Tim Reeves
My feedback
-
360 votesopen discussion · 53 comments · Feature Suggestions » Plesk (general) · Flag idea as inappropriate… · Admin →
An error occurred while saving the comment An error occurred while saving the comment Tim Reeves
commented
The alias is needed to add the subdomain alias to the Lets Encrypt Certificate
Tim Reeves
supported this idea
·
-
26 votes
Thank you for your input! We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—ETTim Reeves
supported this idea
·
An error occurred while saving the comment Tim Reeves
commented
Regarding Nginx: There is a better idea than just disabling the access logs, because the nasty things that happen (and get recorded there) can be used for Fail2Ban Jails.
I suggested Nginx Jails for Fail2Ban about 18 months ago:
And now, as you see in my comment there, I have written them myself. In fact 6 jails, 3 for access logs and 3 for error logs.
And I have also written an article (in German) how to limit the entries in access logs to only 4xx and 5xx errors, and to buffer the output as well. Because if you don't do that, then the continuous writing to the weberver logs, which are constantly being regex filtered by fail2ban, produces such a heavy load on IO that your server is dead in the water.
https://timreeves.de/internet-technologie/nginx-konfiguration-optimieren-und-geld-sparen/
I won't repeat here what I wrote there - if you need to, then use DeepL or Google Translator on the page.
Would be really glad to see an option for selective and buffered logging with Nginx appear in Plesk - maybe it could also work for Apache?
Tim
-
11 votes
Thank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
IGAn error occurred while saving the comment Tim Reeves
commented
After 1.5 years I'm surprised that so few upvotes happened - it appears that people either don't use the "Nginx only" possibility very much, or they do but just don't care about the jails.
I gave up waiting and got around to creating the neccessary jails myself, see my blog article (in German): https://timreeves.de/internet-technologie/plesk-wordpress-fail2ban-jails-fuer-nginx/
Would be great if Plesk could take up the energy I've put in, and make them available in the distribution.
Tim Reeves
shared this idea
·
-
14 votesTim Reeves
supported this idea
·
-
96 votes
We don’t plan to backport this feature, but if the demand is really high, we’ll consider it.
— rk
Tim Reeves
supported this idea
·
-
17 votes
An error occurred while saving the comment Tim Reeves
commented
I want to add a rule to stop SlowLoris attacks - in Webmin it's easy:
Rule comment = Protect against SlowLoris attacks
Action to take = Drop
Network protocol = TCP
Destination TCP or UDP port : Equals : 80
Additional parameters = -m connlimit --connlimit-above 20 --connlimit-mask 40The only thing I'm missing in Plesk is the ability to append the additional parameters - so I would be very glad to see a field added to allow that. Sure, you would have to warn "Experts only", but without this possibility I have to either live without SlowLoris protection, or without Plesk Firewall.
Tim Reeves
supported this idea
·
-
397 votes
Thank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
IGTim Reeves
supported this idea
·
-
1,529 votes
We hear you and see a clear demand for this feature.
I want to say that implementing these features requires a lot of investment, and in 2021 Plesk team keeps focusing on the delivery of other improvements (sad, but true).
We will back to the re-evaluation of these features at the beginning of the next year.
Please continue to share your use cases and requirements, and it would really helpful if you point to existing solutions that we can review and check before implementation.
Your feedback is important to us. Thank you, everyone.
—
AATim Reeves
supported this idea
·
-
1,011 votes
Hi all, Thanks for your input, really appreciate this! As you know, in Plesk Onyx 17.8 we made a significant improvement that allows you to use several cloud storages or even SFTP for remote backups. In Plesk Onyx 17.9 we will continue to improve Plesk Backup Manager in general and Flexible Backup Scheduler Manager in particular.
Based on the initial description and comments I can highlight 3 scenarios in the scope of this request:
#1. Keep Daily & Weekly & Monthly backups at the same time: (Example: 2 weeks of daily backups + weekly backups by each Monday)
#2. Backup to different storages (like daily to FTP and monthly to Google Drive)
#3. Multiple Storages of the same type (like 2 different FTP servers)
ID in our Issue Tracker: PPM-1701
-DLTim Reeves
supported this idea
·
-
244 votes
Thank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
— AY
Tim Reeves
supported this idea
·
An error occurred while saving the comment Tim Reeves
commented
I agree with the very first comment on this thread: When an IP has a default domain, that domain should be used in the SMTP banner in place of the hostname. I see no reason why Plesk should not add a corresponding IP-Section to Postfix' master.cf
Using CLI:
plesk bin domalias -c be.m.example.com -domain m.example.com -mail false -web true
This works. The subdomain alias is not diplayed on Plesk GUI, but is available for Lets Encrypt.