Feature Suggestions
Please provide here your suggestion for new functionality for Plesk. We encourage you to review and vote for suggestions of others. The top-ranked suggestions are likely to be included in the next versions of Plesk.
Please write in English so that voters from all over the world can read and support your request.
Off-topic posts will be removed from here
2040 results found
-
Harden Your PHP for Better Security
We should all consider PHP security, giving us the option to Harden our PHP through the GUI or add an optimizer that does it automatically by scanning the websites.
2 votesThank you for your idea. Please add, what hardening needs to be done specificially. Also, what optimizer you have in mind that can scan websites, what that software should look for in websites and what is expected as a result of such a scan. Do you have examples?
-- PD
-
Prohibit user from deleting domains
Hello,
Another customer's domain names were accidentally erased from his control panel, according to us. Please give us a choice to prevent this from occurring again. Alternatively, provide us access to a internal ticket system, which requires staff approval.2 votesThank you for your idea. When deleting a domain, a clear warning an confirmation dialog is displayed. Domains are only deleted when that additional dialog is confirmed. https://plesk.uservoice.com/forums/184549-feature-suggestions/suggestions/41416156-delete-domain
Nevertheless, we'll consider adding a feature that users won't be permitted to delete domains at all, if this request becomes popular.
-- PD
-
Ability to set a Subscription or Domain Backup Default
I'd love the ability to set a subscription such that a Scheduled Backup configuration is enabled by default? E.g. "backup all files, daily, store 1 day"?
Often times I realized after the fact that a domain backup was not turned on. The "scheduled backup list" extension is nice, but I'm looking more for a default option.
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
Create a "grid" of permissions where admin can enable or disable parts of menus related to the Service Plan
Can be really usefull increase details of personalizations of the customer's menus, for example:
into smb/iis-app-pool/settings/id (AppPools Settings) to allow to recycle it but not to create a new one
For example, if customer creates a subdomain, it can also create a dedicated appPool for it and this can create problems in some envs.Our suggestion is to create a "grid" of permissions where admin can enable or disable parts of menùs related to the Service Plan, as happens now but much more granular
Thanks
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
Allow wildcard certificates for forwarders without Nginx installed
Due to fixed issue EXTSSLIT-1871, if nginx is disabled, it is no longer possible to start securing a domain with the “Forwarding” hosting type: https://support.plesk.com/hc/en-us/articles/12377017310999.
Please allow at least issuing wildcard certificates for forwarders without nginx installed, since these only require DNS validation.
2 votes -
DKIM Weekly Rotation of key, with new 'selector' where previous selector is removed the next week
As in:
https://proton.me/blog/dkim-replay-attack-breakdownRotating DKIM is highly important.
Currently, it' **** easy to rotate the DKIM key on Plesk, not to talk of updating DNS and running Route 53 update.
This is asked to be implmented, where a second key is added, and new mails use it.
Old key would be depreciated a week later, as previous emails are still in the progress.
Rotate your DKIM keys regularly – Rotating our DKIM keys allowed us to quickly stop the attack and buy time for the permanent solution. Although tedious and risky to do manually, Proton’s DKIM key management system(new window)…
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
Oversign Emails' DKIM From, To, and CC headers
As in:
https://proton.me/blog/dkim-replay-attack-breakdownOversign From, To, and CC headers – Most DKIM implementations always sign the From, To, and CC headers if they are present in an email, preventing them from being modified if the message is resent. However, if these headers are missing, they are often unsigned, opening the door to replay attacks with forged headers that make the fraudulent emails seem legitimate. Oversigning mitigates these attacks by signing these sensitive headers in all cases, even if they are blank. If you use Proton to send your email, this oversigning is done for you automatically by our mail servers.
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
Allow customers access to multiple subscriptions
In some situations where several customers with different subscriptions will collaborate with each other, there's no way to give access to their existing accounts to all the appropriate subscriptions.
Right now it's necessary to create new accounts for this setup, and it'd be a lot easier if one could just use the existing ones to avoid messy duplicated and allow management through AD.
2 votes -
Custom Temporary Domain Names
When you create a new site, you get the amazing option to generate a Temporary domain name.
However, these are randomly generated, which makes finding your dev site difficult, especially if you have a lot of them.
I get that you can change the domain after creation, but hopefully it won't be such a large change to the plesk code to allow you to alter the domain name at creation from "silly-lalande.90-65-15-200.plesk.page" to "(custom-website-name).90-65-15-200.plesk.page"
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
Ability to disable aum automatic updates in mod security and apply it manually
Provide the ability to disable aum
automatic updates in mod security and apply it manually2 votes -
Add option to mitigate known vulnerabilities by default during installation of WordPress
There is an option in WP Toolkit to mitigate the Unauth. Blind SSRF vulnerability. However, this may only be applied only once WordPress has already been installed. Please add possibility to secure the instance in this regard (and any other vulnerabilities that might be found later, if such option is added to WP Toolkit) directly when installing WordPress.
2 votes -
Restrict Mailman access to certain IP addresses
There's restricted mode for Plesk interface, but there's no implementation to allow restriction for Mailman only.
2 votes -
Always include English along with another language license
Apart from local language ALWAYS include English (or at the least American).
I'm at a provider offering "Dansk" as the only option, and that makes it really hard to guess what's going on, as the 'translations' are far from stellar (in it self not unsurprising for a small language).
Super service that the local language IS offered for the 0.001% of Danish web-administrators not understanding English, but primarily a pest for the 99.999% that do. IMHO
And I assume similar would go for many other countries with a small population, and thus dubious translations.
2 votes -
2 votes
-
2 votes
-
Ability to auto extract zip files after upload in file manager.
Provide to user a option to auto extract zip files after upload in file manager.
2 votes -
Add an icon on the Websites and Domains dashboard, under Status with the other icons, that shows the status of SSL whether it is active
Add an icon on the Websites and Domains dashboard, under Status with the other icons, that shows the status of SSL whether it is active or not.
Hover over shows the Expiry date, but that is not essential. Knowing if SSL is active at a quick glance is.
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
Joomla Toolkit provide sortable site list
Allow for the sorting of websites by name, traffic, size, and subscription type.
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
-
"Send welcome mail" by button so that admin can send login credentials to a new user by email template
As discussed in https://talk.plesk.com/threads/send-email-with-credentials-to-my-customer.369632/#post-927240 Plesk should have a button for server admins by which an admin can send a welcome mail to a user with the user's login credentials. That should be template-based with an editable template to cater for the requirements of different server providers.
It should also not be sent directly, but similar to the existing "mass mailing" function first show the proposed text in an editor window so that the admin can make additions or edit the text. Then send from there.
2 votes -
Trigger to update PECL extensions automatically by Plesk
In recent Plesk versions it is now possible to manage PECL extensions for PHP directly in Plesk. However we need a method to keep such PECL extensions up-to-date, either with some sort of trigger or event handler.
2 votesThank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
- Don't see your idea?