Skip to content

Laurent Chouraki

← Your Ideas for Plesk

My feedback

22 results found

  1. Deploy MTA Strict Transport Security

    64 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    7 comments  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  2. Separate mozilla tls cipher settings for web and mail

    9 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    2 comments  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    open discussion  ·  IgorG responded

    Thank you for your input. We will consider this functionality in upcoming releases if it is popular. Everyone, please continue voting for this feature if you consider it important.

    IG

    An error occurred while saving the comment
    Laurent Chouraki commented  · 

    Hello,

    It's possible on Linux with plesk sbin pci_compliance_resolver {--enable|--disable} [<service>]

    See https://docs.plesk.com/fr-FR/obsidian/administrator-guide/administration-de-plesk/s%C3%A9curiser-plesk/conformit%C3%A9-pcidss/plesk-pour-linux-rendre-plesk-conforme-%C3%A0-la-norme-pci-dss.78899/

    Regards.

  3. Remove digest-md5 from dovecot and postfix configs

    22 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    2 comments  ·  Feature Suggestions » Mail  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    open discussion  ·  IgorG responded

    Thank you for your input. We will consider this functionality in upcoming releases if it is popular. Everyone, please continue voting for this feature if you consider it important.

    IG

    Laurent Chouraki supported this idea  · 

  4. Add ClamAV as module in Plesk to protect better the server. Thank you Parallels Team.

    1,320 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    open discussion  ·  305 comments  ·  Feature Suggestions » Mail  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  5. Secure one way encrypted password storage (no mail_auth_view for gdpr, pci-dss, nis2)

    1 vote

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    2 comments  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    An error occurred while saving the comment
    Laurent Chouraki commented  · 

    Great !

    Laurent Chouraki supported this idea  · 
    An error occurred while saving the comment
    Laurent Chouraki commented  · 

    A small script to replace cleartext password with hashs.
    (not a real solution)

    #!/bin/bash

    # Dangerous script for Plesk
    # Search for mail user with plaintext password using mail_auth_view
    # Replace the plaintext password with hashed password

    # Remaining problems :
    # If user change his password, it's again in plaintext
    # The script is slow, if the user change it's password while the script is running the change will be lost
    # Tested only on Debian 12.8 Plesk Obsidian 18.0.65

    # Filter to apply only to a domain or a mail account
    filter=$1
    # Set action to DOIT to replace password
    action=$2

    if [ -z "$filter" ]
    then
    echo "Usage : $0 @domain.tld"
    exit
    fi

    # Get all mails and appy filter
    echo "Search mail account, using filter $filter"
    mails=$(plesk bin mail --list | grep -E "^Mail name" | cut -f2 | grep -E $filter)
    echo Accounts founds : $mails
    echo

    # For each mail
    for mail in $mails ; do
    authview=$(plesk sbin mail_auth_view | grep -E "^\| +$mail \| \| +.+ \|$")
    if [ "$?" != 0 ]
    then
    echo OK:$mail
    else
    echo FOUND cleartext password for $mail
    # cut the left part "| mail@domain.tld | |"
    authview=$(echo "$authview" | sed "s/^\x7c *$mail \x7c \x7c *//")
    # cut the rigth part " |"
    password=$(echo "$authview" | sed "s/ \x7c$//")
    # Calculate hashed password
    password_c=$(openssl passwd -6 "$password")
    # For debuging purpose
    # echo "Account $mail : password \"$password\" hashed \"$password_c\""
    if [ "$action" == "DOIT" ]
    then
    echo "Changing account $mail password with hashed version"
    plesk bin mail --update $mail -passwd_type encrypted -passwd $password_c
    fi
    # Clear password (paranoid :-)
    authview=""
    password=""
    password_c=""
    fi
    done

    Laurent Chouraki shared this idea  · 

  6. Antivirus in Plesk Email Security extension

    4 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    1 comment  ·  Feature Suggestions » Extensions  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  7. ProFTPd with ClamAV support (mod_clamav)

    7 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  8. Description field for IP restrictions

    7 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    1 comment  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  9. 2FA (two-factor authentication) for webmail, e.g. Google Authenticator for Roundcube login

    24 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    1 comment  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  10. Deny access to all dot files by default

    7 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    1 comment  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  11. Enable OCSP stapling and HSTS for Plesk panel

    31 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    1 comment  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  12. Email notifications/alerts for Modsecurity (WAF)

    9 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    2 comments  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  13. OWASP security recommendation hide php version from web server by default

    6 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    1 comment  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  14. Require domain TXT record verification before adding domain to Plesk.

    4 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    3 comments  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    open discussion  ·  IgorG responded

    Thank you for your input. We will consider this functionality in upcoming releases if it is popular. Everyone, please continue voting for this feature if you consider it important.

    IG

    Laurent Chouraki supported this idea  · 

  15. add option to preload hsts

    8 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    1 comment  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  16. DKIM Weekly Rotation of key, with new 'selector' where previous selector is removed the next week

    3 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  17. Automatic/option for hiding of Plesk, PHP, Apache, Nginx, Wordpress, Drupal, etc. 'reveals'

    2 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    open discussion  ·  AdminPlesk Staff (Community Manager, Plesk International GmbH) responded

    Thank you for your idea! We will consider this functionality in upcoming releases if it will be popular.

    Everyone, please continue voting for this feature if you consider it important.

    Here I'd like to add, though, that in the real world attackers simply test a website against all known vulnerabilities, regardless what webserver, PHP or other software version they detect. Actually, such version information are of no interest, they simply drive tests against all known flaws. So adding the feature will probably not help against hacking attempts.

    -- PD

    Laurent Chouraki supported this idea  · 

  18. For security reasons: Turn off outputting PHP Version and also Webserver Version

    13 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    1 comment  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  19. add time-expiring fail2ban whitelist entries

    2 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 

  20. Make more Jails for Fail2Ban e.g. mysql error log

    28 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    10 comments  ·  Feature Suggestions » Security  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Laurent Chouraki supported this idea  · 
← Previous 1

Feedback and Knowledge Base

(thinking…)