Let Plesk on every night optionally create/compare md5-hashes from all files in the domains storage-space (web,httpdoc,ftp) and update this in a simple list (database), sortable by date of last change, size, number of changes. Indicating "changed files in the last xx days" to have a time-window to drill down.

In addition, accumulate all vhosts together into a seperate "Admin-View", where ALL domains are put together alphabetically.

Add an additional button "snapshot", so one could create a list of all webfiles on request. For example, when an incident has been cleaned, then click "snapshot" and then wait some time to see if the changes come back within a short time.

This would allow the customer and the Admins to quickly see, which files an when have been updated/changed lately or tampered with (hacked/defaced homepages). And the admins can spot such repeated activities or attacks which span over multiple domains (produced by Botnets and such) on his server.

Cheers,
Eric

When switching from Apache to FastCGI the Service Provider needs to change the permissions for the customer from apache:apache to <user>:psacln

This can be fixed by having a button in Plesk which does:

find $PLESK_DOMAIN_HTTPDOCS -not -user $PLESK_DOMAIN_OWNER -not -name "plesk-stat" -print0 | xargs -0 chown $PLESK_DOMAIN_OWNER:psacln
find $PLESK_DOMAIN_HTTPDOCS -type d -not -name "plesk-stat" -print0 | xargs -0 chmod 0755
find $PLESK_DOMAIN_HTTPDOCS -type f -not -name "*.pl" -not -name "*.cgi" -not -name "*.sh" -print0 | xargs -0 chmod 0644
find $PLESK_DOMAIN_HTTPDOCS -type f -name "*.cgi" -print0 -o -name "*.pl" -print0 -o -name "*.sh" -print0 | xargs -0 chmod 0755

I have this entirely written in bash already (where I get all needed variables from the DB with domainname as input).

iptables -A OUTPUT -d 127.0.0.1 -p tcp -m tcp --dport 25 -j ACCEPT
iptables -A OUTPUT -p tcp -m tcp --dport 25 -m owner --gid-owner postfix -j ACCEPT
iptables -A OUTPUT -p tcp -m tcp --dport 25 -m owner --gid-owner mailman -j ACCEPT
iptables -A OUTPUT -p tcp -m tcp --dport 25 -m owner --uid-owner root -j ACCEPT
iptables -A OUTPUT -p tcp -m tcp --dport 25 -j REJECT --reject-with icmp-port-unreachable

Would be nice to add this to the Plesk Firewall Module.

This disables malicious scripts of sending direct mail.

Other malicious mails sent through localhost (Postfix / qmail) will be scanned first.

Hey guys,

I am sure that I speak for hundreds of users when I say that having a limit on backups per customers and or subscriptions should be an important and available option. The option to also limit backups based on the customers subscription storage size will be even better. Otherwise, customers who overuse the backup option will dramatically increase storage space on the server without realization of the administrator. It wouldn't be ideal for an administrator to enter the dumps folder to delete random customer backups. Really hope you guys can resolve this and add this feature as soon as possible.

Please make possible generating and activating DKIM/DomainKey without having active local DNS server. Consider following situation:

You have a website that use as sender your domain when sending email and you are want to follow best practices in order to reach inbox, but this domain uses another server for DNS (cloudflare for example, godday, etc.). In this case you need to have DKIM/DomainKey signed mails without the need to activate local DNS server. Also mail management could be set off for that domain, but mails still should be able to be signed.

I believe that this scenrario is real and for a lot of people this will be very useful.

Let others correct me or add/edit the request to match best the need.