Hello,

is better if such as "wordpress toolkit" you implement this software in plesk https://www.rfxn.com/projects/linux-malware-detect/ + ClamAV (is more faster the maildect search).

With this way, anyone can scan our website from malware. And after scan, the user need to have an notify via email or directly into plesk. This inscrease the security of website and also increase the plesk security.

I use it somethimes for scan all website into our web hosting, and I found it very usefull for prevent serius problem of botnet, hacked website etc.

I hope that you can consider to implement this function.

Regards

Add description/comment field to trusted ip address on fail2ban

The new security option for plesk 12 is Fail2Ban, but it is only for Linux version.

There is an opensorce for windows.

http://www.digitalruby.com/securing-...icated-server/

I suggest to Parallels Team include this.

It is not possible to add an ip manually to fail2ban trough Plesk interface. Sometimes you detect an offending ip address which you want to ban from your system, before it is detected by recidive rule.

Actually it's possible to show deferred messages headers in : Tools and settings > mail server settings > mail queue

It would be very useful if it's possible to show the reason why the message is deffered or stuck in the queue (/var/spool/postfix/defer).

We have a setup where webmail.example.com and example.com point to another server than our Plesk instance. Because of this we can't enable Let's Encrypt on Webmail since the CSR contains webmail.example.com and example.com.
So I hope you consider adding an option to only create webmail.example.com (without SAN example.com)

The DMARC support in Plesk Onyx 17.5.3 ist incomplete. If an incoming email is rejected due to a DMARC fail there is no mailer daemon generated to inform the sender of this email.

Please add this important feature to DMARC support. Otherwise it would not be usable for most customers.

I'm not sure if any webmail option right now allows the email user to update their out of office / auto response message. I think the email user has to login to Plesk to be able to edit that right now (which is annoying).

Anyone have any suggestion on this?

Please add PHP Composer to chrooted Environments.
Many Customers Need PHP Composer to install various scripts, cms Systems and libaries.

A current big Problem is the new typo-neos System - you must use Composer to install at sources correctly

A other Problem are PHP API's and Libaries like Payment Companies like PAYMILL etc..

Add mcrypt module to Plesk PHP 7.2 and newer.
For previous PHP versions it's included out of the box.

Mcrypt 1.0.2 natively supports PHP 7.2+ (https://pecl.php.net/package/mcrypt/1.0.2)

It's, for example, required by Prestashop 1.7.x, which is quite popular among Plesk users.

As of now, feature with 178 votes is available in Plesk Onyx 17.9 Preview only: https://plesk.uservoice.com/forums/184549-feature-suggestions/suggestions/17924536-fail2ban-now-supports-ipv6-please-upgrade

It would be awesome to have this feature available on earlier versions of Plesk Onyx without the necessity to wait until Plesk Onyx 17.9 becomes stable.

Implement http://www.wildfly.org/ instead of deprecated Tomcat

Created according to the comment from this article https://support.plesk.com/hc/en-us/articles/360000322173?page=1#comment_360000633734

According to a ticket I just opened (80693) Plesk currently doesn't support a clustered MySQL server, e.g. an active/active Galera cluster.
To avoid data-loss or corruption in a server crash, I'd like to run MySQL in a Galera cluster to automatically sync the data again once Plesk's MySQL started after a crash.

Have the ability to provide more Nginx builds/packages. For example, offer a 'nginx-full'-package with more modules.

For example, I need the Nginx headers more module. Since this need to be built-in at compile time, it isn't possible to add this later on. So that would mean replace the Plesk version of Nginx with the distro-default. (Heck, why does Plesk need it's own Nginx-build, anyway?)

No, passing headers from Apache is not an option, especially when I'm using the Nginx - PHP-FPM setup.

Please, consider to implement some sort of cache purge functionality available from Plesk web interface, because if cache TTL gets extended to match Site needs, it gets complicated, i.e. need to go over Linux Terminal to purge it. A Wordpress integration would be just super fantastic, but I understand, it is not realistic to wish it.
Thank you!

I would be a good Idea to be able to change webmail URL via Plesk, not using workaround https://support.plesk.com/hc/en-us/articles/213947325-How-to-set-up-an-access-to-webmail-over-mail-example-com