Stefan
My feedback
-
3 votes
Thank you for your input! We will consider this functionality for the upcoming releases if it becomes popular enough.
Everyone, please continue voting for this feature if you consider it important.
—
IGStefan supported this idea ·
-
978 votes
Stefan supported this idea ·
-
200 votes
Could you clarify the case:
1. Do you want to clean-up your mailbox?
2. Do you want to clean up the mailbox(es) of your customers?Could you also clarify why do you need such functionality in Plesk? f.e. why don’t you do the same in mail client?
SE
Stefan supported this idea ·
-
444 votesopen discussion ·
AdminSergey L (Director of Program Management, Plesk International GmbH) responded
We have serious doubts this function can really increase server security:
1) Plesk has built-in protection against brute-force on login – it will lock the login form. So no one can try multiple attempts
2) Arbitrary login name adds very little guess-complexity to a proper password. If you have concerns for your login brute-forced – add another 5-7 characters into your password and feel safe.As changed login name is still very likely to be some sort of vocabulary word or derived from your other account name – this function would only give a false sense of better security. Your security strength is in complex password, not in a complex login name. If you have one good password, you don’t need to treat login as your “second password” – one good password is enough.
As for concerns that default password requirement is set in “weak”, that fail2ban module is not…
Stefan supported this idea ·
-
270 votes
This is a valid request, so we’ll look into it. There is no ETA at the moment, but we would really appreciate you voting for this request so that we can accurately assess its popularity relative to other features.
The original request contains a manual solution, so, we consider to automate it. Please, add a comment if your case will not be solved with that solution.
Thanks in advance!
— rk
Stefan supported this idea ·