Simon KRAMER
My feedback
12 results found
-
19 votes
This is a valid request, so we’ll look into it. There is no ETA at the moment, but we would really appreciate you voting for this request so that we can accurately assess its popularity relative to other features. Thanks in advance!
— rk
An error occurred while saving the comment Simon KRAMER
supported this idea
·
-
2 votes
Thank you for your idea! We will consider this functionality in upcoming releases.
-- PD
Simon KRAMER
shared this idea
·
-
64 votes
Thank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.— rk
Simon KRAMER
supported this idea
·
-
8 votes
Thank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
IGAn error occurred while saving the comment Simon KRAMER
commented
Please make it a priority, because:
- https://scotthelme.co.uk/a-new-security-header-expect-ct/
- security must be a priority by default (independently of user votes ;-)Simon KRAMER
shared this idea
·
-
9 votes
This is a valid request. Please keep voting on this if you believe it is an important feature.
-- PD
Simon KRAMER
supported this idea
·
-
10 votesSimon KRAMER
supported this idea
·
-
19 votes
Thank you for your input! We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
— ES
Simon KRAMER
supported this idea
·
-
11 votes
Thank you for your input! We will consider functionality to implement ability to set TLS as required for email connections in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
Please note that STARTSSL is a service of StartCom and there are issues with them to stay in CA role http://www.pcworld.com/article/3129725/certificate-policy-violations-force-reform-at-startcom-and-wosign.html so STARTSSL support will not be implemented in Plesk.
—
ETSimon KRAMER
supported this idea
·
-
57 votes
Thank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
AASimon KRAMER
supported this idea
·
-
39 votesSimon KRAMER
supported this idea
·
-
57 votesSimon KRAMER
supported this idea
·
-
9 votesSimon KRAMER
supported this idea
·
This is a very important issue, since (non-zero-knowledge) password-based security mechanisms (incl. password-based email client authentication) is very bad (password stored on the server, hopefully at least not in clear but hashed; weak and thus insecure passwords; and very often, email clients are configured to send the passwords even in clear to the email server!), and should urgently be replaced by more secure mechanisms, such as certificate-based client authentication (where no confidential information is stored on the server).
See the following corresponding documentation and files for configuring such authentication in IMAP (email fetching, via Dovecot) and SMTP (email sending, via Postfix):
documentation (server-side):
https://doc.dovecot.org/2.3/configuration_manual/dovecot_ssl_configuration/#client-certificate-verification-authentication
https://www.postfix.org/TLS_README.html#server_vrfy_client
documentation (client-side, macOS):
https://support.apple.com/de-de/guide/mail/cpmlprefsmtpserver/mac
server files:
/etc/dovecot/conf.d/11-plesk-security-ssl.conf
/etc/postfix/main.cf
The fact that Plesk is not prioritising this very important security issue is informative, but not of their professionalism (bad attitude towards the security of Plesk-customers).
Best,
SK