Tim Reeves
My feedback
9 results found
-
4 votes
This is a valid request, so we'll look into it. There is no ETA at the moment, but we would really appreciate you voting for this request so that we can accurately assess its popularity relative to other features.
Thanks in advance!
--
IG
Tim Reeves supported this idea · -
3 votes
Thank you for your idea! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
-- PD
Tim Reeves shared this idea · -
419 votes
An error occurred while saving the comment An error occurred while saving the comment Tim Reeves commentedThe alias is needed to add the subdomain alias to the Lets Encrypt Certificate
Tim Reeves supported this idea · -
27 votes
Thank you for your input! We will consider this functionality in upcoming releases, if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—ETTim Reeves supported this idea ·An error occurred while saving the comment Tim Reeves commentedRegarding Nginx: There is a better idea than just disabling the access logs, because the nasty things that happen (and get recorded there) can be used for Fail2Ban Jails.
I suggested Nginx Jails for Fail2Ban about 18 months ago:
And now, as you see in my comment there, I have written them myself. In fact 6 jails, 3 for access logs and 3 for error logs.
And I have also written an article (in German) how to limit the entries in access logs to only 4xx and 5xx errors, and to buffer the output as well. Because if you don't do that, then the continuous writing to the weberver logs, which are constantly being regex filtered by fail2ban, produces such a heavy load on IO that your server is dead in the water.
https://timreeves.de/internet-technologie/nginx-konfiguration-optimieren-und-geld-sparen/
I won't repeat here what I wrote there - if you need to, then use DeepL or Google Translator on the page.
Would be really glad to see an option for selective and buffered logging with Nginx appear in Plesk - maybe it could also work for Apache?
Tim
-
20 votes
Thank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
IGAn error occurred while saving the comment Tim Reeves commentedAfter 1.5 years I'm surprised that so few upvotes happened - it appears that people either don't use the "Nginx only" possibility very much, or they do but just don't care about the jails.
I gave up waiting and got around to creating the neccessary jails myself, see my blog article (in German): https://timreeves.de/internet-technologie/plesk-wordpress-fail2ban-jails-fuer-nginx/
Would be great if Plesk could take up the energy I've put in, and make them available in the distribution.
Tim Reeves shared this idea · -
27 votesTim Reeves supported this idea ·
-
17 votes
An error occurred while saving the comment Tim Reeves commentedI want to add a rule to stop SlowLoris attacks - in Webmin it's easy:
Rule comment = Protect against SlowLoris attacks
Action to take = Drop
Network protocol = TCP
Destination TCP or UDP port : Equals : 80
Additional parameters = -m connlimit --connlimit-above 20 --connlimit-mask 40The only thing I'm missing in Plesk is the ability to append the additional parameters - so I would be very glad to see a field added to allow that. Sure, you would have to warn "Experts only", but without this possibility I have to either live without SlowLoris protection, or without Plesk Firewall.
Tim Reeves supported this idea · -
430 votes
Thank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
—
IGTim Reeves supported this idea · -
273 votes
Thank you for your input! We will consider this functionality in upcoming releases if it will be popular.
Everyone, please continue voting for this feature if you consider it important.
— AY
Tim Reeves supported this idea ·An error occurred while saving the comment Tim Reeves commentedI agree with the very first comment on this thread: When an IP has a default domain, that domain should be used in the SMTP banner in place of the hostname. I see no reason why Plesk should not add a corresponding IP-Section to Postfix' master.cf
Using CLI:
plesk bin domalias -c be.m.example.com -domain m.example.com -mail false -web true
This works. The subdomain alias is not diplayed on Plesk GUI, but is available for Lets Encrypt.