Tozz

My feedback

  1. 122 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    27 comments  ·  Feature Suggestions » DNS  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    It would also be wonderful if Plesk can create TLSA automatically based on the certificates installed for a domain. That would be truly wonderfull :)

    Tozz supported this idea  · 
  2. 80 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    open discussion  ·  12 comments  ·  Feature Suggestions » Mail  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    Can you clarify on what distribution you have the issue that your changes are overrwitten? We use Plesk on Debian, and we have set the reicpient_delimiter manually (as well as some other settings) and we do not see them get overwritten.

    Tozz commented  · 

    I dont know why you think that main.cf is getting overwritten, but that is not the case. We make manual modifications to main.cf, and they stay there just fine.

  3. 911 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    open discussion  ·  153 comments  ·  Feature Suggestions » Mail  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz supported this idea  · 
  4. 1,085 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    137 comments  ·  Feature Suggestions » Usability and UI  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    @Randy: I understand why you would like the feature, but "a ton of time" is not neccesary, and you dont have to migrate GBs of data. You could simply have done:

    - Rename the domain from eg. example.tld to example.tld-migrate
    - Create the domain within the new subscription/customer
    - Create the new mailboxes
    - Move /var/qmail/mailnames/example.tld-migrate to /var/qmail/mailnames/example.tld (you just moved GBs of email within seconds)
    - Create any databases that are in use
    - Move the documentroot from the old location to the new
    - You are now done.

    THis all can be done within 5 minutes per site. I agree, a button the webinterface would be nice.. But migrating manually is a lot less work than "tons of time".

    Tozz commented  · 

    @Robert:

    I agree with you on most things. However, if you take a look at other feature requests and/or comments, I hope you will notice that most of the feature requests and comments are from administrators / hosting companies that have very little to no experience with *NIX, MySQL and PHP. They want everything automated and dont know how to restore things when things go wrong.

    Plesk aims to help those users by supplying an easy to use control panel. Just putting up big alarm messages and red flags that things will mess up will probably not be enough.

    Tozz commented  · 

    This is not as simple as it may sound. A subscription can have multiple domains, but some things can be ambiguous to Plesk. For example, Plesk cannot determine which database (which belong to a subscription) is used by which domain.

    Also, since domains are in /var/www/vhosts/subscriptionmaindomain.tld/ directory, the path structure for the domain will change. This will have impact on almost all CMS's such as WordPress and Joomla.

    So:
    - Since a domain move implies a path structure most sites will stop working.
    - Plesk cannot know which databases should be moved as well. Also, if I'm not mistaken there is a setting that requires database users to start with the system username. How would a transfer of a domain resolve that isssue? The database name will have to change which will break all software using it.

    I agree that it would be a very helpfull feature, but I think there are too many difficulties at this moment that would make implementing this feature "not what you would expect it to do".

    If a user/admin thinks this will neatly move a domain to another subscription and everything will continue to function just fine, the user will be wrong. The undesired and perhaps unexpected output will perhaps cause more trouble than implementing a half baked function solves.

    Tozz commented  · 

    That you feel changed paths is a non-issue is good for you, but for regular shared hosting it is not a non-issue. WordPress, Joomla and almost all other CMS systems have directory path's listed in either their configuration file or in their databases.

    It is also not always an easy fix. For example WordPress has some paths saved in serialized form, which have a string length prefixed. If you change the path using search and replace, the string length also changes which has to be reflected in the serialized data.

    It is _not_ as simple as running search and replace on a file/database.

    Tozz commented  · 

    Relocated files are not the only issue here (but is indeed a biggie). Other issues are the lack of per-domain mail settings, for example catch-all's are currently subscription-based instead of domain-based.

  5. 182 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    open discussion  ·  39 comments  ·  Feature Suggestions » Mail  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    I would be interested in someone commenting with an example of what he/she wants to acomplish. Now comments are talking about RDNS, which most often cannot be managed by Plesk but needs to be managed by your ISP

    Can someone explain in detail what needs to be done?

    Tozz commented  · 

    You should see this when running Plesk 12 on Linux with Postfix.

    But be aware: Blacklists such as cbl.abuseat.org will list your IP-addresses if they send mail using multiple EHLO/HELO hostnames.

    I can't stress this enough: You are misunderstanding the RBLs. You _dont_ want multiple HELO hostnames from 1 IP.

    Tozz commented  · 

    @mstefanem: Your rant is untrue. Although I agree that it wasn't properly documented that Plesk has changed the default setting with an update, you can change it quite easily:

    Tools & Settings -> Mail Server Settings -> Outgoing mail mode

    Outgoing mail mode is set to "Send from domain IP addresses and use domain names in SMTP greeting" probably. Change it to "Send from domain IP addresses"

    Tozz commented  · 

    This is already implemented in the latest version. You can choose to use the server name as HELO hostname or the domain's hostname.

    Tozz commented  · 

    I am in the hosting business for quite some time now, but I have never heard that anti-spam solutions check the SMTP banner for proper hostname. I know the EHLO/HELO header is checked, but not the SMTP greeting banner.

    This would be a stupid check, because multi-domain hosting is very common. It is impossible to adapt the SMTP greeting to all domainnames on a specific server.

  6. 454 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    131 comments  ·  Feature Suggestions » Mail  ·  Flag idea as inappropriate…  ·  Admin →

    Could you provide more information about your scenario? In particular, could you explain which settings you want to be automatically discovered and at which step of your scenario?

    UPD: We will evaluate the possibility of adding this functionality in the future releases. Note that this feature also depends on your mailing client.

    —AK

    Tozz commented  · 

    There are multiple ways to setup autodiscover.. A new way is defined in a new RFC, but due to Plesk's DNS bugs it is not possible to use them. eg, these commands fail:

    # Plesk Parallels bug ID: PPPM-2640

    /opt/psa/bin/server_dns --add -srv '' -srv-service _imaps -srv-target-host mail.X.nl -srv-protocol _tcp -srv-port 993 -srv-priority 0 -srv-weight 0
    /opt/psa/bin/server_dns --add -srv '' -srv-service imap -srv-target-host mail.X.nl. -srv-protocol TCP -srv-port 143 -srv-priority 5 -srv-weight 0
    /opt/psa/bin/server_dns --add -srv '' -srv-service pop3s -srv-target-host mail.X.nl. -srv-protocol TCP -srv-port 995 -srv-priority 10 -srv-weight 0
    /opt/psa/bin/server_dns --add -srv '' -srv-service pop3 -srv-target-host mail.X.nl. -srv-protocol TCP -srv-port 110 -srv-priority 20 -srv-weight 0
    /opt/psa/bin/server_dns --add -srv '' -srv-service submission -srv-target-host mail.X.nl. -srv-protocol TCP -srv-port 587 -srv-priority 0 -srv-weight 0

    The Outlook way of using autodiscover requires SSL certificates on the autodiscover domain and is thus a bit more tricky to setup. Lets hope the autodiscovery using DNS gets quickly implemented in all mail clients.

    I believe, as this DNS autodiscover is relatively simple, it should be sufficient to configure these records in the default-installation DNS template.

  7. 150 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    13 comments  ·  Feature Suggestions » Mail  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    I believe signature or disclaimer is basically the same thing, yes.

    Tozz commented  · 

    I do not know of any mail server software package that offer this. I believe this should be configured in the e-mail client. All email clients have an option to set a footer/signature.

  8. 99 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    open discussion  ·  34 comments  ·  Feature Suggestions » Mail  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    I doubt that Exim is the world standard. I only Exim due to DirectAdmin using it. I couldn't find any statistics about SMTP server usage. Please show some proof dat Exim is the most used SMTP server. I highly doubt it.

    In my surrounding I see lots and lots of migrations to Postfix. It's easier to manage, has better tools.

    Tozz commented  · 

    I dont see why Plesk should consider Exim. Postfix is a great MTA and I dont see what adding Exim to Plesk has to offer.

    Besides that, it also means that any new future related to e-mail has to be implemented in 2 MTA's which means more development time. It is also possibel that a certain feature is not available in one of these MTA's, which means you would have to drop the feature completely.

    IMHO bad idea as it means more work, and I dont see any benefits of adding another MTA.

  9. 11 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  Feature Suggestions » Plesk (general)  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    String matching is no longer a layer 2 firewall as iptables is, but requires a level 7 firewall which is something completely different.

  10. 8 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    open discussion  ·  5 comments  ·  Feature Suggestions » Security  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    This is impossible. Because Joomla returns an HTTP 200 when a login fails, where WordPress (as it should) returns a 401. Fail2Ban checkes for those 401 return codes and bans accordingly.

    Because Joomla always returns 200 (regardless of whether the login succeeded or not) there is no way to check for failed logins.

  11. 201 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    19 comments  ·  Feature Suggestions » Mail  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    You could just create an extra address (for example 'justforsmtp@example.com') and use that as SMTP authenticator account.

  12. 46 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    open discussion  ·  5 comments  ·  Feature Suggestions » DNS  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    There is no specific reason for SPF records, as SPF RR's are deprecated. However, there are other RR's that are not available on Plesk but are available in BIND. There is no reason why these RR's could not be implemented simply by allowing them in the Plesk GUI.

    Tozz commented  · 

    I voted for this feature request, but I feel it should not be limited to SPF RR record. Plesk currently only implements a subset of all available RR's, but there is no reason why Plesk should limit the available RR's. As Plesk uses Bind, it would be a piece of cake to allow other RR types.

    Tozz supported this idea  · 
  13. 38 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    open discussion  ·  7 comments  ·  Feature Suggestions » Plesk (general)  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    I doubt the outbound anti spam feature in Plesk 12 prevents PHP scripts from opening TCP/25 connections to outside hosts and send spam using a custom mail library. Or for example, a compromised PHP site that is beeing abused by downloading a perl script that sends out mail using an Perl SMTP library.

    Tozz commented  · 

    I dont see why this should be included in Plesk. You found the solution yourself, which can be easily implemented in something like /etc/rc.local or some othe rfirewall script.

    Why do you need a webinterface for this? Also, this might be handy in your case.. It might not be that handy for someone else.

  14. 322 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    37 comments  ·  Feature Suggestions » Web  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    @Ben: You dont seem to know what you are talking about. Varnish is something totally different than Spdy. Varnish is a caching reverse proxy server, Spdy is an alternative/addition to the HTTP protocol which makes for slightly faster webpages due to compression and optimalisations.

    As I've written in this thread before, Varnish is _not_ a drop-in addition to Apache. Varnish needs to be configured to work properly with various CMS and shop software like Magento. Thus, the only way to achieve supporting Varnish is if Plesk is aware of the software running on a users website. This is way beyond the scope of Plesk.

    I very much doubt that 'all major' sites use Varnish. I believe the use of Varnish is actually in decline and other solutions such as Redis object caching is now the more obvious choice. Redis is just an example, there are lots of other data stores that can be used to achieve better performance.

    Tozz commented  · 

    Failover capabilities is not a valid reason. Only varnish does not give you actual failover, you need multiple servesr for that. There are other ways to achieve that using other Parallels' products.

    Tozz commented  · 

    I think Varnish is becoming less and less usefull, as there are better alternatives. For Magento there is (for example) Redis, which is a better alternative to speed up your website.

    Varnish is also complex to configure and might require different rules per website depending on the content. eg. magento requires its own set of Varnish rules, and WordPress might require yet another ruleset.

    I feel Varnish is currently to complex to setup to achieve this in a matter where it is understandable for end-users.

  15. 10 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    open discussion  ·  2 comments  ·  Feature Suggestions » Plesk (general)  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    I believe this request can be closed, as this is implemented in Plesk 12.

    Tozz shared this idea  · 
  16. 16 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    open discussion  ·  2 comments  ·  Feature Suggestions » Plesk (general)  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz supported this idea  · 
  17. 173 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Feature Suggestions » Mail  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz supported this idea  · 
  18. 21 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    started  ·  6 comments  ·  Feature Suggestions » Plesk (general)  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    If you want to do this as admin, you could do this pretty easily with the CLI tools. We regularly set all mailboxes to enable spamfiltering using a cron script.

  19. 100 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    20 comments  ·  Feature Suggestions » Mail  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    Piping e-mail to scripts is something from the past. E-mail is getting more and more "virtualized". In the past e-mail boxes were actually users on the system, which is no longer the case. As of now all mailboxes are virtual and all belong to 1 UID. As piping data means starting a script as that UID, it might have serious security implications.

    If a user would be able to create his own pipe script he could start a shell as the mail server, and read mail from all users. Bad idea.

    There are other ways to fix this, eg, using FAM or maybe IMAP IDLE.

  20. 29 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Feature Suggestions » Plesk (general)  ·  Flag idea as inappropriate…  ·  Admin →
    Tozz commented  · 

    No, not override. Use as an addition. With SNI you can host multiple SSL certificates on 1 IP-address, but it doesn't neccessarly show a different website.

    So basicly the Plesk interface would be reachable using multiple SSL certificates using SNI. For browsers not supporting SNI (eg. WinXP with MSIE9) you could fallback to the server certificate.

    Tozz shared this idea  · 
← Previous 1

Feedback and Knowledge Base