be configured in the configuration file. This could be automated. Also a cronjob which executing the sa-learn command every day would be great. The sa-learn command supports the star operator which makes it really easy to scan all mailboxes in one command.
1 voteWe have already /etc/cron.daily/60sa-update sa-learn cronjob enabled by default.
According to the SpamAssassin documentation – http://spamassassin.apache.org/full/3.0.x/dist/doc/Mail_SpamAssassin_Conf.html , the Bayes system is not activated until a certain number of ham (non-spam) and spam email messages has been learned.
The default value is 200 of each ham and spam messages.It means that SpamAssassin begins to filter mails after 200 spam and 200 none-spam emails has been learned.This statistics is needed to distinguish spam mails.
This default value can be changed in /etc/mail/spamassassin/local.cf by using the following SpamAssassin options:
bayes_min_ham_num 100
bayes_min_spam_num 100
—
IG -
What holds you from a brute force protection panel to take in plask
What holds you from a brute force protection panel to take in plask
1 voteIncluded in Plesk Mod Security – https://docs.plesk.com/en-US/onyx/administrator-guide/server-administration/web-application-firewall-modsecurity.73383/, fail2ban – https://docs.plesk.com/en-US/onyx/administrator-guide/server-administration/protection-against-brute-force-attacks-fail2ban.73381/ will help you with protection from brute force attack.
—
IG -
Ability to run executables from scheduled task
Would be nice if I could run an executable from a scheduled task in the windows environment. I have a need to run scheduled queries/reports against my database for reporting purposes.
1 voteHello Andrew,
From our perspective you already can run executable on Windows
Checkout this screenshot
http://imgur.com/a/STu5G -
Multi-Providers Autentic
Hello, an idea, which incidentally is now a problem for me:
The computers on my network work with simultaneous providers a load balance that makes the function to use all the speed in the event of downloads and navigation that allows multiple packages.When we are sailing in a single package, it automatically chooses the provider less loaded traffic.
It turns out that often to navigate from one menu to another, the router chooses another provider and have to re-authenticate with username and password.
There are times days when I have to log 15 consecutive times because I switch from…
1 voteUnder Tools&Settings →Active Plesk Sessions→Session Settings you can enable option “Allow IP address changes during one session” and setup “Session Idle time”. I suppose that it is what you want.
—
IG -
Send Mail if IP is jailed (Fail2ban)
make an option to send a status email if a ip is banned or jailed.
1 voteYou can find this information in http://docs.plesk.com/en-US/12.5/administrator-guide/server-administration/protection-against-brute-force-attacks-fail2ban/fail2ban-jails-management.73382/ . Let us know if it doesn’t help
— SU
-
Bug Bounty Programm for Bugs and Critical Security Issues
Bug Bounty Programm for Bugs and Critical Security Issues
1 voteWe do have a bounty program registered at http://www.vulnerability-lab.com/list-of-bug-bounty-programs.php
You can also email at security@plesk.com;
Let us know if there will be any problem with submitting a report
Per requester’s comment we are closing this as already done.
—AK
-
Exploit Scanner
I suggest you to integrate Plesk with an exploit scanner tool, just like cPanel does with http://configserver.com/cp/cxs.html
This kind of tools help hosting companies in a big degree, saving time and efforts on exploits detection and removal.
1 voteIf someone wants to integrate another exploit scanning tool with Plesk, they are free to use Plesk SDK. We can publish the resulting extension in our the extension catalog (ext.plesk.com).
Since Plesk already has a Watchdog extension with built-in rkhunter, we’re closing this request as already done.
—AK
-
"ASP.NET Trust Level" only controlled by the Administrator
Hi,
We have Shared Windows Hosting servers. Default trust level is Medium and Plesk not allowing will change by customer. Good. But!
Our some customers want use the "Full Trust" in their project and I will want give this level to their.
Our suggestion; Medium Trust Level (or any) could be used by default and our customers can not their Trust Level. But we can change the Trust Level of the domain we want.
I hope.
Best regards
We
1 voteCustomers can change trust level for each their site in case the “Allow to override the CAS trust level for websites” option is switched on by the administrator in Tools & Settings > ASP.NET Settings.
-
IG -
can not create domain specific user if i have multi hosing plan
I have multi hosting plan. I want to create domain specific user but i am not able to create. there should be option in permission.
1 votePlesk allows to create additional panel users which can be restricted to one subscription. You can find this information in http://download1.parallels.com/Plesk/PP12/12.5/Doc/en-US/online/plesk-customer-guide/69329.htm#. Let us know if it doesn’t help
- SU
-
1 vote
You can use Parallels Premium antivirus component to check mails. Lets us know if it doesn’t help
-
The History of Changes should be updated when rolling out updates. Panel 11.5 MU#47 is not documented for days now.
The History of Changes should be updated when rolling out updates. Panel 11.5 MU#47 is not documented for days now.
1 voteChangeLog always updated and can be found here https://docs.plesk.com/release-notes/onyx/change-log/
—
IG -
0 votes
- Don't see your idea?