Feature Suggestions
Please provide here your suggestion for new functionality for Plesk. We encourage you to review and vote for suggestions of others. The top-ranked suggestions are likely to be included in the next versions of Plesk.
Please write in English so that voters from all over the world can read and support your request.
Off-topic posts will be removed from here
- or
No existing idea results
- ~ No ideas found ~
2089 results found
-
Adjust the Website Log Checker to not show errors related to blocked xmlrpc.php requests by ModSecurity
Currently, Website Log Checker flags rejectred access to xmlrpc.php as issues of "Modsecurity: access denied with access code 403" kinds of errors. Additionally, the requests to xmlrpc.php is being blocked by WP Toolkit security measure "restrict access to xmlrpc.php"
ModSecurity protects website by detecting and blocking dangerous requests. If ModSecurity rules are disabled, the extra layer of protection is lost.
Relying only on WP Toolkit to block access is risky. If I forget to set it up, my site could be left vulnerable. ModSecurity is reliable, and I woouldn’t remove it just to clean up logs.
My Suggestion: Adjust the Website Log Checker
Instead of disabling the rules, I recommend tweaking the Website Log Checker to ignore these specific "errors."
Security Stays Strong: ModSecurity keeps running and protecting all sites as it should.The Log Checker stops flagging these blocked requests as errors, so the logs stay clear and focused on real problems.
This is the way to not compromising security; by just filtering out unnecessary alerts.
Disabling ModSecurity rules might seem like a quick fix, but it’s insecure—especially since you’d have to manually ensure WP Toolkit is always configured correctly. Adjusting the Website Log Checker is a smarter, safer way to handle this.
Currently, Website Log Checker flags rejectred access to xmlrpc.php as issues of "Modsecurity: access denied with access code 403" kinds of errors. Additionally, the requests to xmlrpc.php is being blocked by WP Toolkit security measure "restrict access to xmlrpc.php"
ModSecurity protects website by detecting and blocking dangerous requests. If ModSecurity rules are disabled, the extra layer of protection is lost.
Relying only on WP Toolkit to block access is risky. If I forget to set it up, my site could be left vulnerable. ModSecurity is reliable, and I woouldn’t remove it just to clean up logs.
My Suggestion: Adjust the…
2 votes -
Allow importing external DNSSEC keys (KSK/ZSK) into Plesk DNSSEC interface
Allow importing external DNSSEC keys (KSK/ZSK) into Plesk DNSSEC interface
Currently, Plesk’s “Use Existing Keys” DNSSEC feature only works if keys were previously generated by Plesk itself and are already present in its internal database.
There is no way to import an externally generated KSK/ZSK key pair into Plesk’s DNSSEC interface, which makes DNSSEC domain migrations difficult. Users are forced to either rotate the keys and notify the parent zone (risking downtime) or perform manual workarounds outside the GUI.
It would be valuable to add a supported method in Plesk to import legacy DNSSEC keys, allowing seamless migration of already-signed zones without modifying DS records or disturbing existing trust chains.
Use Case: I migrated a DNSSEC-enabled domain from another system to Plesk and had to manually place the legacy keys into /var/named/chroot/var/keys/domain.tld and restart DNS services. While this workaround appears functional, it’s unsupported and confusing to the UI.
Allow importing external DNSSEC keys (KSK/ZSK) into Plesk DNSSEC interface
Currently, Plesk’s “Use Existing Keys” DNSSEC feature only works if keys were previously generated by Plesk itself and are already present in its internal database.
There is no way to import an externally generated KSK/ZSK key pair into Plesk’s DNSSEC interface, which makes DNSSEC domain migrations difficult. Users are forced to either rotate the keys and notify the parent zone (risking downtime) or perform manual workarounds outside the GUI.
It would be valuable to add a supported method in Plesk to import legacy DNSSEC keys, allowing seamless migration of already-signed…
2 votes -
Plesk Migrator should be able to use a sudo user's key and su to root to perform the migration
Plesk Migrator should be able to use a sudo user's key and su to root to perform the migration. This is to be done inline with VPS provider security recomendations.
2 votes -
2 votes
-
GDPR Compliance – Add Impressum & Privacy Policy Links to Plesk Login Page
To fully comply with GDPR requirements, it would be beneficial to have an option in Plesk that allows adding links to the Impress and Privacy Policy directly on the login page. This ensures that users have transparent access to privacy-related information before logging in.
Requested Features:
Ability to specify Impressum and Privacy Policy URLs via the Plesk UI or a configuration file.
Display of these links at the bottom of the login page (e.g., as a footer or a separate section).
Optional: Customizable link text (e.g., "Impressum" and "Privacy Policy").Benefits:
Ensures GDPR compliance by making legal information easily accessible.
Increases transparency for users and administrators.
Helps prevent potential legal issues when using Plesk within the EU.
This feature would make Plesk more user-friendly and legally compliant.Thank you for considering this request!
To fully comply with GDPR requirements, it would be beneficial to have an option in Plesk that allows adding links to the Impress and Privacy Policy directly on the login page. This ensures that users have transparent access to privacy-related information before logging in.
Requested Features:
Ability to specify Impressum and Privacy Policy URLs via the Plesk UI or a configuration file.
Display of these links at the bottom of the login page (e.g., as a footer or a separate section).
Optional: Customizable link text (e.g., "Impressum" and "Privacy Policy").Benefits:
Ensures GDPR compliance by making legal information easily accessible.…
2 votes -
Add means to control which Master IP address (Private or Public) will be referenced on slave DNS servers
Currently, If Public IP address is added on the Master DNS server under Tools & Settings > IP addresses, all new zones created afterwards will have Public IP address in .nzd/nzf file on the slave DNS server. In case of Google Cloud/AWS this might not be the desired behavior since they recommend to keep the DNS traffic on the private network. Some means of controlling which Master IP address is being referenced on the slave configuration is required.
2 votes -
Allow possibility to set Let's Encrypt certificate for forwarding domain when the server is using LiteSpeed.
LiteSpeed is a supported web server on Plesk (e.g. unlike Lighttpd or OpenLiteSpeed), so all Plesk functionality should work with it.
It's important that this option is available to the customers via the GUI2 votes -
Add a warning and way to switch SOGo webmail to/from regular and nightly repos
SOGo webmail has two repositories, regular and nightly releases. There should be a way to switch between them from Plesk, without having to reinstall the software manually.
Additionally, reinstalling the software removes all configurations. Plesk should have a warning for this, or make it so that they're not lost.
2 votes -
Add possibility to configure /var/log/mysql/audit.log via Plesk
Please add the possibility to configure the MariaDB /var/log/mysql/audit.log via Plesk
2 votes -
Get list of domain aliases via cli
Currently it is possible to list all domains via
plesk bin site --listbut this command doesn't return domain aliases.
There is another commandplesk bin domaliasbut it doesn't support--listoption.Please provide a way to list domain aliases via CLI without using access to DB.
2 votesThis is a valid request, so we'll look into it. There is no ETA at the moment, but we would really appreciate you voting for this request so that we can accurately assess its popularity relative to other features. Thanks in advance!
-- SH
-
Add the ability to limit swap under Cgroups Control Manager
When cgroups v2 is engaged under Cgroups Control Manager in Plesk, it's able to only control MemoryMax variable on the user slice which happens to be RAM memory. Add a feature of limiting the amount of swap usage as well which happens to be a MemorySwapMax variable in order to prevent subscriptions from occupying all swap when the limit on RAM was reached.
2 votesThank you for your input! We will consider this functionality in upcoming releases if it becomes popular.
Everyone, please continue voting for this feature if you consider it important.
-- SH
-
Automatically issued certificates (Let's Encrypt) are not properly migrated using Plesk Migrator
Currently, Plesk Migrator does not properly transfer automatically issued certificates (Let's Encrypt).
This request is to improve the migration process and ensure that automatically issued certificates (Let's Encrypt) are fully functional after migration.2 votesThank you for your input! We will consider this functionality in upcoming releases if it becomes popular.
Everyone, please continue voting for this feature if you consider it important.
-- SH
-
Add ability to Plesk Email Security extension manage per-mailbox spam settings via CLI
At the moment when Plesk Email Security extension is installed, it is possible to manage via CLI only the global spam settings.
Please add the ability to manage per-mailbox spam settings via CLI when the Plesk Email Security extension is installed.
2 votesThis is a valid request, so we'll look into it. There is no ETA at the moment, but we would really appreciate you voting for this request so that we can accurately assess its popularity relative to other features. Thanks in advance!
-- SH
-
ARM support for the new Imunify extension
Introduce support for ARM-based server for the new Imunify extension. Because of growing popularity of ARM architecture it is expected to have more and more demand of Imunify on servers with it.
2 votes -
Set a permitted time period to the customers to schedule their backups
Add the ability to restrict customers to schedule their backups only during a specific time.
2 votes -
Disable specific repos when upgrading MariaDB via Plesk Upgrade Tool
Be able to explicitly tell the Database Server Upgrade Tool to ignore specific repositories during the upgrade.
2 votesThank you for your input! We will consider this functionality in upcoming releases if it becomes popular.
Everyone, please continue voting for this feature if you consider it important.
-- SH
-
Get the list of the mailboxes of particular domain via REST API.
Need to implement the feature of getting the list of the mailboxes of particular domain via REST API.
Currently the mail function provide the list of all mailboxes on the server2 votesThank you for your input! We will consider this functionality in upcoming releases if it becomes popular.
Everyone, please continue voting for this feature if you consider it important.
-- SH
-
Allow Customers to create scheduled website database dumps on their own
At the moment, Customer accounts in Plesk can create database dumps manually, however they do not have the necessary access to schedule the specific creation of such website database dumps.
That task is also not possible via a cron job, because the mysqldump command requires root access, which the Customer account does not possess.
Website database dumps can be created only manually via the Plesk GUI while using the steps in the https://support.plesk.com/hc/en-us/articles/12388279759255-How-to-export-a-website-database-in-Plesk article.
It would e very helpful to include the ability to create scheduled website database dumps while logged in as a Customer.
2 votes -
Allow hosting email directly on Google when using Google Workspace extension
Currently, Plesk sets DNS records for mail to mail.<domain> pointing to the Plesk server and creates accounts in Google Workspace as well as accounts locally which are then relayed to Google Workspace, so emails go through the Plesk server and become unavailable if Plesk is down even though they are hosted on Google
Please add possibility to set the mail records to point directly to Google
2 votes -
Arch Linux support
It would be nice to have Arch Linux among supported systems due to security concerns and more frequent and accurate patches.
2 votesThank you for your input! We will consider introducing support for Arch Linux if it becomes popular and there's demand for it.
Everyone, please continue voting for this feature if you consider it important.
-- SH
- Don't see your idea?