Christian Heutger

My feedback

  1. 443 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    31 comments  ·  Feature Suggestions » Web / SSL  ·  Flag idea as inappropriate…  ·  Admin →
    Christian Heutger commented  · 

    I'm not sure, if that's the best place, but there seems to be a "bug" in your current SEO safe redirects setup regarding HSTS and primary using the HSTS preload list.

    This list requires, that the headers are sent from https://example.com (maybe redirected by http://example.com and not first redirecting to http://www.example.com and then https://www.example.com) as the preload submission tool rejects such redirects.

    So your SEO safe redirects are working somehow the "wrong order", if HSTS submission is planned.

    Christian Heutger supported this idea  · 
  2. 32 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Feature Suggestions » Security  ·  Flag idea as inappropriate…  ·  Admin →
    Christian Heutger commented  · 

    Fully agree, for VPS as well as for Raspberry Pi there are many install scripts on how to install OpenVPN, Sophos UTM and others integrate OpenVPN as well, however none of such setups is such restricted and unusable as the Plesk VPN. Also need to adjust to use with MacOS Viscosity.

    Christian Heutger supported this idea  · 
  3. 89 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    9 comments  ·  Feature Suggestions » Mail  ·  Flag idea as inappropriate…  ·  Admin →
    Christian Heutger commented  · 

    I would welcome rspamd. SA needs very much tweaks (additional to post-greet and rbl tweaks on postfix) to get close: Pyzor, Razor(2), DCC, adjustable/addable different rulesets, special plugins, GeoIP filtering, bayes could be fed with spam by spam archives like http://artinvoice.hu/spams/, should be tweaked by KAM rules etc. Look at my post on Proxmox Mail Gateway which is an antispam gateway, but also need tweaks. Great would be to have all of this in Plesk. A global bayes database for all Plesk users may help.

    Christian Heutger supported this idea  · 
  4. 1 vote
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Feature Suggestions » Security  ·  Flag idea as inappropriate…  ·  Admin →
    Christian Heutger shared this idea  · 
  5. 41 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Feature Suggestions » Security  ·  Flag idea as inappropriate…  ·  Admin →
    Christian Heutger supported this idea  · 
  6. 17 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    open discussion  ·  2 comments  ·  Feature Suggestions » Security  ·  Flag idea as inappropriate…  ·  Admin →
    Christian Heutger commented  · 

    For the first step would be great to automatically apply:

    plesk sbin sslmng -vvv --strong-dh --dhparams-size=2048

    And add:

    plesk sbin sslmng --ciphers="ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA" --protocols="TLSv1.2" --services="proftpd sw-cp-server nginx apache autoinstaller dovecot" --custom -vvv

  7. 8 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    open discussion  ·  5 comments  ·  Feature Suggestions » Security  ·  Flag idea as inappropriate…  ·  Admin →
    Christian Heutger commented  · 

    There are many issues with selinux enabled, so that's no support.

    Christian Heutger supported this idea  · 
  8. 13 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Feature Suggestions » Security  ·  Flag idea as inappropriate…  ·  Admin →
    Christian Heutger supported this idea  · 
    Christian Heutger shared this idea  · 
  9. 274 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    66 comments  ·  Feature Suggestions » Plesk (general)  ·  Flag idea as inappropriate…  ·  Admin →
    Christian Heutger supported this idea  · 
    Christian Heutger commented  · 

    Support the idea for multi-homed environment requiring a local IP for local access in addition with a VPN IP for VPN access. With an alias I could choose a local and a VPN name.

  10. 14 votes
    Sign in
    (thinking…)
    Sign in with: facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Feature Suggestions » Security  ·  Flag idea as inappropriate…  ·  Admin →
    Christian Heutger shared this idea  · 

Feedback and Knowledge Base