Feature Suggestions
Please provide here your suggestion for new functionality for Plesk. We encourage you to review and vote for suggestions of others. The top-ranked suggestions are likely to be included in the next versions of Plesk.
Please write in English so that voters from all over the world can read and support your request.
Off-topic posts will be removed from here
2019 results found
-
Allow wildcard certificates for forwarders without Nginx installed
Due to fixed issue EXTSSLIT-1871, if nginx is disabled, it is no longer possible to start securing a domain with the “Forwarding” hosting type: https://support.plesk.com/hc/en-us/articles/12377017310999.
Please allow at least issuing wildcard certificates for forwarders without nginx installed, since these only require DNS validation.
2 votes -
DKIM Weekly Rotation of key, with new 'selector' where previous selector is removed the next week
As in:
https://proton.me/blog/dkim-replay-attack-breakdownRotating DKIM is highly important.
Currently, it' **** easy to rotate the DKIM key on Plesk, not to talk of updating DNS and running Route 53 update.
This is asked to be implmented, where a second key is added, and new mails use it.
Old key would be depreciated a week later, as previous emails are still in the progress.
Rotate your DKIM keys regularly – Rotating our DKIM keys allowed us to quickly stop the attack and buy time for the permanent solution. Although tedious and risky to do manually, Proton’s DKIM key management system(new window)…
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
Oversign Emails' DKIM From, To, and CC headers
As in:
https://proton.me/blog/dkim-replay-attack-breakdownOversign From, To, and CC headers – Most DKIM implementations always sign the From, To, and CC headers if they are present in an email, preventing them from being modified if the message is resent. However, if these headers are missing, they are often unsigned, opening the door to replay attacks with forged headers that make the fraudulent emails seem legitimate. Oversigning mitigates these attacks by signing these sensitive headers in all cases, even if they are blank. If you use Proton to send your email, this oversigning is done for you automatically by our mail servers.
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
Allow customers access to multiple subscriptions
In some situations where several customers with different subscriptions will collaborate with each other, there's no way to give access to their existing accounts to all the appropriate subscriptions.
Right now it's necessary to create new accounts for this setup, and it'd be a lot easier if one could just use the existing ones to avoid messy duplicated and allow management through AD.
2 votes -
Custom Temporary Domain Names
When you create a new site, you get the amazing option to generate a Temporary domain name.
However, these are randomly generated, which makes finding your dev site difficult, especially if you have a lot of them.
I get that you can change the domain after creation, but hopefully it won't be such a large change to the plesk code to allow you to alter the domain name at creation from "silly-lalande.90-65-15-200.plesk.page" to "(custom-website-name).90-65-15-200.plesk.page"
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
Ability to disable aum automatic updates in mod security and apply it manually
Provide the ability to disable aum
automatic updates in mod security and apply it manually2 votes -
Add option to mitigate known vulnerabilities by default during installation of WordPress
There is an option in WP Toolkit to mitigate the Unauth. Blind SSRF vulnerability. However, this may only be applied only once WordPress has already been installed. Please add possibility to secure the instance in this regard (and any other vulnerabilities that might be found later, if such option is added to WP Toolkit) directly when installing WordPress.
2 votes -
Restrict Mailman access to certain IP addresses
There's restricted mode for Plesk interface, but there's no implementation to allow restriction for Mailman only.
2 votes -
Always include English along with another language license
Apart from local language ALWAYS include English (or at the least American).
I'm at a provider offering "Dansk" as the only option, and that makes it really hard to guess what's going on, as the 'translations' are far from stellar (in it self not unsurprising for a small language).
Super service that the local language IS offered for the 0.001% of Danish web-administrators not understanding English, but primarily a pest for the 99.999% that do. IMHO
And I assume similar would go for many other countries with a small population, and thus dubious translations.
2 votes -
2 votes
-
2 votes
-
Ability to auto extract zip files after upload in file manager.
Provide to user a option to auto extract zip files after upload in file manager.
2 votes -
Add an icon on the Websites and Domains dashboard, under Status with the other icons, that shows the status of SSL whether it is active
Add an icon on the Websites and Domains dashboard, under Status with the other icons, that shows the status of SSL whether it is active or not.
Hover over shows the Expiry date, but that is not essential. Knowing if SSL is active at a quick glance is.
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
Joomla Toolkit provide sortable site list
Allow for the sorting of websites by name, traffic, size, and subscription type.
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
"Send welcome mail" by button so that admin can send login credentials to a new user by email template
As discussed in https://talk.plesk.com/threads/send-email-with-credentials-to-my-customer.369632/#post-927240 Plesk should have a button for server admins by which an admin can send a welcome mail to a user with the user's login credentials. That should be template-based with an editable template to cater for the requirements of different server providers.
It should also not be sent directly, but similar to the existing "mass mailing" function first show the proposed text in an editor window so that the admin can make additions or edit the text. Then send from there.
2 votes -
change ALL "http"- to "https"-connections for Plesk-updates and -upgrades
Change ALL "http"- to "https"-connections for Plesk-updates and -upgrades:
http://autoinstall.plesk.com
http://archive.ubuntu.com
etc…This is an unforgiveable severe security bug!
2 votesThank you for your idea! We will consider this functionality in upcoming releases.
-- PD
-
"keep secure" should be ON by default for any new Service Plan.
We and many other companies sell "Reseller accounts", each reseller has its own service plans. We can't control how they create their service plans and if they enable "keep secured" in their plan.
So in that case, there should be a global keep-secured solution that has nothing to do with resellers' plans.
An admin should have the option to enable "keep secured" globally so that any newly created domain will be secured once it's pointed to the server DNS. Something similar is working flawlessly in CPANEL. CPANEL users basically do not need to actively install an SSL by Let's Encrypt.…
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
Keep the collation MySQL settings during the migration
Migration of the databases from the old MySQL servers should keep the original collation of the tables. If the databases on the source server have the different collation setting these databases should have the same collation settings on the target server after the migration.
2 votes -
Add the ability to register mail accounts on a subscription with disabled mail service
During migration from an external mail server to Plesk mail, it would be useful to create mail accounts before enabling the service to prevent local delivery until the switch is done.
2 votes -
Auto-update database structure on update failure
Joomla Toolkit will report a failed core update on certain occasions (like running out of memory). It will then ask to check the site manually.
This "manual" check translate into checking for issues with the toolkit, and pushing a button to update the database structure. It's all done from within JTK.
The purpose of the toolkit is to automate such tasks and report the issue accurately, so upon failure it should re-check the site and resolve the issues automatically, and only report the need to check manually if that fails.
2 votesThis is a valid idea. We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
- Don't see your idea?