Change Log for Plesk Obsidian
Learn how to install Plesk updates
Legend:
new feature
functionality improved
issue resolved
pay attention
SOGo Webmail 1.1.6
30 October 2024
- Updating SOGo to version 5.9.0 or later now also updates the SOGo database schema. (EXTPLESK-6100)
Plesk Obsidian 18.0.65
29 October 2024
Whatâs New?
-
This release, we invested a lot of resources into improving Docker support in Plesk. We overhauled the Docker extension graphical interface to make it modern and more convenient, added Docker Compose support, fixed many pesky bugs, and more! Here are some of the highlights:
- As per UserVoice request, it is now possible to deploy Docker Compose YAML files (but not Dockerfiles or any other files required by an application), and also to modify and update the stacks from the new âStacksâ tab. Use copy and paste, or upload them from local storage. Typical operations on stacks are supported, such as:
up
(includingpull
andforce-recreate
),stop
, anddown
. - The main Docker page was split into the âContainersâ and âImagesâ tabs.
- The âConfigurationsâ page is now the âEnvironmentsâ tab.
- The ability to pull images was added to the extensionâs interface.
- As per UserVoice request, Docker containersâ configuration (but not data in Docker volumes) is now included in Plesk backups.
To enable these features, add the following lines to the
panel.ini
file:[ext-docker] newUI = on
- As per UserVoice request, it is now possible to deploy Docker Compose YAML files (but not Dockerfiles or any other files required by an application), and also to modify and update the stacks from the new âStacksâ tab. Use copy and paste, or upload them from local storage. Typical operations on stacks are supported, such as:
- Added a helper to assist users with connecting their mail clients to the âMail Accountsâ page. The Configure Mail Clients button helps users turn on autodiscover, and also provides concise instructions on how to connect their Mozilla Thunderbird, Gmail on Android, iOS Mail, or Outlook 2016 or earlier client to their Plesk mailboxes.
- As per UserVoice request, added the ability to quickly empty mailboxes of all mail to the âMail Accountsâ page. The Empty Mailbox button enables users to remove all mail, both incoming and outgoing, from one or more mailboxes with a click.
-
A new version of the Multi-Factor Authentication extension will be released together with Plesk Obsidian 18.0.65. Here are some of the highlights:
- The âAccountsâ tab was added. It lists all Plesk user accounts and their MFA statuses.
- The ability to deactivate MFA for dependent users was added.
- The MFA secret key is now regenerated when the MFA feature is reactivated for a user.
-
We are glad to introduce the beta version of the WHMCS Installer extension. The extension helps you install and configure WHMCS by guiding you through the essential steps: installing PHP and ionCube Loader, configuring and installing WHMCS, creating the database, and securing the system.
We would love to hear your feedback about this extension at beta-extensions@plesk.com.
- (Plesk for Windows) MariaDB 11.4 is now supported. It is the latest âlong-term supportâ version from the vendor. Support for MariaDB 11.4 in Plesk for Linux was added in Plesk Obsidian 18.0.64.
Feature Improvements
-
(Plesk for Linux) The Performance Booster feature will be rolled out to all supported Plesk Obsidian installations. The feature enables Plesk administrators to tweak PHP, web server, and database server settings to significantly improve the hosted websitesâ performance.
To disable the feature, add the following lines to the panel.ini file:
[ext-performance-booster] enabled=false
- Thirteen various bugs were fixed to improve the CentOS 7 to AlmaLinux 8 conversion tool.
- Improved the look of the subscription creation progress drawer when creating a subscription with a long name.
- Added the ability to copy the DNS records values shown in the âHow to configure external DNSâ pop-up window with a click. (PPPM-14594)
- Added the separate
/usr/share/psa-roundcube/config/config.local.php
file to the Roundcube webmail configuration. This file can be used to store customerâs customizations, so that they would not be lost when updating Roundcube. (PPPM-14193)
Fixed Product Issues
- The âlast modifiedâ timestamps on the usersâ files restored from backup (including mail) are no longer reset to the current date upon restoration. This also prevents files restored from backup from being unnecessarily included in incremental backups. (PPPM-6333, PPPM-10282)
- Fixed the issue where the Log Browser extensionâs database would keep growing indefinitely. (EXTPLESK-5717)
- Fixed the issue where the subscription creation progress drawer was malformed when creating a subscription with a long name.(UILIB-1535)
- It is no longer possible to create a website named âgmail.comâ in Plesk if the âProhibited Domain Namesâ feature is enabled. (PPP-66467)
- Fixed the issue where clicking a DNS record of a domain alias to edit it resulted in the â500 Error Call to a member function setOption() on false Type Error Message Call to a member function setOption() on false File Https.php Line 60â error. (PPPM-14633)
- Disabled and suspended websites are no longer counted when calculating IP addressesâ usage statistics. (PPPM-14608)
- Fixed the issue where configuring FTP storage on a Microsoft FTP server failed with the âUnable to upload the file to the storageâ error if FTPS was enabled. (PPP-66466, PPP-66468)
Linux
- Fixed the issue where, in the Log Browser extension interface, the âProcessedâ counter kept increasing for bounced emails even when they were no longer being processed by the Plesk mail server. (EXTPLESK-5791)
- Fixed the issue where, on AlmaLinux 9 servers, disabling PHP for a domain switched the domainâs PHP handler to the
php-fpm
used by Plesk instead of disabling PHP support completely. (PPP-66389) - Fixed the issue where emails containing certain characters could not be sent if the âLimitations on outgoing email messagesâ feature was enabled in Plesk. (PPPM-14624)
- Fixed the issue where, under specific circumstances, log rotation could fail due to the incorrect umask settings. (PPPM-14621)
- Fixed the issue where, after a failed domain name change attempt, certain services for the website were no longer operational. (PPPM-14571)
- Fixed the issue where, after changing the default mailbox size for a subscription, the mailboxes owned by the subscription whose size was customized would have their size changed to the new default value if it was greater than the specified custom mailbox size. (PPPM-14557)
- Fixed the issue where installing an additional license key not associated with any Plesk license key via Tools & Settings > License information > Install Key would fail with the âParent key not provided (Error code: 2)â error. (PPPM-14527)
- Fixed the issue where sending mail via the
sendmail
utility could fail during periods of high write load on the database server. (PPPM-14464) - Fixed the issue where, when being logged in to the Plesk graphical interface via port 443, changing any ModSecurity settings would result in the operation hanging indefinitely and failing to finish. (PPPM-14448)
- Fixed the issue where, on CentOS 7 servers with Plesk installed, running the
plesk sbin fsmng --check-plesk-packages
command could produce unnecessary and misleading errors related to certain installed packages. (PPPM-14586) - Fixed the issue where running the CentOS 7 to AlmaLinux 8 conversion tool (centos2alma) on a server with curl 8 installed would result in a failure during the preupgrade stage, and also in yum and dnf being unable to run. (PAUX-6474)
- Fixed the issue where running the CentOS 7 to AlmaLinux 8 conversion tool (centos2alma) or the CloudLinux 7 to CloudLinux 8 conversion tool (cloudlinux7to8) would result in a failure to adopt repositories under specific circumstances. (PAUX-6470)
- Fixed the issue where it was not possible to install IonCube PHP Loader via the Plesk graphical interface. (PPPM-14640)
- Fixed the issue where, on Debian 11 servers with Plesk installed, signing up to a Mailman 3 mail list using a Google Mail email account (*@gmail.com) would not result in the signup email being delivered to the *@gmail.com mailbox. (PPPM-14619)
Windows
- Fixed the issue where, under specific circumstances, operations on Microsoft SQL databases could hang indefinitely while consuming large amounts of RAM. (PPPM-14607)
- Fixed the issue where, under specific circumstances, an invalid backup could be created with no errors, but could not be restored from. (PPPM-14605)
- Unnecessary utility calls are no longer logged to the
php_error.log
when a subscription is suspended or activated. (PPPM-14583) - Fixed the issue where running the
plesk repair mssql
command would not restore Microsoft SQL database users present in Plesk, but missing from the Microsoft SQL database server. (PPPM-14431)
Changes in Third-Party Components
- Updated libcurl used by Plesk and Plesk Installer to version 8.10.1.
Linux
- Updated php-redis to version 6.1.0, with CentOS 7 compatibility patch.
Windows
- Updated ASP.NET Core 8.0 to version 8.0.10.
- Updated ASP.NET Core 6.0 to version 6.0.35.
- Updated Microsoft Visual C++ 2017 Redistributable to version 14.40.33816.
- Updated OpenSSL used by Plesk and Plesk Installer to version 3.0.15.
Docker 2.0.0
29 October 2024
-
A new âStacksâ tab is now available in the Docker extension interface. It is now possible to deploy Docker Compose YAML files (but not Dockerfiles or any other files required by an application) using copy and paste, or upload them from local storage. Typical operations on stacks are supported, such as: up (including pull and force-recreate), stop, and down. The extension enables the users to modify and update the stacks.
To enable this feature, add the following lines to the panel.ini file:
[ext-docker] newUI = true
-
The Docker extension graphical interface has been overhauled to make it modern and more convenient. Here are some of the highlights:
- The main Docker page was split into the âContainersâ and âImagesâ tabs.
- The âConfigurationsâ page is now the âEnvironmentsâ tab.
- The ability to pull images was added to the extensionâs interface.
To enable this feature, add the following lines to the panel.ini file:
[ext-docker] newUI = true
Note: The new interface will be gradually enabled by default on Plesk servers starting from October 26, 2024; while the old one will be deprecated in the future releases. See Feature Deprecation Plan for details.
-
Backing up and restoration of containersâ configuration is now supported.
- Installing the extension now removes the repository configuration created by the get.docker.com script. (EXTPLESK-5898)
- Reinstalling the extension on Debian-based OSes now correctly recreates the repository configuration. (EXTPLESK-5898)
PHP Updates
28 October 2024
- Updated PHP 8.2 to version 8.2.25.
- Updated PHP 8.3 to version 8.3.13.
Linux
- Updated Redis to version 6.1.0 for PHP 8.1, 8.2, 8.3.
Multi-Factor Authentication 1.1.0
28 October 2024
- Added the âAccountsâ tab with a list of all Plesk user accounts and their MFA statuses.
- Added the ability to deactivate MFA for dependent users.
- An MFA secret key is now regenerated when the MFA feature is reactivated for a user.
Log Browser 1.9.5
23 October 2024
- Fixed the issue where the Notification Settings page crashed on Windows. (EXTPLESK-6072)
Site Import 1.8.10
22 October 2024
- Fixed the issue where, during migration, the import of email messages failed because the mail dump stream writer would introduce an unnecessary \r character to the output stream. (PMT-5368)
- Migration from a source using a code page other than 437 no longer finishes with the ââutf-8â codec canât decode byteâ error. (PMT-5387)
- Migration no longer finishes with the âAttributeError: âstrâ object has no attribute âdecodeââ exception. (PMT-5383)
Plesk Migrator 2.26.11
22 October 2024
- Fixed the issue where, during migration, the import of email messages failed because the mail dump stream writer would introduce an unnecessary \r character to the output stream. (PMT-5368)
- Migration from a source using a code page other than 437 no longer finishes with the ââutf-8â codec canât decode byteâ error. (PMT-5387)
- Migration no longer finishes with the âAttributeError: âstrâ object has no attribute âdecodeââ exception. (PMT-5383)
- Mail import on Plesk for Windows no longer fails with the âFailed to backup mail messagesâ error. (PMT-5382)
- The RPC agent no longer throws the ââTypeError: can only concatenate str (not âbytesâ) to strââ exception during migrations between two Plesk for Windows servers. (PMT-5380)
- Plesk Migrator no longer converts additional nginx directives to the binary format. (PMT-5379)
- Plesk Migrator no longer fails when a non-SSL connection to source server is used. (PMT-5378)
- Plesk Migrator no longer fails to read the âwindows-agent-use-sslâ parameter from the migration configuration file. (PMT-5377)
Plesk Obsidian 18.0.64 Update 1
9 October 2024
- Internal improvements.
- It is again possible to restore a backup of a subscription which has a dedicated IP address if there are no free IP addresses on the server. (PPP-66418)
PHP Updates
30 September 2024
- Updated PHP 8.3 to version 8.3.12.
- Updated PHP 8.2 to version 8.2.24.
- Updated PHP 8.1 to version 8.1.30.
Plesk Premium Email, powered by Kolab 16.15.8-0
18 September 2024
- Added compatibility with MariaDB binary names.
Plesk Obsidian 18.0.64
17 September 2024
Whatâs New?
- We are excited to announce the launch of our updated âWhatâs Newâ page for Plesk! The page highlights the key features and major benefits of Plesk Obsidian helping you to gain a deeper understanding of our product. Explore it now at Whatâs New in Plesk Obsidian.
- As per UserVoice request, it is now possible to configure a smarthost or relayhost in Plesk on the server level. For details, refer to the following topic.
- (Plesk for Linux) MariaDB 11.4 is now supported. It is the latest âlong-term supportâ version from the vendor.
- (Plesk for Linux) The Website Log Check feature will be gradually rolled out to all Plesk Obsidian installations version 18.0.64 and later. The feature helps to troubleshoot a websiteâs availability issues by scanning the web server logs for common issues and suggesting ways to resolve them. Learn more about Website Log Check.
-
The new customizable Home dashboard in Service Provider View is now enabled by default on all Plesk Obsidian servers. It helps you to keep track of your server and your business by adding, removing, and rearranging informational blocks showing all sorts of data. To disable the feature, add the following lines to the
panel.ini
file:[navigation] newHomeView.enabled = false
- As per UserVoice request, to the Docker extension, added support for AlmaLinux 9 and support for websocket traffic on Docker Proxy Rules.
-
Improved the dist-upgrade procedure and migration:
- From Plesk on Ubuntu 20 by introducing PHP 7.3 provided by Plesk.
- From Plesk on Ubuntu 22 by introducing PHP 7.0 provided by Plesk.
- From Plesk on Debian 11 by introducing PHP 7.2 provided by Plesk.
Websites after migration or dist-upgrade now seamlessly adopt a new PHP version without additional manual patches.
Note: PHP versions 7.0 - 7.3 are outdated and no longer supported by the vendor (PHP Group), so they will receive no security updates. We recommend that you use these old PHP versions only for the dist-upgrade or migration purposes, and then switch to a newer supported PHP version.
- With the upgrade to Plesk Obsidian 18.0.64, Kaspersky Anti-Virus for Servers will be automatically removed from the servers it is installed on. We recommend that you migrate to Sophos Anti-Virus for Servers. It is fully integrated with Plesk for both Linux and Windows, and also included in Power Pack and Hosting Pack.
- The CloudLinux team extended the Imunify360 extension with the improved ImunifyAV/AV+ and renamed the Imunify360 extension to Imunify.
Existing users of the free and paid ImunifyAV extension (the
revisium-antivirus
ID) can upgrade to the new ImunifyAV/AV+ at no additional cost. Learn more about benefits of the revamped Imunify and how to upgrade to it.
Feature Improvements
- The Plesk Repair feature in the UI can now fix MariaDB/MySQL server permissions.
-
Revamped the Disk Space section in the Repair Kit extension:
- Disk and Plesk directories are now shown in the Disk Space section.
- Warnings and alerts are now shown only for disks that contain the directories mentioned above.
- Added a message with general recommendations on what to do if the disk space is not sufficient.
-
Improved the Track Email Delivery feature in Websites & Domains > domain > the âMailâ tab. If there are one or more delayed emails in the queue, an orange circle is now shown next to the âMailâ tab name.
To disable this feature, add the following lines to the
panel.ini
file:[ext-log-browser] showEmailBadge = false
-
As per UserVoice request, in the Plesk DNSSEC extension, introduced CLI commands to sign, unsign, and show the current settings of a DNS zone. See the examples of use below:
-
To sign a domain with default settings:
plesk ext dnssec sign âdomain-name example.com
-
To view DNSSEC information for a domain:
plesk ext dnssec info âdomain-name example.com
-
To unsign a domain:
plesk ext dnssec unsign âdomain-name example.com
-
- Added the following options to the ModSecurity CLI:
-waf-rule-filter-ids
,-waf-filter-by-tags
,-waf-filter-by-regexp
, and-waf-additional-settings
. For details, see the CLI guides for Linux and Windows. - Unified and updated the messages shown when Plesk license limits are reached. The messages about upgrading a Plesk license to a higher version are now more helpful, clear, and informative.
- The Node.js Toolkit now supports JavaScript modules (MJS files).
- It is now possible to use the âForgot passwordâ feature via the CLI: the
plesk bin admin --send-reset-link
command with the-user
or-email
options generates a password reset link for the specified user and sends it via email.
Future Plans
-
Starting from Plesk Obsidian 18.0.65, the ImunifyAV extension will be removed from the Recommended and Full presets. Instead, the Imunify extension (former Imunify360) will be installed by default on all new Plesk installations. If, for some reason, you want to disable the extension, add the following lines to the
panel.ini
file:[extensions] blacklist = imunify360
-
The Horde webmail has been deprecated. Its complete removal is scheduled on April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
Fixed Product Issues
- The âTrack Email Deliveryâ tab in Log Browser now correctly shows the time spent on processing an email. (EXTPLESK-5765)
- Returned the yellow highlight for the status of delayed emails in Websites & Domains > domain > the âMailâ tab > Track Email Delivery. The highlight went missing in Plesk Obsidian 18.0.63 and earlier. (EXTPLESK-5762)
- Search in Users can now find users with empty contact names (when only a userâs email address was provided). (PPPM-14595)
- Mass email messages are no longer sent to excluded customers. (PPPM-14580)
- Restoring a backup from S3-compatible storage no longer leaves already imported files if the restoration was stopped. (PPPM-14578)
- When restoring a subscription from a server backup, the state of the âRedirect visitors from HTTP to HTTPS via a SEO friendly 301 redirectâ option is now preserved. (PPPM-14569)
- Restoring selected objects (âFiles of domainsâ) from a backup can no longer remove configured scheduled tasks. (PPPM-14531)
- Restoring a subscription no longer restores the first uploaded SSL/TLS certificate instead of the selected one if both certificates were generated using the same private key. (PPP-34102)
- The
plesk bin statistics --calculate-list
command with thedomain-names
ordomain-ids
options again calculates statistics only for the specified domains. (PPPM-14562) - Lack of disk space in configured remote storage no longer causes failure of local scheduled backups. (PPPM-14549)
- Subscriptions > subscription is now opened on mobile devices if the limits for the subscriptionâs domains, subdomains, and aliases are set to 1, 0, and 0, respectively. (PPPM-14548)
- Running the
plesk bin subscription --update-php-settings
command now preserves custom PHP settings of websites. (PPPM-14364)
Linux
- The domain card is now opened if the server MySQL/MariaDB configuration is modified and an APS application is installed. (PPPM-14574)
- The underscore character is now shown in the SSH Terminal extension opened in Firefox. (PPPM-14573)
- It is again possible to remove IP addresses of resellers. (PPPM-14567)
- Mail Server Repair of the Plesk Repair feature in the UI no longer applies incorrect permissions to
/etc/domainkeys/example.com/default
. (PPPM-14546) - The SSH Terminal extension can now connect to Plesk on Ubuntu 24. (PPPM-14544)
- If the
vhosts_blkio
feature is not available, the Disk Read/Write limits are now hidden in the Cgroups Manager interface. (PPPM-14526) - Restoring a backup in Plesk with Mailman 3 no longer sends welcome emails to all subscribers in all mailing lists. (PPPM-14515)
- HTTP/3 now works in nginx if the value of
worker_processes
in the/etc/nginx/nginx.conf
file is greater than 1. (PPPM-14480) - PHP session cleaner no longer sends false positive error notifications under certain circumstances. (PPPM-14472)
- The
dnf update
command now works in Plesk on AlmaLinux 8 with the SOGo Webmail extension installed if it was updated to 1.1.3 from version 1.1.1 or earlier. (EXTPLESK-5529)
Windows
- Selecting the preferred domain for a subscription now creates the corresponding rewrite rule âSEO-safe 301 redirectâ in IIS. (PPPM-14543)
Changes in Third-Party Components
Linux
- Updated PHP used by Plesk to version 8.3.10.
- Updated nginx to version 1.26.2.
- Updated Phusion Passenger to version 6.0.23.
- Updated OWASP ModSecurity CRS to version 4.5.0.
Windows
- Updated PHP used by Plesk to version 8.3.11.
- Updated ASP.NET Core 8.0 to version 8.0.8.
- Updated ASP.NET Core 6.0 to version 6.0.33.
- Updated SpamAssassin to version 4.0.1.
SSL It! 1.15.5
17 September 2024
-
The âTLS versions and ciphers by Mozillaâ feature is now hidden until we fix the known issues related to configuring outdated ciphers and causing troubles on a server. To bring it back at your own risk, add the following lines to the panel.ini file:
[ext-sslit] ciphersEnabled = true
SSL It! 1.15.4
16 September 2024
- Now the correct domain page opens when clicking its link in the SSL It! extension. (EXTSSLIT-2113)
SOGo Webmail 1.1.5
16 September 2024
- Updating the extension to the latest version in Plesk running on AlmaLinux 8 no longer fails because of the gnustep package. (EXTPLESK-5529)
- Calendar Categories are once again shown correctly when Plesk is running in any language other than English. (EXTPLESK-5677)
- It is once again possible to install Nightly SOGo Groupware packages in Plesk on Ubuntu 24.04. (EXTPLESK-5724)
Log Browser 1.9.3
16 September 2024
- Fixed the issue where a user could not delete entries in the Track Email Delivery UI. (EXTPLESK-5728)
- Log Browser now shows the correct status for inactive processes. (EXTPLESK-5759)
- Track Email Delivery now correctly displays the time spent on processing mail. (EXTPLESK-5765)
Plesk DNSSEC 1.5.1
9 September 2024
-
Introduced CLI commands to sign, unsign, and show current settings of a DNS zone.
Examples
To sign a domain with default settings:
plesk ext dnssec sign --domain-name example.com
To view DNSSEC information for a domain:
plesk ext dnssec info --domain-name example.com
To unsign a domain:
plesk ext dnssec unsign --domain-name example.com
Site Import 1.8.9
5 September 2024
- Import of websites with .NET framework version less than 4 no longer fails during the migration process with the âa bytes-like object is required, not âstrââ error. (PMT-5370)
Plesk Migrator 2.26.9
5 September 2024
- Import of websites with .NET framework version less than 4 no longer fails during the migration process with the âa bytes-like object is required, not âstrââ error. (PMT-5370)
Docker 1.9.1
5 September 2024
- Added support for websocket traffic on Docker Proxy Rules.
- Internal improvements.
SSH Terminal 1.3.8
4 September 2024
- The underscore character is now rendered in Firefox. (PPPM-14573)
- Custom address and port configurations of the
sshd
daemon are now supported in Plesk on Ubuntu 24.04. The Systemd socket activation sshd configurations are now supported on all OSes. (PPPM-14544)
Plesk Premium Email, powered by Kolab 16.15.7-3
4 September 2024
- Added support for Ubuntu 24.04.
- Added support for PHP 8.3.
Plesk Obsidian 18.0.63 Update 4
3 September 2024
Fixed Product Issues
- Fixed the issue where the âException: PHP Warning: Undefined array key âdescriptionââ error was shown under specific circumstances. (PPP-66058)
Linux
- Fixed the issue where a BIND DNS server did not start when the limit of resource records in a DNS zone was exceeded. (PPP-66001)
- Repairing InnoDB corruptions in the
/var/lib/mysql/ibdata1
system tablespace file or in the mysql database no longer crashes the MariaDB server. (PPP-66131) - Updating MariaDB to a newer version no longer fails in Plesk running on Ubuntu 20.04. (PPP-66132)
Node.js Toolkit 2.3.15
3 September 2024
- Additional deployment actions in the Git extension can now again run the
npm
andyarn
commands if these package managers were installed manually for the system user with the chroot environment. (EXTNODEJS-338)
Plesk Migrator 2.26.8
30 August 2024
- Migration no longer fails if the
panel.ini
file of the target server contains custom array-type PHP parameters (for example,settings.fpm.pm.max_children.values[]
). (PMT-5367)
Site Import 1.8.8
28 August 2024
- Fixed the issue where, during migration, the import of email messages failed with the âfailed to backup mail messages: a bytes-like object is required, not âstrââ error. (PMT-5373)
Plesk Migrator 2.26.7
28 August 2024
- Fixed the issue where, during migration, the import of email messages failed with the âfailed to backup mail messages: a bytes-like object is required, not âstrââ error. (PMT-5373)
Plesk Obsidian 18.0.63 Update 3
26 August 2024
Fixed Product Issues
- Fixed the issue where the âException: PHP Warning: Undefined array key âdescriptionââ error was shown under specific circumstances. (PPP-66058)
Linux
- After updating to Plesk Obsidian 18.0.63, opening the Fail2ban page no longer fails with the âServer Error 500 PleskUtilExceptionâ error message. (PPP-66006)
- Fixed the issue where, on Debian servers, Plesk Update Manager failed to update system packages to the latest version. (PPPM-14558)
Site Import 1.8.7
23 August 2024
- Fixed the issue where, during the migration, the error message about limits being exceeded was hidden by the âcannot use a string pattern on a bytes-like objectâ error message. (PMT-5365)
- Fixed the issue where, during the migration, the error message about issues related to creating a database dump was hidden by the âcannot use a string pattern on a bytes-like objectâ error message. (PMT-5369)
Plesk Migrator 2.26.6
23 August 2024
- Fixed the issue where, during the migration, the error message about limits being exceeded was hidden by the âcannot use a string pattern on a bytes-like objectâ error message. (PMT-5365)
- Fixed the issue where, during the migration, the error message about issues related to creating a database dump was hidden by the âcannot use a string pattern on a bytes-like objectâ error message. (PMT-5369)
Site Import 1.8.6
22 August 2024
- Fixed the issue where, during the migration, the import of MySQL databases failed with the âunhashable type: âlistââ error. (PMT-5371)
- Fixed the issue where, during a Plesk to Plesk migration, the migration failed with the âFailed to read IP mapping fileâ error. (PMT-5366)
Plesk Migrator 2.26.5
22 August 2024
- Fixed the issue where, during the migration, the import of MySQL databases failed with the âunhashable type: âlistââ error. (PMT-5371)
- Fixed the issue where, during a Plesk to Plesk migration, the migration failed with the âFailed to read IP mapping fileâ error. (PMT-5366)
Plesk Obsidian 18.0.63 Update 2
19 August 2024
Fixed Product Issues
Linux
- Fixed the issue where Courier IMAP did not start after updating to Plesk Obsidian 18.0.63. (PPPM-14541)
Site Import 1.8.5
19 August 2024
- Fixed the issue where, during the migration, the import of MySQL databases failed with the âERROR at line 1: Unknown commandâ error. (PMT-5358)
Plesk Migrator 2.26.4
19 August 2024
- Fixed the issue where, during the migration, the import of MySQL databases failed with the âERROR at line 1: Unknown commandâ error. (PMT-5358)
- Fixed the issue where, during a Plesk to Plesk migration, the content of MySQL databases could not be imported. (PMT-5361, PMT-5362)
Log Browser 1.9.1
19 August 2024
-
If there are one or more delayed emails in the queue, an orange circle is now shown next to the âMailâ tab name.
To disable this feature, add the following lines to the
panel.ini
file:[ext-log-browser] showEmailBadge = false
- Fixed the issue where the Log Browser extension would sometimes show the unnecessary and misleading âfread(): Argument #2 ($length) must be greater than 0â. (EXTPLESK-5713)
- Fixed the issue where the Log Browser extension would sometimes show the unnecessary and misleading âValueError: str_repeat(): Argument #2 ($times) must be greater than or equal to 0â. (EXTPLESK-5723)
Site Import 1.8.4
15 August 2024
- Site import no longer fails with the âNo module named /âurllib2/ââ error. (PMT-5363)
Site Import 1.8.3
14 August 2024
- Migration of a domainâs MSSQL databases no longer fails with the âNo module named /âpymssql/ââ error. (PMT-5357)
Plesk Migrator 2.26.3
14 August 2024
- Migration of a domain/âs MSSQL databases no longer fails with the âNo module named /âpymssql/ââ error. (PMT-5357)
Site Import 1.8.2
13 August 2024
- The pre-check process before migration no longer fails with the âtypeError: a bytes-like object is required, not /âstr/â in website_availability_checkerâ error. (PMT-5355)
Plesk Migrator 2.26.2
13 August 2024
- Migration of a server no longer fails with the âInvalid content of file was transferred with /ârsync/ââ error (PMT-5356)
- The pre-check process before migration no longer fails with the âtypeError: a bytes-like object is required, not /âstr/â in website_availability_checkerâ error. (PMT-5355)
Plesk Obsidian 18.0.63 Update 1
12 August 2024
Changes in Third-Party Components
Linux
- Updated Roundcube to version 1.6.8.
- Updated Roundcube 1.4.15 to fix the CVE-2024-42008, CVE-2024-42009 and CVE-2024-42010 vulnerabilities.
Site Import 1.8.1
7 August 2024
- Fixed the issue where migration of mailboxes with emails that contained some Latin-1 encoded symbols could fail. (PMT-5354)
Plesk Migrator 2.26.1
7 August 2024
- Migration of a domain no longer fails with the âObject of type filter is not JSON serializableâ error if the black list or white list is enabled in the spam protection settings of the domainâs mail. (PMT-5353)
- Fixed the issue where migration of mailboxes with emails that contained some Latin-1 encoded symbols could fail. (PMT-5354)
- (Plesk for Windows) The pre-check process before migration no longer fails with the âTypeError: a bytes-like object is required, not âstrââ error. (PMT-5350)
Plesk Obsidian 18.0.63
6 August 2024
Whatâs New?
-
(Plesk for Linux) We are glad to present the âInnoDB repairâ tool you can use to check for and attempt to automatically fix InnoDB corruption in MariaDB databases. InnoDB corruption is a serious issue, preventing the database server from working properly. Fixing it by hand requires time and expertise.
You can access the tool by browsing https://
:8443/repair/ and authenticating with the Plesk administrator credentials. -
Re-worked the âMail Queueâ menu to make it easier to track the status of messages and identify and resolve issues.
To enable this feature, add the following lines to the
panel.ini
file:[ext-log-browser] mailQueue.serverWide = true
- If you plan to use a domain for mail hosting only, you can now select the new âMail Hostingâ option in the âAdd Domainâ wizard.
- We are glad to present a tool to convert your CloudLinux 7 servers to CloudLinux 8! The ready to use CLI tool is available in our GitHub repository.
-
Plesk Obsidian on Ubuntu 20.04, AlmaLinux 8, and AlmaLinux 9 now comes with PHP 7.0 support. PHP 7.0 can be installed via Plesk Installer.
This should make updating servers running an earlier OS version smoother. However, keep in mind that PHP 7.0 is outdated, and no longer receives security updates. We recommend updating web applications that require PHP 7.0 to use up-to-date PHP versions.
-
You can now resell Sitejet Commerce. To do so, add the following lines to the
panel.ini
file:[ext-plesk-sitejet] commerceEnabled=true commerceBuyUrl=https://example.com/link-to-the-commerce-product-in-your-store
- Implemented a feature in Sitejet that enables users to seamlessly substitute a missing logo with text (and switch back to a logo if necessary).
- The Hungarian language is now available for the Sitejet Website Builder interface
- New Sitejet website template: Eco-Con.
- New Sitejet website template: WePaint.
Feature Improvements
-
On Plesk Obsidian servers with a custom DNS backend enabled, Plesk now sends the following messages to the custom integration script:
- A âcreateâ message when a domain is created.
- A âdeleteâ message when a domain is removed.
- An âupdateâ message when a domain is suspended, disabled, or enabled, or when a domainâs DNS service is enabled or disabled, or when the Plesk DNS service for a domain is switched from primary to secondary, or vice versa.
To enable this feature, add the following lines to the
panel.ini
file:[dns] newEvents = true
- Added a tooltip to the domain-level âTrack Email Deliveryâ pages explaining why it is not possible to resend or remove sent, rejected, and bounced emails.
- Added a tooltip to the domain-level âTrack Email Deliveryâ pages advising to select one or more deferred emails when attempting to click Resend with no deferred emails selected.
- The support for DNS HTTPS records is now enabled by default on all Plesk Obsidian servers.
- The pre-configured firewall rules in Plesk cloud images were updated to enable HTTP/3 to work out of the box.
- The âCPU usageâ and âMemory usageâ informational blocks on the new Home dashboard no longer take a long time to load the data. In addition, the âMemory usageâ informational block now shows the total amount of RAM on the server.
- The Performance Booster extension now regularly checks the current database server settings and notifies the Plesk administrator when a noticeable improvement in performance can be achieved by applying the recommended settings.
- Increased the size of the input window when creating a âFetch a URLâ type scheduled task to make working with a long URL more convenient.
-
It is now possible to manually configure the maximum age of mail log entries to be processed by the Log Browser extension (in seconds). To do so, add the following lines to the
panel.ini
file:[ext-log-browser] mailQueue.firstEntryOffset = <value in seconds>
Linux
- The Fail2ban bad bots list has been updated.
- Added the ability to manually add IP addresses to the Fail2ban banned IP addresses list, both temporarily and permanently.
- Pseudo-devices with constant 100% disk usage (such as
/dev/loop
devices) are no longer shown in Tools & Settings > Server Information to avoid unnecessary confusion. - Added support for the Atomic ModSecurity rule sets in Plesk on AlmaLinux 9.
Future Plans
- Kaspersky Anti-Virus for Servers has been deprecated and is no longer available for installation. Starting from Plesk Obsidian 18.0.64, the extension will be automatically removed from the servers it is installed on. For details and recommended actions, see the Feature and Deprecation Plan and the deprecation FAQ.
Fixed Product Issues
- Fixed the issue where, on Ubuntu 24.04 servers, log entries about emails present in the server-wide mail log were absent from the domain-level âTrack Email Deliveryâ pages. (EXTPLESK-5616)
- Fixed the issue where emails sometimes showed the confusing âMailQueueList.Filter.Status.nullâ status on the domain-level âTrack Email Deliveryâ pages. (EXTPLESK-5612)
- Fixed the issue where the Log Browser extension got stuck trying to process logs with an excessively large number of entries. (EXTPLESK-5686)
- The Action Log now records changes made to the Action Log settings, including changing what actions are included in or excluded from the log, and also changing the log rotation settings. (PPP-65724)
- Fixed the issue where customers could see actions performed by other customers in the Action Log. (EXTPLESK-5654)
- Added a note clarifying that PHP settings may be overwritten by those specified in the
.htaccess
,php.ini
, and.user.ini
files to the âPHP Settingsâ page. (PPPM-14505) - Fixed the issue where the new Home dashboard page crashed on iOS devices with the âMinified React error #185â error. (PPPM-14497)
- Fixed the issue where the UI text disappeared from the buttons on the domain-level âAction Logâ pages. (EXTPLESK-5601)
- Fixed the issue where setting the mail server priority value of an MX DNS record failed with the âString cannot represent a non string valueâ error. (PPPM-14523)
- Fixed the issue where, on Plesk servers behind NAT, resetting the DNS zone for a subdomain to default resulted in the subdomainâs A record pointing to the private IP address instead of the public one. (PPPM-14509)
- Fixed the issue where the default resellersâ service plan was included in the total number of service plans on Plesk servers with a Web Admin or a Web Pro license. (PPPM-14491)
Linux
- Fixed the issue where Plesk and 360 Monitoring showed differing free disk space values. (PPP-64645)
- Corrected a misleading UI text string in the Sophos Anti-Virus for Servers extension. (PPPM-14507)
- Fixed the issue where a domainâs DNS zone could not be updated under specific circumstances. (PPPM-14503)
- Fixed the issue where a main accountâs settings could not be updated under specific circumstances.(PPPM-14501)
- Fixed the issue where restoring one or more domains with DKIM enabled from backup on a Plesk Obsidian server with DKIM disabled in server-wide mail server settings failed with the âUnable to restore domain keysâ error. (PPPM-14499)
- Fixed the issue where the
$
character could be used in the names of protected directories, which resulted in broken nginx configuration. (PPPM-14485) - Fixed the issue where selecting an SSL/TLS certificate for a domain removed the âNot selectedâ option from the âCertificateâ drop-down menu, making it impossible to unassign the certificate. (PPPM-14481)
- Fixed the issue where additional administrator accounts had access to Mail server settings and Spam filter in Tools & Settings even if Restricted Mode with default settings was in effect. (PPPM-14478)
- Fixed the issue where setting a new default SSL/TLS certificate in Tools & Settings > SSL/TLS certificates resulted in the IPv6 address being removed from Apache and nginx configuration files for webmail. (PPPM-14323)
- Fixed the issue where the utility sanitizing the content of technical reports could fail under specific circumstances. (PPPM-14522)
- Fixed the issue where renaming a domain using PHP version 8.0.30 with the âDedicated FPM application served by nginx/apacheâ handler resulted in the PHP worker process for that domain being unable to start. (PPPM-14513)
- Fixed the issue where, on AlmaLinux 8 servers, scanning the server with Rootkit Hunter resulted in unnecessary and misleading errors in the
/var/log/rkhunter.log
file. (PPPM-14494) - Fixed the issue where, on Ubuntu 24.04 servers, the âCustomer account creationâ notification would be sent to the Plesk administrator despite not being enabled. (PPPM-14492)
Windows
- Fixed the issue where a weak password would sometimes be generated for SmarterMail primary domain administrator users. (PPPM-14487)
Changes in Third-Party Components
- Updated PHP used by Plesk to version 8.3.9.
- LSAPI 8.1 is now supported in all PHP versions shipped with Plesk.
Linux
- Updated Courier-IMAP to version 5.2.7.
- Updated collectd to version 5.12.0.
- Updated Fail2ban to version 1.1.0.
Windows
- Node.js 20 is now supported.
- Node.js version 20.15.1 is now shipped with Plesk.
- Updated ASP.NET Core 8.0 to version 8.0.7.
- Updated ASP.NET Core 6.0 to version 6.0.32.
- ASP.NET Core 7.0 is no longer shipped with Plesk.
- Updated Node.js 18 to version 18.20.4.
- Node.js 16 is no longer shipped with Plesk.
- Updated Perl to version 5.40.0.
- Updated MariaDB 10.11 to version 10.11.8.
- Updated MariaDB 10.6 to version 10.6.18.
- Updated MariaDB 10.5 to version 10.5.25.
Log Browser 1.9.0
5 August 2024
-
Reworked the âMail Queueâ menu to make it easier to track the status of messages and identify and resolve issues.
To enable this feature, add the following lines to the
panel.ini
file:[ext-log-browser] mailQueue.serverWide = true
- Added a tooltip to the domain-level âTrack Email Deliveryâ pages explaining why it is not possible to resend or remove sent, rejected, and bounced emails.
- Added a tooltip to the domain-level âTrack Email Deliveryâ pages advising to select one or more deferred emails when attempting to click *Resend with no deferred emails selected.
- Customers can no longer see names of other customers in the filter. (EXTPLESK-5654)
- The header of the last server reboot notification is now correctly displayed in Tools & Settings > Notifications (under âPleskâ). (EXTPLESK-5685)
-
Fixed the issue where the Log Browser extension got stuck trying to process logs with an excessively large number of entries. (EXTPLESK-5686)
To customize for what period data should be processed, add the following lines to the
panel.ini
file:[ext-log-browser] mailQueue.firstEntryOffset = 2678400 ; in seconds
- Fixed the issue where certain mail log entries could stop further processing of the log file, resulting in the âException: PHP Warning: Uninitialized string offset 0â error. (EXTPLESK-5700)
WP Toolkit 6.5.2
31 July 2024
- Copy Data window no longer loads too slowly when quarantined WordPress sites are present on the server. (EXTWPTOOLK-12039)
- Outdated version of WordPress is no longer displayed incorrectly in the list of issues. (EXTWPTOOLK-12059)
- WP Toolkit now properly works with the httpTimeout option. (EXTWPTOOLK-12127)
Site Import 1.7.6
31 July 2024
- (Plesk) Site Import version 1.7.6 will be the last Site Import update that supports Plesk versions older than Plesk 18.0.60. To continue receiving Site Import updates with bugfixes and new features, please update your Plesk installation to version 18.0.60 or higher.
Plesk Migrator 2.25.6
31 July 2024
- Plesk Migrator version 2.25.6 will be the last Plesk Migrator update that supports Plesk versions older than Plesk 18.0.60. To continue receiving Plesk Migrator updates with bugfixes and new features, please update your Plesk installation to version 18.0.60 or higher.
.NET Toolkit 2.1.14
30 July 2024
- Unavailable ASP.NET Core Runtime versions are no longer displayed in the list on Ubuntu 24. (EXTPLESK-5626)
- Internal improvements.
Node.js Toolkit 2.3.14
26 July 2024
- Additional deployment actions in the Git extension can now run the
npm
andyarn
commands if Node.js Toolkit is installed. (EXTNODEJS-325)
Plesk Obsidian 18.0.62 Update 2
24 July 2024
Fixed Product Issues
- Fixed the issue where the new Home screen page would sometimes crash with the âMinified React error #185â error. (PPPM-14497)
Linux
- Fixed the issue where, on servers running on Ubuntu 20.04, no DNS-related operations resulted in changes being made to the DNS zone files. (PPP-65747)
Plesk Email Security 1.5.9
22 July 2024
- Additional administrators can now configure domain settings in Restricted Mode. (EXTPLESK-5683)
WP Toolkit 6.5.1
18 July 2024
- (cPanel) WP Toolkit no longer prevents packages and accounts from being modified on cPanel v110. (EXTWPTOOLK-12068)
WP Toolkit 6.5.0
17 July 2024
- WP Guardian addon with Vulnerability Protection can now be purchased for individual WordPress sites
- This addon can be purchased directly by any control panel user, including end-users (site administrators), for any WordPress site they can access in WP Toolkit
- Single-site WP Guardian addon does not include other Deluxe features like Smart Updates or Smart PHP Updates
- Sites using this addon do not count towards Vulnerability Protection limit in service plans or subscriptions
- The ability for users to buy this addon cannot be restricted via Vulnerability Protection limit in service plans or subscriptions
- If server-level WP Guardian addon license is already present on the server, the ability to buy a single-site addon is automatically disabled
-
To enable this offer on Plesk, add the following parameter in the
panel.ini
file:[ext-wp-toolkit] virtualPatchesLicensingForEndCustomers = true
- To enable this offer on cPanel, add the same parameter to your
config.ini
file - This offer will be made available selectively and gradually to make sure server administrators have enough time to disable it, if needed
- Actively exploited vulnerabilities now have their own
Critical
risk rank - Codeable integration now tracks server ownership for the upcoming affiliate program
- WP Toolkit now greys out addressed vulnerabilities to help users focus on the non-addressed ones
- Additional hints will be shown to server administrators who try to enable Vulnerability Protection without adding it to a service plan, subscription, or package
- Assets are no longer marked as vulnerable when all their vulnerabilies are already addressed. (EXTWPTOOLK-11943)
- Incorrect mitigation options are no longer shown for certain vulnerabilities in WordPress core. (EXTWPTOOLK-11923)
- Site search now properly finds sites located on a non-current site list pages (if you have that many sites). (EXTWPTOOLK-11620)
-
Install
button on certain screens no longer remains active after a plugin or a theme are installed. (EXTWPTOOLK-11559) - Security management feature is once again no longer available to users without a corresponding Service Plan permission. (EXTWPTOOLK-11793)
Sitejet Builder 1.1.3
16 July 2024
-
You can now resell Sitejet Commerce. To do so, add the following lines to the
panel.ini
file:[ext-plesk-sitejet] commerceEnabled=true commerceBuyUrl=https://example.com/link-to-the-commerce-product-in-your-store
- Implemented a feature that enables users to seamlessly substitute a missing logo with text (and switch back to a logo if necessary).
- The Hungarian language is now available for the Website Builder interface
- New website template: Eco-Con.
- New website template: WePaint.
DigitalOcean DNS 1.4.7
12 July 2024
- OAuth API authorization has now been deprecated. Only API token authorization can now be used.
Node.js Toolkit 2.3.13
10 July 2024
- The popover of the Node.js package manager is no longer shown when there are no packages to choose from (only one package was detected). (EXTNODEJS-330)
PHP Updates
8 July 2024
- Updated PHP 8.3 to version 8.3.9.
- Updated PHP 8.2 to version 8.2.21.
Linux
- Updated LiteSpeed SAPI to version 8.1 for PHP 8.1, 8.2, 8.3.
Plesk Obsidian 18.0.61 Update 6
4 July 2024
Whatâs New?
- (Plesk for Linux) Introducing the âTuxCare Extended Lifecycle Supportâ extension for Plesk servers running on Ubuntu 18.04 or CentOS 7 that have reached end of life. The extension configures TuxCare ELS system package manager repositories, from which your Plesk Obsidian server will be receiving security updates, system enhancement patches, and bug fixes.
Fixed Product Issues
-
(Plesk for Linux) Switched the CentOS 7 yum repositories to vault.centos.org because the OS has reached end of life. That way it will still be possible to install system packages on Plesk servers running on CentOS 7. (PPP-65508)
Note: This change does not affect custom mirrors for CentOS 7 yum repositories.
TuxCare Extended Lifecycle Support 1.1.0
4 July 2024
- The extension can now be installed in Plesk Obsidian version 18.0.41 and later.
TuxCare Extended Lifecycle Support 1.0.1
4 July 2024
- Added the link for buying Plesk ELS in case the TuxCare ELS license is missing.
Log Browser 1.8.2
4 July 2024
- Added support for Ubuntu 24.04.
- A corresponding message now appears when trying to resend several email messages with none selected. (EXTPLESK-5609)
- The âProcessingâŠâ status is now displayed for emails being delivered instead of the [MailQueueList.Filter.Status.null] locale key. (EXTPLESK-5612)
- Delivered messages now include tooltips explaining why they cannot be removed from the queue. (EXTPLESK-5615)
- Log can now be retrieved correctly on Plesk servers running on Ubuntu 24.04 or other Linux distributions that have systemd version v254 or later. (EXTPLESK-5616)
- The âException: PHP Deprecated Construction: strpos()â error is no longer logged by mistake. (EXTPLESK-5617)
- Fixed the issue where certain mail log entries could stop further processing of the log file, resulting in the âException: PHP Warning: Uninitialized string offset 0â error. (EXTPLESK-5642)
- Log Browser no longer produces unnecessary and misleading âExecution postqueue has failed with exit code 127â errors on Plesk servers without Postfix. (EXTPLESK-5643)
- Emails with the âExpiredâ status are now handled properly. (EXTPLESK-5644)
- Servers without mail logs are now correctly ignored. (EXTPLESK-5645)
Plesk Obsidian 18.0.62 Update 1
3 July 2024
Fixed Product Issues
-
(Plesk for Linux) Switched the CentOS 7 yum repositories to vault.centos.org because the OS has reached end of life. That way it will still be possible to install system packages on Plesk servers running on CentOS 7. (PPP-65508)
Note: This change does not affect custom mirrors for CentOS 7 yum repositories.
Plesk Email Security 1.5.8
27 June 2024
- Restoring the extension settings from backup no longer fails with the âFailed to restore the extension email-security: ERROR 1045 (28000): Access denied for user âadminâ@âlocalhostââ error. (EXTPLESK-5637)
- Security improvements.
Plesk Obsidian 18.0.62
25 June 2024
Whatâs New?
-
Introducing the Extended Lifecycle Support (ELS) program designed to give you more time and a peace of mind before migrating your Plesk server from an EOL operating system to a supported one. This program will run:
- CentOS 7 & CloudLinux 7 â until January 1, 2026 (vendor EOL date - June 2, 2024)
- Ubuntu 18.04 & Debian 10 â until July 1, 2025 (vendor EOL dates - September 2024 for Ubuntu 18.04, June 2, 2024 for Debian 10)
Plesk will continue releasing updates and providing technical support for these OSes beyond the vendor EOL dates, until the dates specified. Supporting EOL OSes incurs additional development and maintenance costs, and so taking advantage of this offer will cost extra. We strongly recommend migrating or dist-upgrading to supported OSes.
-
We are happy to introduce the new 1.8.0 version of the Log Browser extension. In the new version, Plesk customers (as well as Plesk administrators) can track email delivery and manage deferred emails right in the domain card (under the âMailâ tab).
The feature is available only in Plesk for Linux (except for Ubuntu 24.04) with Postfix used as an MTA.
We will gradually enable the feature on Plesk servers starting from June 24, 2024. You can enable the feature manually in advance by adding the following lines to the
panel.ini
file:[ext-log-browser] mailQueue.customerAccess = true
By default, information about emails with the âRejectedâ status is removed from the extensionâs database after 48 hours to prevent rapid growth of the database. If you need to set another period for storing this information, you can always add the following lines to the
panel.ini
file:[ext-log-browser] mailQueue.rejectedRemovalPeriod = 172800 ; in seconds
Note: The feature works on top of the journald service and follows the server-wide log configuration. If the logs are rotated or removed, information about the emails will also be unavailable. Processing the logs for the first time may consume extra server resources. Afterward, the extension will process only changed data every hour.
-
Plesk is now fully compatible with the security.txt standard, which defines the way both independent security researchers and your clients can get in touch with you about security concerns and vulnerabilities they have found in Plesk domains.
With the new Native security.txt compliance extension, you can generate one common
security.txt
file for all domains hosted on your Plesk server. Once you generate the file and enable the feature, Plesk will continuously maintain it. Learn how to enable the feature and generate the file in our documentation.Note: In case you need more flexibility in configuring the file's content, you can use the extension created by LJPc solutions.
-
Added the new tile blocks and improvements to our New Home Dashboard:
- Added the SSL It! block that contains the consolidated status of certificates on your Plesk server to help you avoid their sudden expiration.
- Added the block for the âAdvisorâ extension that helps you monitor the state of your Plesk server.
-
Added support for HTTPS DNS records as an alternative to CNAME records. For example, you can use HTTPS records for naked domains, for which CNAME records are not supported.
The feature can be managed in the Plesk user interface, using the
plesk bin dns
CLI commands, or using API requests.In Plesk Obsidian 18.0.62, the feature is disabled by default. You can manually enable it by adding the following lines to the
panel.ini
file:[dns] records.https.enabled = true
Linux
-
Added an ability to install and remove PHP 5.6 from Plesk servers running on AlmaLinux 8 and 9 via Plesk Installer. That way you do not have to switch websites running on PHP 5.6 to a supported PHP version before the migration and thus avoid possible errors.
Note: PHP 5.6 is EOL and does not receive important security fixes. We do recommend that you switch your websites to a supported PHP version after migration.
Feature Improvements
- Navigation between most-used pages in Plesk has become 3 times faster.
- On the âServerwideâ tab of Performance Booster, it is now possible to apply one or several database server improvements instead of applying them all together.
-
Introduced the following improvements to the SFTP Backup extension:
- Added the ability to use the Ed25519 public-key authentication and custom SSH keys.
- Added the ability to update SSH keys.
-
Starting from Plesk Obsidian 18.0.62, requests to REST API containing the
Content-Type
header with amedia-type
directive other than âapplication/jsonâ will result in the HTTP â415 Unsupported Media Typeâ client error response code. Since thecurl
commands send the âContent-Type: application/x-www-form-urlencodedâ header by default, you need to add the--header "Content-Type: application/json"
option to such commands to keep them working correctly.We strongly recommend that you check your existing integrations that use cURL for compliance with this change and update them if necessary. Failure to do so may result in any such integrations ceasing to work after updating to Plesk Obsidian 18.0.62.
Windows
- Added the Log Browser extension to the Recommended and Full presets.
Fixed Product Issues
-
Fixed the following issues in the Multi-Factor Authentication extension:
- The extension once again correctly remembers a device and no longer asks for authentication if the âRemember this device for 30 daysâ checkbox was selected before. (EXTPLESK-5556)
- The
plesk ext mfa config info
CLI command now works with accounts of additional administrators and SMB users. (EXTPLESK-5559)
- Fixed the issue where the âSpam filter sensitivityâ field in the domain email's settings was empty if the â0â value was specified during creation of the email address. (PPPM-14470)
- Customers no longer can change the hosting type of their subscriptions without corresponding permissions. (PPPM-14466)
- Switching between views in Plesk on mobile devices once again works correctly. (PPPM-14450)
- Resellers can once again create custom buttons. (PPPM-14441)
- Changing the admin user's password is once again properly logged. (PPPM-14428)
- Calculating statistics of a domain's database with the dash symbol in its name no longer fails with an error. (PPPM-14420)
- Wappspector no longer creates a clickable WP Toolkit icon for a domain, whose service plan has the WP Toolkit permissions disabled. (PPPM-14347)
- Fixed the issue where the Log Browser extension was logging the âPHP Warning: Undefined array key âExtension Versionâ error by mistake under specific circumstances. (EXTPLESK-5376)
- Resellers can once again create hosting of domains. Previously the issue occurred because the âUsernameâ field on the âHosting Settingsâ page of a domain became unavailable if the âCustomers can change the name of their system usersâ option was set to âNeverâ. (PPPM-14468)
Linux
- When an email template is used in Mailman 3, emails are once again delivered to email addresses from a mailing list. (PPPM-14370)
- Updating the GeoIP data has become more safe because the old data will now be used if any errors occur during the update. (PPPM-14454)
- When the email sender's address contains the < and/or > symbols, it is once again displayed correctly in the âFromâ field of a forwarded email. (PPPM-14438)
- We increased the limit of text that one can paste in SSH Terminal from 512 bytes to 4 kilobytes so that this no longer breaks the connection. (PPPM-14422)
- In Plesk on AlmaLinux 9, the
/var/log/maillog
log file is no longer rotated to prevent collecting incorrect statistics. (PPPM-14415) - If a sub-directory is protected with its own password and Apache is disabled for the domain, it is no longer possible to access that sub-directory using the password for the parent directory. (PPPM-14410)
- The removed old IP address of a Plesk server is no longer restored in the
/etc/hosts
file after assigning a new IP address and changing the hostname. (PPPM-14405) - To prevent overuse of server resources, the number of concurrent sw-engine requests when opening the âDomainsâ page is limited to 12. (PPPM-14400)
- Fixed incorrect logging of DNS-related events under specific circumstances. (PPPM-14342)
- The Plesk repair utility once again warns if the last Plesk upgrade has failed for some reason. (PPPM-14177)
Windows
- The same permissions are once again assigned to the
\MySQL\my.ini
file both when a custom or default path for storing user data is specified during the Plesk installation. (PPPM-14460) - Fixed the issue where it was impossible to secure a domain using the SSL/TLS certificate if the MailEnable service was running under a user account with insufficient privileges. (PPPM-14458)
Changes in Third-Party Components
- Updated PHP used by Plesk to version 8.3.8
Linux
- Updated Phusion Passenger to version 6.0.22.
Windows
- Updated ASP.NET Core 8.0 to version 8.0.6.
- Updated ASP.NET Core 8.0 to version 7.0.20.
- Updated ASP.NET Core 8.0 to version 6.0.31.
- Updated Git to version 2.45.1.
Log Browser 1.8.0
24 June 2024
-
We are happy to introduce a new version of the Log Browser extension. In the new version, Plesk customers (as well as Plesk administrators) can track email delivery and manage deferred emails right in the domain card (under the âMailâ tab).
The feature is available only in Plesk for Linux (except for Ubuntu 24.04) with Postfix used as an MTA.
We will gradually enable the feature on Plesk servers starting from June 24, 2024. You can enable the feature manually in advance by adding the following lines to the
panel.ini
file:[ext-log-browser] mailQueue.customerAccess = true
By default, information about emails with the âRejectedâ status is removed from the extensionâs database after 48 hours to prevent rapid growth of the database. If you need to set another period for storing this information, you can always add the following lines to the
panel.ini
file:[ext-log-browser] mailQueue.rejectedRemovalPeriod = 172800 ; in seconds
Note: The feature works on top of the journald service and follows the server-wide log configuration. If the logs are rotated or removed, information about the emails will also be unavailable. Processing the logs for the first time may consume extra server resources. Afterward, the extension will process only changed data every hour.
-
Fixed the issue where the âPHP Warning: Undefined array key âExtension Versionâ error was logged by mistake under specific circumstances. (EXTPLESK-5376)
.NET Toolkit 2.1.13
24 June 2024
- Restart of an application no longer fails with the âarray_filter(): Argument #1 ($array) must be of type array, null givenâ error under specific circumstances. (EXTPLESK-5619)
Advisor 1.9.17
24 June 2024
- Advisor 1.9.17 will be the last Advisor update that supports Plesk versions older than Plesk 18.0.53. To continue receiving Advisor updates with bugfixes and new features, please update your Plesk installation to version 18.0.53 or higher.
Advisor 1.10.0
24 June 2024
- Added the extension's information block to the new Home screen in Plesk.
- Clicking the Open button in the âSynchronize Server Timeâ advice now opens the correct âSystem Timeâ page in Plesk version 18.0.46 and later. (EXTADVISOR-953)
Monitoring 2.9.7
21 June 2024
- The Grafana authentication token no longer resets for no reason. (EXTPLESK-5157)
Plesk Email Security 1.5.6
21 June 2024
- Additional users who have insufficient permissions for creating and managing websites will now see a detailed error message instead of âAccess deniedâ.
WP Toolkit 6.4.1
20 June 2024
- Vulnerability database update no longer fails with error
Allowed memory size of 268435456 bytes exhausted
. (EXTWPTOOLK-11883) - Fixed inability to install new WordPress that could be caused by the above bug. (EXTWPTOOLK-11884)
- Curious server admins should no longer see
VirtualPatchesLicensing::updateCpanelLicense was called on unsupported platform
error in thepanel.log
. (EXTWPTOOLK-11874)
Native security.txt compliance 1.0.0
19 June 2024
- Initial release. The extension works in Plesk Obsidian 18.0.61 and later.
Kaspersky Anti-Virus for Servers 8.9.2-76
19 June 2024
- The extension can now be installed on Plesk servers running on Ubuntu 24.04.
- The extension can now be installed on Plesk servers running on Ubuntu 18.04.
- The extension can now be installed on Plesk servers running on Debian 12.0.
- Internal improvements.
SSL It! 1.15.1
17 June 2024
- Opening the SSL It! page of a domain no longer fails with the âDeclaration of PleskSslIt\GuzzleHttp\Psr7\Uri::getScheme() must be compatible with Psr\Http\Message\UriInterface::getScheme(): stringâ error. (EXTSSLIT-2096)
Multi-Factor Authentication 1.0.4
17 June 2024
- Successful, failed, and cancelled authentication attempts are now logged properly. (EXTPLESK-5274)
Firewall 2.2.3
17 June 2024
- Updating the GeoIP data has become more safe because the old data will now be used if any errors occur during the update. (PPPM-14454)
SSH Terminal 1.3.7
14 June 2024
- Pasting a long text no longer breaks the connection because we increased the limit from 512 bytes to 4 kilobytes. (PPPM-14422)
Multi-Factor Authentication 1.0.3
12 June 2024
- The extension once again correctly remembers a device and no longer asks for authentication if the âRemember this device for 30 daysâ checkbox was selected before. (EXTPLESK-5556)
- The
plesk ext mfa config info
CLI command now works with accounts of additional administrators and SMB users. (EXTPLESK-5559)
WP Toolkit 6.4.0
11 June 2024
- Introducing Vulnerability Protection: a new security feature for WordPress websites provided as a part of WP Guardian offer. Vulnerability protection is a non-invasive, automated, lightweight way to neutralize vulnerabilities in WordPress plugins, themes, and WordPress core. Once enabled on a site, vulnerability protection neutralizes high and medium risk vulnerabilities automatically whenever they appear without any need for user engagement.
- A WordPress plugin will be installed when protection is enabled to automatically neutralize dangerous vulnerabilities by applying special protection rules.
- Protection rules work like a firewall, so they never touch or modify the site code.
- Protection rules are applied and removed only for specific vulnerabilities on any given site, so they have minimal effect on site performance.
- This feature and its corresponding upsell prompts are not visible to control panel users by default. Only the server administrator can see it.
- You can control the access to this feature via separate limit in your Service Plans.
- Vulnerability protection is a part of the security suite provided by WP Guardian platform. It requires purchasing a separate license called WP Guardian (Plesk addon).
- WP Guardian (Plesk addon) is an upgraded version of WP Toolkit Deluxe bundle, combining all previous Deluxe features with Vulnerability Protection (and with more features to be included in the future).
- The technical name of this feature is virtual patching, and itâs powered by Patchstack. Protection rules (also known as virtual patches) are released for high-to-medium-risk vulnerabilities present in Patchstack vulnerability database
- CVSS rating used for ranking and sorting vulnerabilities was replaced with Risk rank
- Risk rank is an aggregate rating of vulnerability impact based on CVSS rating, EPSS rating, Patchstack Patch Priority and other factors
- Vulnerability filtering feature was changed from specifying a CVSS score threshold to a simple knob for ignoring low-risk vulnerabilities
- Low-risk vulnerabilities are now ignored by default on all websites after the upgrade to WP Toolkit v6.4
- Added the ability to change the destination of âHire a developerâ link or hide it completely in global WP Toolkit Settings
- Must-use plugins are now correctly displayed in the list of plugins with corresponding tags
- WP Toolkit no longer stops working with
Initial data load error: some required fields are not provided
error in some rare cases. (EXTWPTOOLK-11652) - Certain WP Toolkit processes no longer hang indefinitely if they cannot be finished for some reason. (EXTWPTOOLK-10647)
SSL It! 1.15.0
11 June 2024
- Added the extensionâs information block to the new Home screen in Plesk.
- The âemptyâ pending order is now deleted as intended after renewal of a domain certificate. (EXTSSLIT-1879)
PHP Updates
11 June 2024
Linux
- Backported changes from https://github.com/php/php-src/issues/14480 for PHP 8.3.8, 8.2.20.
PHP Updates
10 June 2024
- Updated PHP 8.3 to version 8.3.8.
- Updated PHP 8.1 to version 8.1.29.
- Updated PHP 8.2 to version 8.2.20.
Linux
- Updated libwebp to version 1.4.0 for PHP 8.3, 8.2, 8.1.
- Updated Structures_Graph to version 1.2.0 for PHP 8.3, 8.2, 8.1.
Plesk Migrator 2.25.5
5 June 2024
- Fixed the issue with migrating domain pointers from Direct Admin. (PMT-5311)
- Fixed the issue with migrating subdomains from Direct Admin. (PMT-5312)
Plesk Obsidian 18.0.61 Update 5
4 June 2024
Changes in Third-Party Components
- (Plesk for Linux) Updated nginx to version 1.26.1.
Joomla! Toolkit 3.0.3
30 May 2024
- Fixed the issue where scanning for Joomla websites failed with an exception. (EXTPLESK-5562)
Plesk Obsidian 18.0.61 Update 4
28 May 2024
Fixed Product Issues
- Fixed the issue where certain inconsistencies in the Plesk database resulted in the âTypeError: Cannot read properties of null (reading âmapâ)â error when accessing the new Home screen. (PPPM-14429)
- Fixed the issue where accessing the Plesk web interface after updating to Plesk Obsidian 18.0.61 resulted in the âarray_key_exists(): Argument #2 ($array) must be of type array, false givenâ error if one or more custom buttons pointing to an email address existed in Plesk prior to the update. (PPPM-14444)
Linux
- The MariaDB upgrade tool can no longer be used to upgrade the database server on servers running outdated Linux kernel versions, which resulted in the database server failing to start after the upgrade. (PPP-65096)
Changes in Third-Party Components
Linux
- Updated Roundcube to version 1.6.7.
Plesk Migrator 2.25.4
27 May 2024
- No more PHP deprecation errors in Plesk 18.0.53 when migrating subscription. (PMT-5306)
Plesk Obsidian 18.0.61 Update 3
22 May 2024
-
(Plesk for Linux) To resolve certain issues related to HTTP/3 support, the following changes have been made:
- For the time being, HTTP/3 support for the Plesk panel itself (but not the hosted websites) is disabled. All aspects of HTTP/3 support are to be treated as experimental until further notice.
- Installing this update will disable HTTP/3 support for your the Plesk panel if it has been enabled previously.
- On newly installed Plesk Obsidian servers, HTTP/3 support is no longer enabled automatically for hosted websites, but can still be enabled manually.
Support SSH Access 1.2.5
22 May 2024
- Extension no longer fails with the âfilemng failedâ error during clean installation. (EXTPLESK-5555)
Site Import 1.7.5
22 May 2024
- No more PHP deprecation errors in Plesk 18.0.53 when importing folders. (PMT-5309)
SFTP Backup 2.2.0
21 May 2024
- Added the ability to use the Ed25519 public-key authentication and custom SSH keys.
- Added the ability to update SSH keys.
- Internal improvements.
Plesk Obsidian 18.0.61 Update 2
20 May 2024
Fixed Product Issues
- Clicking on the count of resellers in Tools & Settings > IP Addresses no longer results in an error. (PPPM-14426)
Linux
- Enabling HTTP3 no longer crashes the Plesk panel if Plesk Premium Antivirus was enabled. (PPPM-14424)
- To prevent possible errors, HTTP3 is no longer automatically enabled on new Plesk installations. (PPP-65006)
- Fail2ban 1.0.2 now works correctly in Plesk on Ubuntu 24. (PPPM-14423)
Site Import 1.7.4
20 May 2024
- The extension no longer fails if the source server runs the ProFTPD FTP server. (PMT-5307)
Support SSH Access 1.2.3
17 May 2024
- Extension no longer fails with the âUnit sshd.service not foundâ error on Ubuntu 24.04. (EXTPLESK-5537)
Site Import 1.7.3
17 May 2024
- After the mail import, re-sync of emails no longer fails with the âCommand returned non-zero exit codeâ error. (PMT-5301)
Multi-Factor Authentication 1.0.2
17 May 2024
- To prevent potential security issues, the Google Authenticator extension is now automatically disabled when installing the Multi-Factor Authentication extension.
Plesk Obsidian 18.0.61 Update 1
15 May 2024
Fixed Product Issues
- (Plesk for Linux) Logging in to Plesk via the TCP port 443 no longer results in an unwanted redirect to the port 8880 and the âThis site canât provide a secure connectionâ error. (PPP-64958)
New Relic 1.3.2
15 May 2024
- Added a warning that the extensionâs INFRASTRUCTURE cannot be installed in Plesk on Ubuntu 24.
Plesk Obsidian 18.0.61
14 May 2024
Whatâs New?
-
(Plesk for Linux) Ubuntu 24.04 is now supported on x86-64 architecture, with certain limitations. Learn more about the Ubuntu 24.04 support limitations.
ARM-based servers are not supported at the moment.
-
(Plesk for Linux) HTTP/3 (nginx) is now supported for hosted websites. Learn more about HTTP/3 support in Plesk.
Note: HTTP/3 is not supported on CentOS 7 and Ubuntu 18.
-
We are glad to announce the new Multi-Factor Authentication (MFA) extension, coming to Plesk Obsidian 18.0.61 and later. The new extension is meant to offer seamless 2FA authentication to all Plesk users, and comes with the following benefits:
- Multi-factor authentication can now be configured in the profile settings for users of all levels (administrators, additional administrators, resellers, customers, and subscription users).
- Plesk administrators can now make multi-factor authentication mandatory for all Plesk users on a server. Learn more about making multi-factor authentication mandatory.
- The Multi-Factor Authentication (MFA) extension is added to the Recommended preset.
-
We are glad to announce the fully revamped, customizable Home dashboard in Service Provider View. Keep track of your server and your business by adding, removing, and rearranging informational blocks showing all sorts of data. At the moment, the following blocks are available:
- Plesk version - Plesk version and information about any available updates.
- Server Information - Server hostname, IP address, OS, and uptime.
- Last server backup - The status of server backup and backup schedule.
- Performance Booster - Available server and website performance optimizations.
- Whatâs New - Latest entries from the Plesk changelog.
- IP Address Banning - The status of the Fail2Ban service.
- Mail Queue - The status of the email queue (Postfix only).
- Promo - Information about possible customizations and additional features.
- CPU usage - Daily CPU usage information.
- Memory usage - Daily memory usage information.
- Subscriptions with overuse - The list of subscriptions with resource overuse.
- My subscription - Subscriptions owned by the administrator.
- Custom Buttons - display custom buttons added by the administrator.
The feature is currently in beta. To enable it, add the following lines to the
panel.ini
file:[navigation] newHomeView.enabled = true
We would love to hear your feedback about the new Home page at feedback@plesk.com.
-
The WordPress single-site management operations from WP Toolkit are now fully integrated into the Dynamic list and shown by default for WordPress websites. If you want to continue managing your WordPress websites from WP Toolkit, you can disable this feature by adding the following lines to the
panel.ini
file:[ext-wp-toolkit] appModeFeature = off
-
(Plesk for Windows) It is now possible to in-place upgrade Windows Server 2012 R2 servers running Plesk to Windows Server 2019. Learn more about in-place upgrading Windows Server 2012 R2 servers.
Feature Improvements
- Added the ability to manage the settings of scheduled backups (both server-wide and at the subscription level) via the CLI. Learn more about managing scheduled backups via the CLI.
- Added the ability to manage the settings of scheduled tasks (both server-wide and at the subscription level) via the CLI.
- Added PHP 8.3 to the Recommended preset. Also, removed PHP 8.1 from the Recommended preset.
- Improved error reporting in certain places of the Plesk GUI. Now, when there is an error, the browser screen is automatically scrolled to the top of the page, where a more detailed informational message is shown instead of a generic âInternal server errorâ one.
Future Plans
-
Starting from Plesk Obsidian 18.0.62, requests to REST API containing the
Content-Type
header with amedia-type
directive other than âapplication/jsonâ will result in the HTTP â415 Unsupported Media Typeâ client error response code. Since thecurl
commands send the âContent-Type: application/x-www-form-urlencodedâ header by default, you need to add the--header "Content-Type: application/json"
option to such commands to keep them working correctly.We strongly recommend that you check your existing integrations that use cURL for compliance with this change and update them if necessary. Failure to do so may result in any such integrations ceasing to work after updating to Plesk Obsidian 18.0.62.
-
Introducing Extended Lifecycle Support (ELS). We understand that migrating to a new operating system can be a complex process. To give you more time and a peace of mind, weâre introducing the Extended Lifecycle Support (ELS) program. This program will run:
- CentOS 7 & CloudLinux 7 â until January 1, 2026 (vendor EOL date - June 2, 2024)
- Ubuntu 18.04 & Debian 10 â until July 1, 2025 (vendor EOL dates - September 2024 for Ubuntu 18.04, June 2, 2024 for Debian 10)
Plesk will continue releasing updates and providing technical support for these OSes beyond the vendor EOL dates, until the dates specified. Supporting EOL OSes incurs additional development and maintenance costs, and so taking advantage of this offer will cost extra. We strongly recommend migrating or dist-upgrading to supported OSes.
Fixed Product Issues
- Fixed the issue where changing a subscriptionâs IP address via the
plesk bin subscription
command failed for domains that had their hosting type set to âno web hostingâ. (PPPM-14343) - Fixed the issue where the âCreate Websiteâ button was shown for domains that had no access to any of the website creation tools in Plesk. (PPPM-14380)
- Fixed the issue where creating a MySQL database via the
plesk bin database
command while passing an encrypted database user password to it via the PSA_CRYPTED_PASSWORD environment variable failed with the âSyntax error or access violationâ error. (PPPM-14384) - Fixed the issue where viewing Action Log entries for a domain showed the entire contents of the log instead of filtering out entries not related to the domain. (EXTPLESK-5377)
Linux
- Fixed the issue where renaming a subscriptionâs system user on a Plesk server with the Cgroups Manager extension installed failed with the âusermod: user xxx is currently used by process xxxxxâ error. (PPPM-14291)
-
Fixed the issue where reading or rereading IP addresses on a server connected to OpenVPN added the IP addresses of TUN interfaces to the list of IP addresses available in Plesk. (PPPM-7965)
Implementing the fix requires adding the following lines to the
panel.ini
file:[networkInterfaces] blacklist = tun*,tap*
- Fixed the issue where restoring from a corrupted backup file produced the unclear âPerhaps /usr/local/psa/admin/bin/deployer application missing, has incorrect permissions or unexpectedly terminatedâ error after failing. (PPPM-14118)
- Fixed the issue where running the
plesk repair web
command added the IP addresses of running Docker Compose containers to the Plesk nginx configuration files. (PPPM-14337) - Fixed the issue where Plesk installation failed if an RDS Aurora MySQL instance was specified as the Plesk database server. (PPPM-14354)
- Fixed the issue where updating Plesk on a server hosting a large number of websites produced an unnecessary and misleading âNginx has not restarted during upgrade due to failure of configuration testâ warning. (PPP-64510)
- Fixed the issue where a custom Plesk installation produced an unnecessary and misleading âFailed to restart mailman3.service: Unit mailman3.service not found.â warning in the installer log file. (PPPM-14377)
- Fixed the issue where restoring individual objects (for example, files) from a backup resulted in old cronjobs being restored as well. (PPPM-14387)
- Fixed the issue where running the
plesk repair web
command did not restore the PHP-FPM configuration. (PPP-64844) - Fixed the issue where renaming subscription system users and additional FTP users could sometimes fail with the âuser xxx is currently used by process xxxxxâ error. (PPPM-10717)
- Fixed the issue where, after renaming a subscriptionâs system user failed, the domainâs PHP FPM handlerâs pool became corrupted, and no new domains using the same PHP handler could be created. (PPP-63258)
- Fixed the issue where .NET applications failed to work if SELinux was enabled on the server. (PPPM-14378)
Windows
- Fixed the issue where accessing a symlink in File Manager resulted in the âUnable to open the directory: Symlinks out of webspace are prohibitedâ error. (PPPM-14399)
- Fixed the issue where the custom âopen_basedirâ value failed to take effect for websites with a custom document root. (PPPM-14390)
Changes in Third-Party Components
- Updated PHP used by Plesk to version 8.3.
Linux
- Updated OWASP ModSecurity CRS to version 4.2.0.
- Updated nginx and the sw-cp-server service to version 1.26.0.
Windows
- Updated ASP.NET Core 8.0 to version 8.0.4.
- Updated ASP.NET Core 7.0 to version 7.0.18.
- Updated ASP.NET Core 6.0 to version 6.0.29.
- Updated MailEnable Standard to version 10.48.
- Updated Microsoft ODBC Driver 17 for SQL Server to version 17.10.6.1.
SFTP Backup 2.1.2
14 May 2024
- SFTP Backup v2.1.2 will be the last SFTP Backup update that supports Plesk versions older than Plesk 18.0.53. To continue receiving SFTP Backup updates with bugfixes and new features, please update your Plesk installation to version 18.0.53 or higher.
Joomla! Toolkit 3.0.2
14 May 2024
- Fixed the issue where Joomla! could not be installed if the Plesk PHP 8.1 handler was not available but other PHP handlers with greater versions existed. (EXTPLESK-5269)
PHP Updates
13 May 2024
- Updated PHP 8.2 to version 8.2.19.
- Updated PHP 8.3 to version 8.3.7.
Linux
- Updated Xdebug to version 3.3.2 for PHP 8.1-8.3.
PHP Updates
8 May 2024
Linux
- Installation of PHP 7.4-8.3 on AlmaLinux 9 no longer fails. (PPPM-14412)
- Updated ImageMagick to version 6.9.13-10 for PHP 7.4-8.3 on the Red Hat Enterprise Linux 8 and 9-based systems.
VirusTotal Website Check 1.4.2
7 May 2024
- The âPHP Deprecated Construction: Creation of dynamic property Modules_WebsiteVirusCheck_PleskDomainâ error no longer appears in
/var/log/plesk/panel.log
in Plesk for Linux and in%plesk_dir%\admin\logs\php_error.log
in Plesk for Windows. (EXTPLESK-5512)
Amazon Route 53 2.9.4
6 May 2024
- The âPHP Deprecated Construction: Creation of dynamic property PleskRoute53\GuzzleHttp\Handler\CurlMultiHandler::$_mh is deprecatedâ error no longer appears in
/var/log/plesk/panel.log
in Plesk for Linux and in%plesk_dir%\admin\logs\php_error.log
in Plesk for Windows. (EXTPLESK-5505)
Multi-Factor Authentication 1.0.0
2 May 2024
- Plesk administrators can now make multi-factor authentication mandatory for all Plesk users on a server. Learn more about making multi-factor authentication mandatory.
- Multi-factor authentication can now be configured in the profile settings for users of all levels (administrators, additional administrators, resellers, customers, and subscription users).
Extensions Catalog 1.17.9
2 May 2024
- It is now possible to select a currency when making in-place purchases of extension licenses. (EXTCATALOG-703)
DigitalOcean Spaces Backup 1.1.0
30 April 2024
- Fixed the âPHP Deprecated Construction: json_decode(): Passing null to parameter #1 of type string is deprecatedâ warning. (EXTPLESK-5426)
PHP Composer 1.3.1
25 April 2024
- In Plesk for Windows, the âTypeError: pm_ApiCli::callDomain(): Argument #2 ($workingDir) must be of type stringâ error no longer appears in
%plesk_dir%\admin\logs\php_error.log
. (EXTPLESK-5489)
Plesk Obsidian 18.0.60 Update 1
24 April 2024
Fixed Product Issues
- It is again possible to upgrade Plesk Onyx to Plesk Obsidian. (PPPM-14396)
DigitalOcean DNS 1.4.5
23 April 2024
- The extension no longer activates the DigitalOcean DNS service for the local DNS zone if it is changed. (EXTPLESK-5185)
Laravel Toolkit 1.4.11
19 April 2024
- On Plesk for Windows servers, enabling the extension for a website no longer makes the website sometimes show the HTTP 500 error due to an incorrect URL rewrite rule. (EXTPLESK-5449)
PHP Updates
15 April 2024
- Updated PHP 8.1 to version 8.1.28.
- Updated PHP 8.2 to version 8.2.18.
- Updated PHP 8.3 to version 8.3.6.
Google Workspace 1.2.2
15 April 2024
- Operations in the extension no longer produce âPHP Deprecated Construction: Implicit conversion from float to int loses precisionâ exceptions in the panel.log file. (EXTPLESK-5405)
Git 2.5.2
12 April 2024
- The extension no longer produces PHP Deprecation warning during remote repository creation. (EXTGIT-334)
Extensions Catalog 1.17.8
11 April 2024
- Fetching the extended descriptions for all packages no longer results in multiple âpm_Exception: Resource not found: âŠâ errors. (EXTCATALOG-702)
Transfer of DNS Records 1.1.4
9 April 2024
- The extension no longer produces PHP Deprecation warnings. (EXTPLESK-5183)
Plesk Email Security 1.5.3
8 April 2024
- Amavis is once again installed correctly together with other components in Plesk on Ubuntu. (EXTPLESK-5392)
Sectigo SSL 1.3.18
5 April 2024
- The extension now works more stable and no longer shows PHP warnings. (EXTPLESK-5386)
DigitalOcean DNS 1.4.4
5 April 2024
- The extension now works more stable and no longer shows PHP warnings. (EXTPLESK-5385)
Advisor 1.9.16
4 April 2024
- The extension no longer suggests to sync the correct server time in Plesk on Ubuntu 20 or later and Debian 10 or later. (EXTADVISOR-941)
NTP Timesync 1.3.2
3 April 2024
- Installing Plesk on the OpenVZ and Virtuozzo virtualization platforms no longer fails if the NTP Timesync extension is being installed together with it. (EXTPLESK-5390)
Plesk Email Security 1.5.2
3 April 2024
- Resetting the server-wide spam policy no longer fails with the âAccess deniedâ error in case of some database inconsistency. (EXTPLESK-5387)
Plesk Obsidian 18.0.60
2 April 2024
Whatâs New?
-
To help Plesk users comply with the NIS2 directive, and also to improve the security of Plesk in general, the NIS2 compliance mode makes a number of changes to what is logged to the Plesk Action Log. Learn more about NIS2 compliance mode.
To enable NIS2 compliance mode, add the following lines to the
panel.ini
file:[actionLog] nis2compliant = true
Once you have done so, the following changes take effect:
-
API requests are now logged to the Action Log. To also log API requests that only get information from Plesk and do not result in any changes being made, add the following line to the
[actionLog]
section:api.includeImmutable = true
- Changes to DNS records are now logged to the Action Log, including the specifics (such as what record was added or removed, or what changes were made to an existing record), as well as the GUID of the user who made the change.
-
Action Log is now included in Plesk backups if the âUser filesâ checkbox is selected when creating a backup, and the âExclude log filesâ one is not. Customer or reseller level backups only include information pertinent to that customer/reseller.
Action Log is stored in a separate file with the
backup_action-log
prefix. Learn how to extract files from a Plesk backup.
-
-
(Plesk for Linux) We are glad to announce that the ability to upgrade MariaDB database servers to the latest version in the LTS branch via the Plesk interface is no longer in beta! We thank everyone who tried the beta version for their participation and feedback.
To access this feature, go to Tools & Settings > Database Servers (under âApplications & Databasesâ), and then click Upgrade Now next to an eligible MariaDB database server.
The feature is being gradually rolled out to Plesk servers around the world. If you do not see the Upgrade Now button, you can enable the feature manually by adding the following lines to the
panel.ini
file:[databaseManagement] features.canBeUpgraded = true
-
Plesk customers can now get access to Plesk Action Log events related to their subscriptions to monitor changes applied to them. The feature works only together with the Log Browser extension and will be enabled gradually after the release of Plesk Obsidian 18.0.60. The link to Action Log will appear in the right menu near the domain card.
We consider the feature to be a mandatory requirement for Plesk to comply with the NIS2 directive. According to the directive, customers must have an ability to monitor changes related to their domains.
To enable the feature before its official release in Plesk Obsidian 18.0.60, add the following lines to the
panel.ini
file:[actionLog] actionLogForEndUsers = true
Note: If you have already enabled the
nis2complience
setting in thepanel.ini
file, no need to enableactionLogForEndUsers
as well.nis2complience
enables all features related to compliance with the NIS2 directive. -
Full-featured integration of WP Toolkit into Plesk Dynamic list is now available.
To enable this feature, add the following lines to the
panel.ini
file:[ext-wp-toolkit] appModeFeature = on
Once you have done so, most WP Toolkit features (except for mass management operations) become accessible directly from Dynamic list in Plesk without having to open WP Toolkit.
- Added the âGet Startedâ tab to domain cards in Dynamic List view to make it easier for new users to build websites quickly. It offers many options for creating a website with just one click (like Sitejet, WordPress, Laravel, Node.js, and more). The tab appears when opening a newly created domainâs card for the first time, and remains accessible but nonintrusive once closed. The tab replaces both the previously available âWelcomeâ panel and the âCreate websiteâ button.
- It is now possible to buy Plesk licenses straight from the DigitalOcean Marketplace interface and attach them to new and existing droplets.
- With the new paid Sitejet Commerce feature that supports integration with Ecwid, you can now have an eCommerce store on your Sitejet-based website.
- Sophos Anti-Virus for Servers can now be installed via Plesk Installer on both Plesk for Linux and Plesk for Windows servers. You can find it in the âMail hostingâ section in Plesk for Linux, and in the âAnti-Virus featuresâ section in Plesk for Windows.
- The latest 30 entries from the Plesk Obsidian changelog are now available in an RSS feed. You can find the feed here.
Feature Improvements
- The âScheduled Backups Listâ extension has been localized into 31 languages: Arabic, Catalan, Chinese Simplified, Chinese Traditional, Czech, Danish, Dutch, Filipino, Finnish, French, German, Greek, Hebrew, Hungarian, Indonesian, Italian, Japanese, Korean, Malay, Norwegian Bokmal, Polish, Portuguese, Portuguese, Brazilian, Romanian, Russian, Spanish, Swedish, Thai, Turkish, Ukrainian, and Vietnamese.
- The Plesk interface and documentation now mention both MariaDB and MySQL where only MySQL was mentioned before.
Linux
- Plesk now shows the exact amount of physical memory installed on the server. To access this information, go to Tools & Settings > Server Information (under âServer Managementâ), scroll down to âMemory Usageâ, and look for the âHardwareâ column.
- When trying to update Plesk on a server that does not have enough free disk space, Plesk Installer automatically cleans up unnecessary temporary files, then tries again.
- The âNTP Timesyncâ extension is now included in the âRecommendedâ preset.
- A separate branch of the âNTP Timesyncâ extension was created so that the extension could still be installed on Red Hat Enterprise Linux 6.x. Future versions of the âNTP Timesyncâ extensionâs main branch will no longer be compatible with Red Hat Enterprise Linux 6.x.
- The âNTP Timesyncâ extension has been localized into 30 languages: Arabic, Catalan, Chinese Simplified, Chinese Traditional, Czech, Danish, Dutch, Finnish, French, German, Greek, Hebrew, Hungarian, Indonesian, Italian, Japanese, Korean, Norwegian Bokmal, Polish, Portuguese, Portuguese, Brazilian, Romanian, Russian, Spanish, Swedish, Thai, Turkish, Ukrainian, and Vietnamese.
- Added a message in Tools & Settings > Mail Server Settings advising to set the value of the âMaximum message sizeâ parameter to 135-140% of the maximum allowable attachment size.
Windows
- It is now possible to install and use the Log Browser extension in Plesk for Windows. The extension also provides access to Action Log events for customers the same way it is done in Plesk for Linux.
Future Plans
-
(For developers of extensions) Starting from Plesk Obsidian 18.0.61, we plan to switch PHP used by Plesk to PHP 8.3. If you are running any custom extensions, you will need to update them to support PHP 8.3 to avoid potential issues.
You can install Plesk Obsidian 18.0.60 running on PHP 8.3 for testing purposes only by running the following command:
wget https://autoinstall.plesk.com/plesk-installer && bash ./plesk-installer install plesk 18.0.60 --source http://autoinstall.plesk.com/plesk-php8.3
-
Starting from Plesk Obsidian 18.0.62, requests to REST API containing the
Content-Type
header with amedia-type
directive other than âapplication/jsonâ will result in the HTTP â415 Unsupported Media Typeâ client error response code. Since thecurl
commands send the âContent-Type: application/x-www-form-urlencodedâ header by default, you need to add the--header "Content-Type: application/json"
option to such commands to keep them working correctly.
Deprecated and Removed Items
- Starting from Plesk Obsidian 18.0.60, the ability to use Active List view will be removed. All customers will be automatically switched to Dynamic List view.
Windows
-
Starting from Plesk Obsidian for Windows 18.0.60, it will no longer be possible to install the BIND DNS server, or to select it as the default DNS server in Tools & Settings > Server Components. Our support team will also no longer provide answers to questions related to the BIND DNS server in Plesk for Windows.
We strongly recommend that you switch to Microsoft DNS.
Fixed Product Issues
- Installing the âNTP Timesyncâ Plesk extension now correctly results in the Network Time Synchronization button appearing in the Tools & Settings menu (under âTools & Resourcesâ). (EXTPLESK-2112)
- Fixed the issue where removing a subscription with one or more backups in remote storage and then restoring only the subscription resulted in the backup file(s) being transferred to the serverâs file system, but those backups could not be found in (or removed via) Backup Manager. (PPPM-14306)
- Fixed the issue where restoring a subscription with one or more add-on domains from a backup created in Plesk Obsidian 18.0.54 or earlier resulted in domain keys not being configured for the add-on domains. (PPPM-14299)
- Fixed the issue where restoring from a backup in remote storage resulted in the creation of that backup in local storage. That backup counted against the subscriptionâs disk space limit, but could not be seen in Backup Manager if the subscription lacked the permission to manage local backups. (PPPM-14287)
- Fixed the issue where trying to optimize PHP Settings for a domain with one or more disabled and/or broken PHP handlers resulted in the âFailed to update the optimal settings: [[app.conflicts.app.conflicts.Overview]]â error. (PPPM-14348)
- Fixed the issue where adding a valid IPv6 address in Tools & Settings > IP Addresses could fail with the âdoes not appear to be a valid IP address or it belongs to a wrong typeâ error. (PPPM-14373)
- Fixed the issue where trying to create or migrate a subdomain whose name matched a part of the name of a different subdomain already present on the server (for example, trying to create âsubdomain.example.comâ when âsubdomain.example.com.example.comâ already existed) failed with the âA domain with such a name already existsâ error. (PPPM-14371)
- Fixed the issue where entering the words âbackgroundâ, âlogin pageâ, or âcustomâ into the search field in the Plesk interface did not suggest the Tools & Settings > Branding page, as expected. (PPP-64307)
- Fixed the issue where the â{{ disk_usage }}â, â{{ disk_space_limit }}â, â{{ traffic }}â, â{{ traffic_limit }}â, and â{{ limit_name }}â placeholders were not replaced with actual numbers in email notifications sent to resellers. (PPPM-14333)
- Fixed the issue where it was possible to create aliases and subdomains for other subdomains via the XML API. (PPPM-14328)
- Fixed the issue where the panel in the Plesk interface added by the Help Center extension could not be shown correctly when logged in under a reseller account. (PPPM-14302)
Linux
- On servers running Red Hat Enterprise Linux or one of its derivatives, when trying to upgrade the MariaDB database server via the Plesk interface, the upgrade tool now verifies the configured repositories before starting and notifies the user if any of them must be commented out or removed for the upgrade to succeed. (PPP-64366)
- Fixed the issue where running the
plesk bin ipmanage --remap
command resulted in one or more lines in the map file being ignored if one or more target IP addresses already existed on the target network interface. (PPPM-14353) - Fixed the issue where the
plesk repair fs
command was looking for the/etc/domainkeys
directory even if no mail server was installed. (PPPM-14336) - Fixed the issue where performing a dist-upgrade from Debian 10 to Debian 11 on a server with Mailman 2 installed caused issues when accessing existing mail lists after the dist-upgrade. (PPPM-14338)
- PHP 7.4 is now correctly marked with the âOutdatedâ tag in the Plesk Installer interface. (PPPM-14263)
- When installing Plesk on Debian or Ubuntu, âRecommendedâ dependencies (including the
sa-compile
package) are no longer installed. (PPPM-14367) - Fixed the issue where, after registering a custom DNS backend via the
plesk bin server_dns --enable-custom-backend
command, adding a DNS record in Plesk did not result in the recordâs TTL value being passed to the custom backend. (PPPM-14366) - Fixed the issue where SSH access was shown as âForbiddenâ on a domainâs Hosting page if the hosting plan the domainâs subscription was based on had the âSSH access to the server shell under the subscriptionâs system userâ parameter set to
/bin/bash
and the âManagement of access to the server over SSHâ permission to âNot allowedâ. (PPPM-14360) - Fixed the issue where, if the permissions on the
/etc/domainkeys
directory were wrong, running the theplesk repair fs
command produced the âClass âPlesk\Repair\Fs\PleskUserExceptionâ not foundâ error instead of fixing them. (PPPM-14358) - Fixed the issue where, if outgoing mail control was enabled, emails using the âwindows-1253â character set were delivered with malformed contents. (PPPM-14355)
- Fixed the issue where running the
plesk repair web --php-handlers
command to fix missing PHP handlers assigned to service plans failed to remove the âThe following PHP version(s) are not installedâ error shown on the Tools & Settings > PHP Settings page. (PPPM-14350) - Fixed the issue where running the
plesk repair mail
command did not fix the DKIM configuration. (PPPM-14299) - Editing a symlink to a file in File Manager now correctly saves the changes in the file the symlink is pointing to. (PPPM-14345)
- Fixed the issue where trying to set an image in the SVG format as the custom login screen background failed with the âSome fields are empty or contain an improper valueâ error. (PPPM-14341)
- Fixed the issue where removing a subscription failed to also remove the DKIM configuration files of domain aliases owned by the removed subscription. (PPPM-14324)
- Fixed the issue where the Backup Telemetry extension did not show the âOpen telemetryâ icon for backups whose contents could not be read by the
psaadm
user in their entirety. (PPPM-14303) - Fixed the issue where changing the primary name server for a domain failed to update the primary name server for the domainâs aliases even if the âSynchronize DNS zone with the primary domainâ checkbox was selected. (PPPM-14275)
- Fixed the issue where log rotation failed for files with two or more hard links. (PPPM-13562)
- Plesk auto-reply now uses the encoding from an incoming emailâs subject for the subject of the automated response email. (PPPM-13543)
- After converting a CentOS 7 server with Plesk to AlmaLinux, the
/etc/logrotate.d/syslog.bak
file is now moved to/usr/local/psa/var/centos2alma/syslog.logrotate.bak
. (PAUX-6180) - Fixed the issue where, after converting a CentOS 7 server with Plesk to AlmaLinux, the AWStats configuration files were not recreated. (PAUX-6178)
Windows
- Fixed the issue where switching the default spam filter to SmarterMail SpamAssassin resulted in the âThe system cannot find the path specified.â error if SmarterMail Build 8747 or later was installed and set as the default mail server. (PPP-64302)
- Fixed the issue where using Plesk Reconfigurator to change the MySQL data location to that on a different disk drive resulted in the âFailed to seek the actual end of file data streamâ error. (PPPM-14335)
- Fixed the issue where using Plesk Reconfigurator to verify and fix Plesk virtual hostsâ security resulted in unnecessary empty directories being created in the Plesk virtual hostsâ directory. (PPPM-14320)
- Fixed the issue where running the
plesk sbin statistics
command could result in unnecessary and confusing warnings. (PPPM-14374)
Changes in Third-Party Components
Linux
- Updated Postfix to version 3.5.25.
Windows
- Updated ASP.NET Core 8.0 to version 8.0.3.
- Updated ASP.NET Core 7.0 to version 7.0.17.
- Updated ASP.NET Core 6.0 to version 6.0.28.
- Updated OpenSSL used by Plesk and Plesk Installer to version 3.0.13.
- Updated BIND to version 9.16.48.
- Updated MariaDB 10 to version 10.11.7.
Sectigo SSL 1.3.17
2 April 2024
- The extension no longer crashes with the âDeclaration of Plesk\Api\Client::request ⊠must be compatibleâ error. (EXTPLESK-5378)
DigitalOcean DNS 1.4.3
1 April 2024
- The extension no longer crashes with the âDeclaration of Plesk\Api\Client::request ⊠must be compatibleâ error. (EXTPLESK-5375)
WP Toolkit 6.3.1
29 March 2024
- Internal improvements
- (Plesk) Links to Plesk in vulnerability notifications now work properly. (EXTWPTOOLK-11550)
PHP Composer 1.2.30
29 March 2024
- The âPHP Deprecated Construction plesk_user_exec(): Passing null to parameter #3 ($input) of type string is deprecated âŠâ error no longer appears in %plesk_dir%\admin\logs\php_error.log in Plesk for Windows. (EXTPHPCOMP-238)
PHP Composer 1.2.12
29 March 2024
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk versions 18.0.18-18.33 and labeled it version 1.2.12. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.33 and later.
DigiCert SSL 1.12.0
29 March 2024
- TThe extension will not throw deprecation warnings while issuing certificate. (EXTPLESK-5374)
Plesk DNSSEC 1.5.0
28 March 2024
- The DNSSEC button is displayed to additional users with sufficient permissions. (PPPM-14294)
PHP Composer 1.2.11
28 March 2024
- The âPHP Deprecated Construction: Return type of PleskExt\Composer\Application::jsonSerialize() should either be compatible âŠâ error no longer appears in /var/log/plesk/panel.log in Plesk for Linux and %plesk_dir%\admin\logs\php_error.log in Plesk for Windows if Plesk is configured to generate deprecated warnings in PHP. (EXTPHPCOMP-236)
Extensions Catalog 1.17.7
28 March 2024
- Removed the QuickAccess feature from the Extensions Catalog.
WP Toolkit 6.3.0
27 March 2024
- Added integration with Wordfence vulnerability database:
- WP Toolkit now displays combined information from Patchstack and Wordfence vulnerability databases, with links to both services
- Some vulnerability entries might happen to be duplicates, but weâre working on merging them as well
- Introducing new vulnerability management UI based on WP Guardian
- Added the ability to filter out vulnerabilities based on their CVSS score to reduce alert fatigue
- Full-featured integration of WP Toolkit into Plesk Dynamic list is now available:
- Most WP Toolkit features are now accessible directly from Dynamic list in Plesk without having to visit the separate WP Toolkit interface
- Mass management operations are not in scope of this integration, please use the separate WP Toolkit interface for them
- To enable this feature, add
appModeFeature = on
under the[ext-wp-toolkit]
section of thepanel.ini
file
- Added a link to Codeable platform for site admins:
- Codeable provides access to WordPress experts and developers for WordPress site administrators
- Unlike many freelancers, Codeable experts and developers will never recommend against the current host
- To hide the link to Codeable, add
codeableIntegrationFeature = off
under the corresponding section of thepanel.ini
(Plesk) orconfig.ini
(cPanel) file. - To put your companyâs name on the Codeable landing page, add
codeableUrlCustomer = your company name
under the corresponding section of thepanel.ini
(Plesk) orconfig.ini
(cPanel) file.
- Added API for managing WordPress backups
- Added API for managing Sets
- Backup file name and timestamp are now added to the corresponding
meta.json
file - Backup API now allows to add an arbitrary description to the corresponding
meta.json
file - Security improvements
- Minor assorted improvements to Maintenance Mode
- Improved WordPress installation speed on CloudLinux OS
- Reduced memory consumption when working with vulnerabilities
- Fixed a bunch of PHP errors and notices appearing in server-level log files
- WP Toolkit now honestly reports if a site could not be added after the scan due to improper directory ownership. (EXTWPTOOLK-9679)
- Scan info message now provides info about reattaching a previously detached site. (EXTWPTOOLK-10109)
- Autoupdate policies are now properly applied to plugins and themes installed via set. (EXTWPTOOLK-10699)
-
Mitigate
action is no longer displayed for vulnerabilities that cannot be addressed by security measures. In fact, since the interface was reworked, this action does not appear at all because it was renamed toApply security measure
. (EXTWPTOOLK-11390) - Scheduled task execution no longer overlaps on servers with thousands of sites. (EXTWPTOOLK-11017)
- Maintenance mode timer is now limited to a maximum of 99 days because come on, really!? (EXTWPTOOLK-11181)
Node.js Toolkit 2.3.11
27 March 2024
- Installation of Node.js version 16 and lower no longer causes the âPHP Deprecated Constructionâ errors. (EXTNODEJS-311)
SSL It! 1.14.7
26 March 2024
- The âPHP Deprecated Constructionâ error no longer appears in /var/log/plesk/panel.log in Plesk for Linux and %plesk_dir%\admin\logs\php_error.log in Plesk for Windows if Plesk is configured to generate deprecated warnings in PHP. (EXTSSLIT-2056)
Let's Encrypt 3.2.6
26 March 2024
- The âException: PHP Warning: Undefined property: stdClass::$challengesâ error no longer occasionally appears in /var/log/plesk/panel.log in Plesk for Linux and %plesk_dir%\admin\logs\php_error.log in Plesk for Windows. (EXTLETSENC-1200)
NTP Timesync 1.3.0
22 March 2024
- It is now possible to access the extension by going to Tools & Settings > Network Time Synchronization (under âTools & Resourcesâ).
- âchronyâ is now marked as the recommended NTP service in the extension interface. (EXTPLESK-5334)
- Cases when NTP packages were removed manually are now correctly handled. (EXTPLESK-4596)
- Uninstalled NTP services no longer cause the extension to report errors. (EXTPLESK-4448)
NTP Timesync 1.2.1
22 March 2024
- We have created the current extension\âs âmaintenance onlyâ fork for Plesk versions 18.0-18.0.59 and labeled it version 1.2.1. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.60 and later.
Log Browser 1.7.0
22 March 2024
- We are happy to introduce a new version of the Log Browser extension. It allows Plesk administrators to track their actions and changes (as well as those of other Plesk users) right in the Plesk interface.
-
Plesk customers can now get access to Plesk Action Log events related to their subscriptions to monitor changes applied to them. The feature will be enabled gradually after the release of Plesk Obsidian 18.0.60. The link to Action Log will appear in the right menu near the domain card.
We consider the feature to be a mandatory requirement for Plesk to comply with the NIS2 directive. According to the directive, customers must have an ability to monitor changes related to their domains.
To enable the feature before its official release in Plesk Obsidian 18.0.60, add the following lines to the panel.ini file:
[actionLog] actionLogForEndUsers = true
Note: If you have already enabled the nis2complience setting in the panel.ini file, no need to enable actionLogForEndUsers as well. nis2complience enables all features related to compliance with the NIS2 directive.
- It is now possible to install and use the Log Browser extension in Plesk for Windows. The extension also provides access to Action Log events for customers the same way it is done in Plesk for Linux.
Log Browser 1.6.9
22 March 2024
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk versions 18.0.41-18.0.59 and labeled it version 1.6.9. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.60 and later.
PHP Updates
18 March 2024
- Updated PHP 8.2 to version 8.2.17.
- Updated PHP 8.3 to version 8.3.4.
Linux
- Updated PEAR to version 1.10.15 for PHP 8.3, 8.2, 8.1.
- Updated Archive_Tar to version 1.5.0 for PHP 8.3, 8.2, 8.1.
Site Import 1.7.1
14 March 2024
- No more PHP deprecation errors in Plesk 18.0.59 when importing mails. (PMT-5268)
SEO Toolkit 1.1.20
14 March 2024
- Fixed the loading of the âAdd keywordsâ page in multiple languages. (XOVI-10049)
Sitejet Builder 1.1.1
13 March 2024
- Added the paid Sitejet Commerce feature.
- Captcha can no longer be omitted in form submissions.
Repair Kit 1.3.6
12 March 2024
- The extension help messages now refer to actual documentation pages. (EXTPLESK-5333)
Plesk Obsidian 18.0.59 Update 2
5 March 2024
Fixed Product Issues
- Registering a Plesk Obsidian 18.0.59 server in Platform360 via the CLI no longer fails with the âReturn value must be of type ?string, array returnedâ error. (PPP-64309)
Monitoring 2.9.5
5 March 2024
- Opening domain cards from the âDomainsâ or âSubscriptionsâ pages no longer takes too much time if connection to 360 Monitoring is broken. (PPP-64231)
WP Toolkit 6.2.15
29 February 2024
- Improved the speed and efficiency of installing WordPress updates
Plesk Obsidian 18.0.59 Update 1
27 February 2024
Fixed Product Issues
-
(Plesk for Linux) PHP once again works correctly in password-protected directories. (PPPM-14334)
After the update, reconfigure the web server configuration files to apply the latest changes. To do so, go to Tools & Settings > Webserver Configurations Troubleshooter (under âAssistance and Troubleshootingâ), click Rebuild, and then click All in the drop-down menu.
Scheduled Backups List 1.2.0
26 February 2024
- The extension has been localized into 31 languages: Arabic, Catalan, Chinese Simplified, Chinese Traditional, Czech, Danish, Dutch, Filipino, Finnish, French, German, Greek, Hebrew, Hungarian, Indonesian, Italian, Japanese, Korean, Malay, Norwegian Bokmal, Polish, Portuguese, Portuguese, Brazilian, Romanian, Russian, Spanish, Swedish, Thai, Turkish, Ukrainian and Vietnamese.
SSL It! 1.14.6
21 February 2024
- The Letâs Encrypt button is now hidden from the âSSL/TLS Settingsâ page when the extension is not installed. (EXTSSLIT-2080)
Plesk Obsidian 18.0.59
20 February 2024
Whatâs New?
- Plesk administrators can now configure the appearance of the Plesk login page by setting a custom background image or color. Note that a number of limitations exist.
-
Introduced the following improvements for the Sitejet Builder extension:
- Added a feature to replace or append files in website elements using drag and drop.
- Added Polish as a new language to Sitejet Builder.
- Added a feature to sort by custom fields in Collections Manager.
- Added Collections to website backups.
- Added an optional feature to automatically clean up unused CSS code.
- Added the Sticky Column feature that allows for sticky content while scrolling through the website.
- New website template: Green Change.
- New website template: Pets Care.
- New website template: Podcaster.
- New website template: The Beauty Temple.
- Any changes related to DNS are now logged with the date and time, user, token, ID, and so on.
- Authorization requests and requests that change the Plesk or system configuration are logged using the system log service.
-
Added the ability to duplicate the Plesk action log records to syslog (Linux) or Event Log (Windows). To enable the feature, add the following lines to the
panel.ini
file:[actionLog] syslog = <false|true>
Note: We will prepare documentation for NIS2 compliance mode with the Plesk Obsidian 18.0.60 release.
-
Prepared a script to automate dist-upgrade from Ubuntu 20 to Ubuntu 22.
- (Plesk for Linux) We are happy to announce the support for Mailman 3 in Plesk on Debian 11 and Debian 12. Read more about Mailman 3 in Plesk.
- (Plesk for Windows) We are happy to introduce the new PowerShell Terminal extension in Plesk for Windows that allows connecting to PowerShell right in the Plesk user interface without having to use RDP connection to the server.
- The Plesk GUI now supports HTTP/2, which improves web performance, optimize resource use, and reduces browsing latency.
-
In Service Provider view, we added the count of customers, resellers, domains, subscriptions, and service plans to the left menu. That way you can quickly see how many business items exist on the server. You can disable the feature by adding the following lines to the
panel.ini
file:[navigation] showStatisticsInMenu = false
- Added support for the Drupal 10 application installation to the Application Catalog.
Linux
- Added support for MySQL Community Edition 8.2 and 8.3.
- Introduced the permission for Restricted Mode to the SSH Terminal extension.
- In the Log Browser extension, notifications about rebooting now contain the reboot date. (EXTPLESK-4170)
- Added support for Joomla! 5.x to the Joomla! Toolkit extension. This version requires the Plesk PHP 8.1 handler for the management calls. (EXTCERT-5096)
Feature Improvements
-
Significantly improved the performance of Dynamic List view on configurations with many domains. Our tests on configurations with 100 domains within one subscription shows a fourfold improvement in the page loading speed. It is now possible to interact with loaded elements without having to wait for the entire page to load, which means no more freezing.
We have also significantly improved the domain search speed.
-
We introduced a new option that prevents changes only to Restricted Mode without affecting the ability to switch between Power User and Service Provider views. To enable the feature, run the following CLI command:
plesk bin poweruser âoff -simple true -lock-simple-mode true
- Laravel Toolkit is now fully compatible with Laravel 10.
- Excluded Web Presence Builder from the âFull Installationâ preset. The component is shown if it was already installed or the
--show-hidden-components
option is used. -
Improved the usability of the measurement feature of Performance Booster in domain cards:
- Added the âMeasurementâ section to the Performance Booster drawer in a domain card.
- The Performance Booster button in the domain card now displays the optimization status.
Linux
- In the Docker extension, it is now possible to create a private container by manually port mapping to localhost so the container will be unavailable outside of the host.
Deprecated and Removed Items
-
(Plesk for Windows) In March 2024, Internet Systems Consortium (ISC) drops support for BIND for Windows. Starting from Plesk Obsidian 18.0.60, we will stop developing new features for BIND and stop testing BIND DNS. It means that we will not guarantee backward compatibility for such configurations. Our support team will also no longer provide answers to questions related to BIND DNS.
We strongly recommend that you switch to Microsoft DNS.
Fixed Product Issues
- DNS records of subdomains created using third-party extensions are now stored in their parent domainsâ zones if Plesk is configured accordingly. (PPPM-14316)
- Trailing spaces are now automatically removed from license activation codes. That helps reduce the number of failing activation attempts. (PPP-63917)
- When creating a mail account in the Plesk user interface, the GUIDs for a domain and client are added correctly again. (PPPM-14314)
Linux
- 1024-bit DKIM keys are once again generated correctly. (PPPM-14250)
- The
arc-sign
mail handler no longer produces errors when Authenticated Received Chain (ARC) is enabled in Plesk. (PPPM-14305) - ARC verification of forwarded emails no longer fails. (PPPM-14310)
- The database content is no longer counted twice on old database servers. (PPPM-14271)
- AppArmor does not falsely trigger on operations in
/var/named/run-root/
. (PPPM-14270) - In Dynamic List view, added the missing âCompatibility mode for the legacy option âSeparate SSL/TLS and non-SSL/TLS contentââ option to the âHostingâ page of domains. (PPPM-14258)
- Forwarded emails with attachments once again pass DKIM checks and are no longer marked as spam. (PPPM-14166)
Windows
- The Web Deploy feature can once again be switched off correctly. (PPPM-14309)
- Plesk can once again detect the virtualization type of virtual machines on Windows in VirtualBox. (PPPM-14289)
- The
-mail-service-ip
flag option now works correctly again. (PPPM-14243)
Changes in Third-Party Components
- Updated PHP used by Plesk to version 8.2.15.
Linux
- Updated courier-authlib and courier-unicode to versions 0.72.1 and 2.3.0, respectively.
- Updated ModSecurity to version 3.0.12.
- Updated Postfix to version 3.5.24.
- Updated Phusion Passenger to version 6.0.20.
- Updated Roundcube to version 1.6.6.
- Updated ProFTPD to version 1.3.8b.
- Updated brotli to version 1.1.0.
Windows
- Microsoft Drivers for PHP for SQL Server are now shipped with PHP 8.3.
- Updated ASP.NET Core 8.0 to version 8.0.1.
- Updated ASP.NET Core 7.0 to version 7.0.15.
- Updated ASP.NET Core 6.0 to version 6.0.26.
- Updated MariaDB to versions 10.11.6, 10.6.16, and 10.5.23 to fix the CVE-2023-22084 vulnerability.
- Updated MariaDB 7.0 to version 7.0.15.
- Updated MariaDB 6.0 to version 6.0.26.
- Updated MariaDB Connector/C to version 3.3.8.
Support SSH Access 1.2.2
20 February 2024
- Internal improvements.
-
sshd -T
is now used to identify SSH daemon port in non-default configurations. (EXTPLESK-5322)
Google Authenticator 1.5.5
9 February 2024
- The Google Authenticator button is no longer displayed to users without sufficient permissions. (PPPM-13678)
Sitejet Builder 1.1.0
8 February 2024
- Added a feature to replace or append files in website elements using drag and drop.
- Added Polish as a new language to Sitejet Builder.
- Added a feature to sort by custom fields in Collections Manager.
- Added Collections to website backups.
- Added an optional feature to automatically clean up unused CSS code.
- Added the Sticky Column feature that allows for sticky content while scrolling through the website.
- New website template: Green Change.
- New website template: Pets Care.
- New website template: Podcaster.
- New website template: The Beauty Temple.
- Improved error handling for quicker problem solving.
- Moved âChange templateâ from the domain overview to Sitejet Builder.
- Fixed an issue where localization files for date features were not synchronized.
Log Browser 1.6.8
2 February 2024
- Notifications about rebooting now contain the reboot date. (EXTPLESK-4170)
Docker 1.8.6
1 February 2024
- It is now possible to specify a containerâs ports so that they are no longer available to the outside world.
Node.js Toolkit 2.3.10
26 January 2024
- Node.js cached distribution archives are now excluded from both full and incremental backups. (EXTNODEJS-324)
- The automatic update task will not install new LTS Node.js versions if at least two Node.js versions are already installed. (EXTNODEJS-323)
Plesk Obsidian 18.0.58 Update 2
25 January 2024
Fixed Product Issues
Linux
- Fixed the issue where upgrading the MariaDB database server failed with the âThe storage engine for the table doesnât support checkâ error. (PPP-63936)
PHP Updates
22 January 2024
- Updated PHP 8.2 to version 8.2.15.
- Updated PHP 8.3 to version 8.3.2.
Linux
- Updated Xdebug to version 3.3.1 for PHP 8.3, 8.2.
- Updated PEAR to version 1.10.14 for PHP 8.3, 8.2.
Joomla! Toolkit 3.0.0
19 January 2024
- Added support for Joomla! 5.x. This version requires the Plesk PHP 8.1 handler for the management calls. (EXTCERT-5096)
- When updates for installed Joomla! extensions are available, a notification is now shown below the site preview window as well as on the âExtensionsâ tab. (EXTPLESK-4677)
Plesk Obsidian 18.0.58 Update 1
16 January 2024
Feature Improvements
- In Dynamic List view, you can now set any tab in the domain card as default using SDK.
-
(Plesk for Linux) Updated the default Plesk configuration to fix the CVE-2023-51764 vulnerability.
We strongly recommend that you update Plesk.
Fixed Product Issues
- Backing up to FTP storage no longer fails with the âUnable to create the remote backup: Transport error: Unable to resume an interrupted upload: Requested data is out of the cached dataâ error. (PPPM-14267)
- In Dynamic List view, the footer is now again shown in the cards of subdomains and domain forwarders. (PPP-63774)
- It is now again possible to sort the list of registered IP addresses. (PPP-63824)
Linux
- Fixed the issue where emails could be rendered incorrectly in Microsoft Outlook under specific circumstances. (PPPM-14272)
- Updating a Plesk server on AlmaLinux 9 to version 18.0.58 no longer fails with the âerror: find: /etc/domainkeys/: No such file or directorâ error. (PPPM-14274)
- After updating MariaDB to version 10.11, it is now again possible to access WordPress websites in the Plesk interface. (PPP-63841)
Changes in Third-Party Components
- (Plesk for Linux) Updated Postfix to version 3.5.23.
Repair Kit 1.3.5
16 January 2024
- The feature âMySQL Process List (Beta)â renamed to âDatabase Process Listâ.
Plesk Obsidian 18.0.58
9 January 2024
Whatâs New?
Linux
- Authenticated Received Chain (ARC) support was added for Postfix and qmail.
-
Added the ability to upgrade MariaDB database servers to the latest version in the LTS branch via the Plesk interface. The feature is currently in beta. To enable it, add the following lines to the
panel.ini
file:[databaseManagement] features.canBeUpgraded = 1
-
Prepared a script to automate dist-upgrade from Debian 11 to Debian 12.
- PostgreSQL 15 is now supported.
- .NET 8.0 is now supported.
Feature Improvements
- When creating a subscription in Service Provider view, users are no longer redirected to the domain card of the newly created subscriptionâs main domain, and remain on the âSubscriptionsâ screen instead.
- Added the ability to apply filters to the list of domains on the âWebsites & Domainsâ page in Power User view.
- SSH Terminal is now available from the Repair Kit interface.
- The Plesk Installer web interface can now be accessed on Plesk servers that have the TCP port 8447 blocked.
- The daily, hourly, weekly, and monthly maintenance tasks now run asynchronously. This prevents issues that could be caused by a new task starting before an existing task could finish running.
- Updated the design of the âTools & Settingsâ > âPerformance Boosterâ > âServerwideâ tab to make it better match the rest of the Plesk interface, and also to increase its readability.
Deprecated and Removed Items
- Starting from Plesk Obsidian 18.0.59, all users will be automatically switched to Dynamic List view. The ability to select a different view will be removed. Learn why Dynamic List view is the better option.
Fixed Product Issues
- Fixed the issue where restoring a server backup containing one or more custom service plans resulted in the âWrong syntax for commandâs â-php_handler_typeâ parameter. ââ does not match the patternâ error. (PPP-63417)
- Fixed the issue where opening the âDomainsâ page resulted in the âCannot read properties of undefined (reading âstateâ)â or âDb_Table_Exception: Unable to find row with id in domain_aliases table.â errors when one or more add-on domains and/or domain aliases existed in Plesk. (PPPM-14216)
- It is no longer possible to enable SSL/TLS support for a domain that does not allow that option (for example, because the option is disabled in subscription or service plan settings) in Dynamic List view. (PPPM-14209)
- Fixed the issue where email notifications regarding issues during the creation of a backup were failing SPF checks because they were not being sent on behalf of the admin user by default. (PPPM-12518)
- The ampersand (â&â) character is no longer rendered as â&â on the Plesk login page when a custom title containing one or more ampersand characters is configured. (PPPM-14237)
- Applying the suggested settings in Performance Booster no longer results in the number of files opened by MySQL/MariaDB processes increasing greatly. (PPPM-14207)
Linux
- Fixed the issue where clicking Check configuration in Webserver Configurations Troubleshooter resulted in the âCall to private method PleskInstallation::isInstalled() from scope WebserverConfigurationKnownIssuesâ error. (PPPM-14219)
- Event handlers for the âMail account updatedâ event are no longer executed multiple times when triggered. (PPPM-14204)
- When updating the default SSL/TLS certificate, the success message is now shown only once the process has finished. This is to help clear up confusion that could occur when updating the default SSL/TLS certificate on servers hosting large numbers of domains (the operation was shown as completed in the Plesk interface, but the actual updating of configuration files continued in background). (PPPM-12005)
- Fixed the issue where domain aliases had incorrect ownership set on the file necessary for DKIM protection to work correctly. (PPPM-14248)
- On ARM-based Ubuntu 22.04 servers, unsupported antivirus products are no longer recommended on mailboxesâ âAntivirusâ tab. (PPPM-14246)
- Adding a malformed TXT DNS record now correctly results in an error. (PPPM-14244)
- Migrating from a Plesk server no longer fails with the âCan not find IP addresses for ownerâ error if that serverâs administrator account has a username other than âadminâ. (PPPM-14240)
- The mail log is now rotated properly on Plesk servers where the mail server has been replaced with MSMTP. (PPPM-14223)
Windows
- Fixed the issue where creating a full backup of a domain imported from a different Plesk for Windows server resulted in the âThe âstatusCodeâ attribute is invalid. Not a valid unsigned integer.â error. (PPP-63514)
- Fixed the issue where saving any changes to hosting settings for a domain owned by a customer resulted in the âPermission deniedâ error if the customerâs subscription was missing the âHosting settings managementâ permission. (PPPM-14259)
- The âDomain nameâ field is no longer missing when adding a TLSA DNS record. (PPPM-14256)
- Securing the mail service with an SSL/TLS certificate no longer fails with the ânot an arrayâ error on Plesk servers using SmarterMail build 8747 and later. (PPPM-14249)
Changes in Third-Party Components
- Updated PHP used by Plesk to version 8.2.13.
Linux
- Updated ModSecurity to version 3.0.11.
.NET Toolkit 2.1.12
4 January 2024
- Internal improvements.
- Unavailable ASP.NET Core Runtime versions are no longer displayed in the list. (EXTPLESK-5259)
Sitejet Builder 1.0.6
2 January 2024
- Selected values are now again displayed correctly in emails sent after a contact form is submitted.
PHP Updates
2 January 2024
- Updated PHP 8.1 to version 8.1.27.
- Updated PHP 8.2 to version 8.2.14.
- Updated PHP 8.3 to version 8.3.1.
Plesk Migrator 2.25.2
21 December 2023
- Migration no longer fails while creating mailboxes for subscriptions with a suspended owner. (PMT-5002)
Plesk Obsidian 18.0.57 Update 5
19 December 2023
Fixed Product Issues
- The contents of the âDomainsâ page no longer take a very long time to load on servers hosting a large number of domains when the number of domains per page is set to âAllâ. (PPPM-14232)
Nextcloud 1.6.7
19 December 2023
- The extension installation no longer crashes with the âPhp handler does not existsâ error. (EXTPLESK-5258)
Plesk Obsidian 18.0.57 Update 4
12 December 2023
Fixed Product Issues
- Disabling one or more domains from the list of domains owned by a single customer no longer results in domains that were not selected getting disabled. (PPPM-14238)
- When a customer tries to remove domains, the confirmation window again shows the correct number of domains for removal. (PPPM-14239)
SSH Terminal 1.3.4
12 December 2023
- The root SSH terminal is now available on the
/repair/
page and can be used to recover a server.
DigitalOcean DNS 1.4.2
12 December 2023
- The extension now works more stable and no longer shows PHP warnings. (EXTPLESK-5227)
Monitoring 2.9.3
8 December 2023
- The âPlesk\Exception\Database: DB query failed: DROP USER IF EXISTS monitoringâ@âlocalhostâ error no longer appears when
agent360
is being updated in the extension. (EXTPLESK-5242)
WP Toolkit 6.2.13
7 December 2023
- Autoupdate tasks now have less chances to hang for some mysterious reason. (EXTWPTOOLK-10922)
Plesk Obsidian 18.0.57 Update 3
6 December 2023
Fixed Product Issues
Linux
- Calculation of domain statistics no longer fails with the âInternal error during processing statistic for service node #1[local]:SQLSTATE[HY000] [2002] Connection refusedâ error. (PPPM-14226)
- The status of the Ubuntu Pro subcription is now checked correctly for Plesk running on Ubuntu. (PPPM-14229)
Monitoring 2.9.2
5 December 2023
- The 360 Monitoring data page of a website now opens correctly again. (EXTPLESK-5246)
Sectigo SSL 1.3.16
4 December 2023
- Daily tasks to remove outdated tokens are no longer duplicated when updating the extension. (EXTPLESK-5241)
Monitoring 2.9.1
4 December 2023
- Agent360 will now be automatically updated along with the extension if 360 Monitoring is used.
- We updated the IIS memory usage threshold to 30% on new installations of the extension so that it does not create misleading alerts in Plesk. (EXTPLESK-5214)
- To prevent possible issues, the plesk-ext-monitoring-hcd service now starts after Grafana is launched. (EXTPLESK-5234)
Sitejet Builder 1.0.5
30 November 2023
- After updating to Plesk Obsidian 18.0.57, the Sitejet Builder button is now again shown in the cards of domains created in Plesk Obsidian 18.0.56 or earlier.
Plesk Obsidian 18.0.57 Update 2
29 November 2023
Fixed Product Issues
- The website preview thumbnail now gets rendered correctly. (PPPM-14221)
- Backing up a domain with no hosting no longer completes with the âUnable to back up domain keys. Error: Unable to find service node for web service on domain with id=4â error. (PPP-63365)
Linux
- ModSecurity no longer automatically updates the âAtomic Standardâ and âAtomic Advancedâ rule sets ignoring the Plesk settings. (PPPM-14222)
- The System Updates tool can now be used on Plesk running on Ubuntu 18.04 with Ubuntu Pro. (PPP-63371)
- Improved detection of the KVM hypervisor. (PPP-63387)
PHP Updates
27 November 2023
- PHP 8.3.0 is now shipped with Plesk Obsidian 18.0.57 and later on all supported OSes.
- Updated PHP 8.2 to version 8.2.13.
- Updated PHP 8.1 to version 8.1.26.
Linux
- Updated Redis to version 6.0.2 for PHP 8.0.
Plesk Premium Email, powered by Kolab 16.15.6-3
25 November 2023
- Added support for Debian 12 Bookworm.
Plesk Obsidian 18.0.57 Update 1
22 November 2023
Fixed Product Issues
- The âWebsites & Domainsâ screen now opens again when an add-on domain has an alias. (PPPM-14216)
Linux
- Checking configurations using Webserver Configuration Troubleshooter no longer fails. (PPPM-14219)
Plesk Obsidian 18.0.57
21 November 2023
Whatâs New?
- It is now possible to change the Plesk Administrator username.
- The Sitejet Builder, Node.js Toolkit, and Laravel Toolkit extensions are now shipped with Plesk by default.
-
Added the Welcome Panel to make it easier for new users to quickly build websites. It offers many choices to create a website with just one click (like Sitejet, WordPress, Laravel, Node.js, and more). The panel pops up for users who just got hosting with a ready-to-use domain or picked Blank website or Upload files when creating a website. If they close the Welcome Panel, they can still find all the website-making options under the Create Website button on the domain card.
-
The latest update of the DNS integration for Cloudflare extension got the following new features:
- Added the ability to remove a domain from Cloudflare when removing it from Plesk.
- Added the option to enable/disable export of NS records from Plesk to Cloudflare.
Linux
- Plesk will now compare and show Time To First Byte (TTFB) before and after optimizations made by Performance Booster (Tools & Settings > Performance Booster (under âGeneral Settingsâ)). The TTFB comparison helps to estimate the achieved performance speedup for a website.
- Debian 12 is now supported.
-
Until September 2024 (the Extended Support end date), Plesk continues to deliver new versions of Plesk Obsidian for Ubuntu 18.04. It includes delivering new features and security updates if they do not contradict the software delivered by the OS vendor.
We strongly recommend using Extended Support from the OS vendor, which is called Ubuntu Pro, until you upgrade to Ubuntu 20.04 or migrate to another supported OS.
Note: If Ubuntu Pro is not used, Plesk is not responsible for any functional or security issues caused by the outdated software from the OS vendor.
-
Prepared a script to automate dist-upgrade from Ubuntu 18 to Ubuntu 20.
Windows
-
Remote PostgreSQL database servers are now supported. It is now possible to use them to manage, back up, and restore databases.
Note: The size of remote PostgreSQL databases is now calculated and added to the disk usage statistics.
-
.NET 8.0 is now supported.
Feature Improvements
- Buttons on the âAdding New Domainâ and âInstall an Applicationâ drawers now support the Vimium Chrome extension. This improvement makes it possible to create a website with a desired appication using only a keyboard and hotkeys.
-
Aligned the view and layout of the domain list in Service Provider view with that of Dynamic List in Power User view:
- The âDomainâ column now shows favicons, the âCopy domain nameâ links, and reflects domainsâ hosting types (âforwardingâ or âno hostingâ).
- Added the âStatusâ column, which shows a domainâs status (active, suspended, or disabled).
- Added the âFile Managerâ, âMail Accountsâ, âDatabasesâ, and âHosting Settingsâ buttons. These buttons provide quick access to the corresponding menus. The exact set of buttons depend on a domainâs configuration.
-
The âSetup Dateâ, âExpiration Dateâ, and âRank Trackerâ (the SEO Toolkit extension feature) columns are now hidden by default. To show them on the domain list, add the following lines to the
panel.ini
file:[domainManagement] showColumnSetupDate = true ; shows the "Setup Date" column showColumnExpirationDate = true ; shows the "Expiration Date" column showExtensionsColumns = true ; shows the "Rank Tracker" column
- Added the âDisk Usageâ and âTrafficâ columns to Dynamic List in Power User view. Using the columns, it is also possible to sort domains by used disk space and generated traffic.
- The dropdown menu with a domain status (active, suspended, or disabled) now shows a hint with a link to the documentation, which describes these statuses.
-
The latest update of the Sitejet Builder extension got the following improvements and new features:
- In the domain card a comment now explains when a website has been published the last time.
- New Website Template: https://www.template-estator.de.rs/.
- New Website Template: Johanna James.
- We updated the Icon Library, offering hundreds of new icons including icons for X (formerly Twitter).
- The Collections Manager was completely redesigned for a better experience.
- We added many more languages to translate websites.
- In the latest update of the Node.js Toolkit, the Passenger module for nginx and Apache is now disabled by default and will be enabled on the first activation of a Node.js application.
Windows
- Revoked the
db_backupoperator
Microsoft SQL Server role from database users created in Plesk. Learn how to bring back the role to database users created in Plesk.
Deprecated and Removed Items
-
PHP 8.0 reaches end of life on November 26, 2023. Made the following changes to stay on track with the schedule:
- Switched Roundcube to PHP 8.2.
- Marked PHP 8.0 as deprecated in Plesk Autoinstaller and the Plesk interface.
- Removed PHP 8.0 from the Recommended and Full presets in Plesk Autoinstaller.
- Added PHP 8.1 and 8.2 to the Recommended preset.
Windows
-
Dropped support for Windows Server 2012 and Windows Server 2012 R2:
- Plesk can no longer be installed on Windows Server 2012 or Windows Server 2012 R2.
-
If you have a previous version of Plesk installed on Windows Server 2012 or Windows Server 2012 R2, you cannot upgrade to the latest Plesk version.
Either migrate to a supported OS using Plesk Migrator or perform an in-place OS upgrade.
Fixed Product Issues
- It is now possible to store backups in FTP storage points whose number of connections is limited to 1 or 2. (PPPM-8749)
- When the âApply individual settings to spam filteringâ setting is disabled in Tools & Settings > Spam Filter (under âMailâ) and an email address is blacklisted on the server level, mail from the email address is rejected or sent to spam as expected. (PPPM-13601, PPPM-14040, PPPM-10722)
- The Reset Search button in Websites & Domains > domain > Password-Protected Directories again works. (PPPM-14192)
- Plesk can again generate DKIM and DNS record if the BIND DNS server component is not installed. (PPPM-14176)
- Items in rows shown on the Domains screen in Service Provider view are now horizontally aligned. (PPP-62830)
- Log rotation is again unavailable on the domain level when the server-wide âForce daily log rotation for all domainsâ setting is enabled. (PPPM-14157)
- Changing a domain name or the document root name to those with trailing spaces no longer produces errors. (PPPM-14155)
- Autofill for the document root now works when a domain is being added to a subscription that has an international domain name (IDN). (PPP-60070)
- Autofill for the document root now works when a subdomain is being added to an IDN domain. (PPP-60070)
- Password reset and activation emails are no longer sent from the default email address if a custom one is specified in the
senderAddress
setting of thepanel.ini
file. (PPPM-14183)
Linux
- The SpamAssassin spam filter no longer writes unclear error messages to
panel.log
. (PPPM-14174) - Setting âDefault limit on outgoing messages from a subscription (per hour)â in Tools & Settings > Mail Server Settings (under âMailâ) no longer triggers false-positive warnings in the Plesk interface about exceeding the default limits on outgoing messages from a mailbox and a domain. (PPPM-14168)
- Installing WordPress on a blank website no longer fails under specific circumstances if the following installation method is used:
domain > Create Website > More Apps > âFeatured Applicationsâ > the arrow icon next to Install next to WordPress > Install Version >
. (PPPM-14094) - It is no longer possible to set the nginx cache size to 0, which caused issues with the permanent clearance of the cache. (PPPM-14201)
- It is no longer possible to add a DNS record with the asterisk
*
character in the middle of it (for example,webmail.*.example.com.
) because it does not work as a wildcard DNS record and breaks BIND. (PPPM-14186)
Windows
- If a folder name contains whitespace characters, it no longer makes the corresponding folder in Virtual Directories unaccessible. (PPPM-14129)
- If Plesk has Microsoft SQL Server and a locally installed MariaDB 10.6 as an external database server with the
localhost
as its hostname, it is now possible to select MariaDB (localhost
) from a dropdown menu when creating a database. (PPPM-14077) - It is again possible to enable âRedirect to an external mail server with the IP addressâ for a domain. (PPPM-14200)
- Plesk now detects the server virtual environment even if the
zvutil64.exe
utility is missing. (PPPM-14199) - It is again possible to change the password of the database user account with administrative rights for Microsoft SQL Server. (PPPM-14197)
- Renamed the âlog files and statistic reportsâ checkbox in Tools & Settings > Server Settings (under âGeneral Settingsâ) to âlog filesâ because only they can be excluded from the disk space usage calculation. (PPPM-14191)
Changes in Third-Party Components
Linux
- Updated ProFTPD to version 1.3.8a.
- Updated libcurl to version 8.4.0.
Windows
- Updated Git to version 2.42.0.2.
- Updated Node.js 18 to version 18.18.2.
- Updated Node.js 16 to version 16.20.2.
- Updated ASP.NET Core 7.0 to version 7.0.13.
- Updated ASP.NET Core 6.0 to version 6.0.24.
Support SSH Access 1.2.1
20 November 2023
- Extension licenses bought in Plesk Online Store are now again marked as âSupportedâ. (EXTPLESK-5099)
- When a license key is updated, its status is now shown correctly in the Plesk interface right away. (EXTPLESK-4922)
Sitejet Builder 1.0.4
20 November 2023
- Integrated Sitejet with XOVI NOW to provide users with valuable SEO insights.
- Added RSS Feeds for collections
- Added support for reference elements inside collections
- New Website Template: WeTrain.
- New Website Template: Cleaner.
- New Website Template: Delicioso.
- New Website Template: Dream Garden.
- Improved the publishing process to include dynamically embedded language flags.
- Entering the Sitejet API key is no longer required after re-installing Sitejet.
- Fixed an issue where forms did not work for domains without the âwwwâ prefix.
Site Import 1.7.0
20 November 2023
- The extension can now be installed on Plesk servers running on Debian 12.
Plesk Migrator 2.25.0
20 November 2023
- The extension can now be installed on Plesk servers running on Debian 12.
- Internal improvements
WP Toolkit 6.2.12
16 November 2023
- Updated wp-cli to version 2.9 for improved compatibility with WordPress 6.4 and newer.
Docker 1.8.3
15 November 2023
- Now installation of the extension will be aborted if any container management system other than Docker CE is used. That way containers and related data will remain preserved. (EXTDOCKER-184)
Joomla! Toolkit 2.5.14
14 November 2023
- Joomla! Toolkit no longer incorrectly reports failed extension updates as successful. (EXTPLESK-4153)
Node.js Toolkit 2.3.9
9 November 2023
- The Passenger module for nginx and Apache is now disabled by default and will be enabled on the first activation of a Node.js application.
Plesk Obsidian 18.0.56 Update 4
7 November 2023
Changes in Third-Party Components
Linux
- Updated Roundcube to version 1.6.5.
WP Toolkit 6.2.11
6 November 2023
- Login to WordPress from Dynamic List works correctly again if certain installed WP plugins are incompatible with PHP version used on a domain. (EXTWPTOOLK-10854)
DigitalOcean DNS 1.4.1
2 November 2023
- The extension no longer crashes with the âGrant âLeague\OAuth2\Client\Grant\AuthorizationCodeâ must extend AbstractGrantâ error. (EXTPLESK-5147)
Plesk Obsidian 18.0.56 Update 3
1 November 2023
Fixed Product Issues
- The âBackup to Cloud Proâ banner no longer mistakenly appears when the Plesk administrator tries to create a scheduled server backup in remote storage. The issue was spotted in Plesk Obsidian 18.0.56. (PPPM-14179)
Linux
-
In Plesk Obsidian 18.0.56 (including Updates 1 and 2), changing Apache from listening on localhost to listening on the server IP address no longer breaks nginx when its âProxy modeâ is on. (PPPM-14178)
Note: To fix the issue if you were affected by it, update your Plesk to version 18.0.56 Update 3, and then run the following command:
plesk bin apache --listen-on-localhost false
orplesk bin apache --listen-on-localhost true
. -
If you have Plesk Obsidian 18.0.56 (including Updates 1 and 2) that is not running on CentOS 7 or does not use the FastCGI PHP handler, enabling Apache to listen on localhost no longer breaks PHP scripts that use the
$_SERVER["SERVER_ADDR"]
PHP variable. (PPPM-14184)Note: To fix the issue if you were affected by it, update your Plesk to version 18.0.56 Update 3, and then run the
plesk bin apache --listen-on-localhost true
command.
DigitalOcean DNS 1.4.0
1 November 2023
- Custom TTL values for individual records are now correctly synchronized with the DigitalOcean DNS service. (EXTPLESK-2272)
DigitalOcean DNS 1.3.12
1 November 2023
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk versions 18.0.22-18.0.52 and labeled it version 1.3.12. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.53 and later.
PHP Updates
30 October 2023
- Updated PHP 8.1 to version 8.1.25.
- Updated PHP 8.2 to version 8.2.12.
Linux
- Updated Redis to version 6.0.2 for PHP 8.2, 8.1.
- Updated libwebp for GD to version 1.3.2 for PHP 8.2, 8.1.
Plesk Obsidian 18.0.56 Update 2
27 October 2023
Fixed Product Issues
Linux
-
Websites and web applications that analyze client IP addresses now work properly again when Apache is listening to localhost. (PPPM-14170)
To update the malfunctioning configuration, run the following command:
plesk bin apache --listen-on-localhost true grep RemoteIPInternalProxy /etc/httpd/conf/plesk.conf.d/server.conf RemoteIPInternalProxy 127.0.0.1
- Private DKIM keys are now preserved when disabling DKIM signing for a domain. (PPP-62757)
- For security reasons, it is no longer possible to manage WP Toolkit settings when logged in to Plesk using the mail credentials of an additional user. (PPPM-14172)
Changes in Third-Party Components
Linux
- Updated Roundcube to version 1.6.4.
- Updated Roundcube to version 1.4.15.
DNS integration for Cloudflare 1.0.2
26 October 2023
- Added the ability to remove a domain from Cloudflare when removing it from Plesk. (EXTPLESK-5077)
- Added the option to enable/disable export of NS records from Plesk to Cloudflare. (EXTPLESK-4177)
Docker 1.7.1
24 October 2023
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk versions 18.0.50-18.0.52 and labelled it version 1.6.6. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.53 and later.
SOGo Webmail 1.1.2
23 October 2023
- Updated translations.
- The
dnf
update command again works in Plesk on AlmaLinux 8 if the SOGo Webmail extension is installed. (EXTPLESK-4933)
Docker 1.6.5
23 October 2023
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk versions 18.0.50-18.0.51 and labeled it version 1.6.5. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.52 and later.
Plesk Obsidian 18.0.56 Update 1
18 October 2023
Fixed Product Issues
Linux
- Restoring a backup created in Plesk Obsidian 18.0.55 or earlier on a Plesk Obsidian 18.0.56 server no longer fails with the âIncorrect format of the backup file. Dump has critical errors.â error. (PPPM-14162)
- Clicking Ok on the âTools & Settingsâ > âSpam Filterâ screen no longer results in the âVariable â$inputâ got invalid value N at âinput.requiredHitsâ; String cannot represent a non string value: Nâ error. (PPPM-14163)
PHP Composer 1.2.9
17 October 2023
- Backing up a subscription with many applications no longer fails. (EXTPHPCOMP-219)
Sitejet Builder 1.0.3
16 October 2023
- In the domain card a comment now explains when a website has been published the last time.
- New Website Template: https://www.template-estator.de.rs/.
- New Website Template: Johanna James.
- We updated the Icon Library, offering hundreds of new icons including icons for X (formerly Twitter).
- The Collections Manager was completely redesigned for a better experience.
- We added many more languages to translate websites.
- Fixed an issue where migration of websites sometimes failed.
- The robots.txt file will no longer be published to the document root, leaving room for a custom file.
DNS integration for Cloudflare 1.0.1
16 October 2023
- Importing DNS records no longer fails if there is no information about nameservers in the Cloudflare accountâs DNS zone. (EXTPLESK-5087)
Plesk Email Security 1.3.9
13 October 2023
- Resetting the server-wide spam policy no longer fails with the âThe domain is invalidâ error. (EXTPLESK-4276)
Plesk Obsidian 18.0.56
10 October 2023
Whatâs New?
-
Starting from Plesk Obsidian 18.0.56, the Sitejet Builder extension is installed by default. If for some reason, you want to disable the extension, add the following lines to the
panel.ini
file:[extensions] blacklist = plesk-sitejet
-
Starting from Plesk Obsidian 18.0.57 (November 21), the Laravel Toolkit and Node.js Toolkit extensions are installed by default. If for some reason you want to disable the extensions, add the following lines to the
panel.ini
file:[extensions] blacklist = laravel,nodejs
- The SSL It! extension now supports DNS-based Authentication of Named Entities (DANE) that ensures reliable encryption for email transport. When a Letâs Encrypt certificate is being issued, TLSA DNS records of email services will now automatically contain information about the certificate.
-
It is now possible to change the
default
DKIM selector to a custom one for a single domain or all new domains hosted on the server.You specify a custom DKIM selector for a domain in the domainâs mail settings. To specify a custom DKIM selector for all new domains, add lines of the following pattern to the
panel.ini
file:[mail] dkimDefaultSelector = newselector
-
We are glad to inform you that the DNS Integration for Cloudflare extension is production-ready. Empower your experience with simplified DNS synchronization, enhanced website security, effortless subdomain creation, and smoother workflows. Use Cloudflare CDN, which distributes content around the world to speed up websites.
- Connect your existing Cloudflare account to Plesk.
- Import DNS records from Cloudflare to Plesk.
- Export DNS records from Plesk to Cloudflare (both manually and automatically).
- Enable/disable Proxy Mode.
Linux
-
Returned support for Ubuntu 18.04 until September 2024.
Until September 2024 (the Extended Support end date), Plesk continues to deliver new versions of Plesk Obsidian for Ubuntu 18.04. It includes delivering new features and security updates if they do not contradict the software delivered by the OS vendor.
- Plesk continues to accept technical support requests from Plesk Obsidian on supported product versions on Ubuntu 18.04 without any restrictions.
- Plesk reserves the right to warn Ubuntu 18.04 administrators about risks of an outdated OS using any channels including in-product notifications.
We would like to make the following recommendations to our customers:
- Upgrade to Ubuntu 20.04 using dist-upgrade or migrate to a supported OS using Plesk Migrator before the Extended Support end date (September 2024).
- Do not deploy/use new installations of Plesk on Ubuntu 18.04. For all new installations, Plesk will show an unremovable banner with a warning about Extended Support from the OS vendor.
-
To enhance security, Apache now listens to only the loopback IP address (also called localhost) when Apache runs with nginx as a reverse proxy.
This feature is turned on by default on new Plesk installations. To enable it on existing installations, run the following CLI command:
plesk bin apache --listen-on-localhost true
. For information on the feature, see the KB article.
Feature Improvements
-
Improved the logic of the Monitoring button shown on the domain card:
- The Monitoring button is not displayed when it is not needed (a user chose to monitor a website themselves and did not connect the website to 360 Monitoring).
- Connecting a website to 360 Monitoring brings back the Monitoring button to the domain card.
- If a website is connected to 360 Monitoring, clicking the Monitoring button now opens the 360 Monitoring data of the website.
-
The icon of the Monitoring button on the domain card is now dynamic: it reflects the current status of Monitoring for a domain.
Linux
-
alt-php
handlers are no longer misleadingly marked as âOutdatedâ in Plesk. On the contrary, they are supported and actively developed by CloudLinux. - Decreased the disk space the ModSecurity database consumes.
Deprecated and Removed Items
-
The following SDK functionality will be deprecated and removed in Plesk Obsidian 18.0.57. These are legacy functions and classes exposed in the
pm.php
file:- Functions:
pm_alert()
,pm_warning()
,pm_comm_button()
,pm_get_gpc()
,pm_isset_gpc()
,pm_set_gpc()
,pm_get_locale()
,pm_go_to()
,pm_go_to_uplevel()
,pm_ldate()
,pm_ltime()
,pm_ldatetime()
,pm_link_button()
,pm_lmsg()
,pm_plesk_mail()
,pm_psaerror()
,pm_safetyhtml()
,pm_size_b_printing()
,pm_size_kb_printing()
,pm_size_mb_printing()
,pm_size_pretty_printing()
,pm_topnote()
,pm_util_exec()
,pm_util_io_exec()
. - Classes:
pm_errHandler
,pm_Checker
,pm_cList
,pm_Form
,pm_CustomButton
,pm_CustomButtonManager
.
We would like to make the following recommendations:
- If you have Plesk extensions published in the Plesk Extension Catalog, then we have already checked that the extensions do not use those legacy functions and classes.
- If you have Plesk extensions not published in the Plesk Extension Catalog, check if your extensions use the modern SDK.
- Functions:
Fixed Product Issues
- Domains > domain > FTP > FTP account name again opens the Hosting Settings drawer of the system user. (PPPM-14140)
- A domain restored from a backup now preserves the configuration of the home path for additional FTP users. (PPPM-14114)
- If Plesk Premium Antivirus is installed, the âConfigure antivirusâ permission of the âApplication Iserâ role is again sufficient for managing the antivirus settings and displaying the âAntivirusâ tab. (PPPM-14119)
- The selected Dark Mode is now preserved and no longer expires together with a browser session. (PPPM-14151)
- The action log now contains more detailed entries about mailbox password changes. (PPPM-14146)
Linux
- The
systemd/journalctl
logs in Plesk on Ubuntu 22.04 no longer contain unnecessary âStandard output type syslog is obsoleteâ warnings. (PPPM-14138) - An attempt to connect via FTP to Plesk with the
psa-proftpd
package from Atomic Secured Linux (ASL) no longer fails with theunknown configuration directive 'ClamServer' on line 101 of '/etc/proftpd.conf'
error in/var/log/messages
. (PPP-62527) - When a user tries deleting a directory they have no permission to read, Plesk now shows an actual error message instead of an error message placeholder. (PPPM-14128)
- Plesk now validates a domainâs DNS zone before adding or updating the zone. This prevents BIND from crashing because of the invalid DNS zone. (PPP-62058)
- The
dnf update
command again works in Plesk on AlmaLinux 8 if the SOGo Webmail extension is installed. (EXTPLESK-4933) - The NTP Timesync extension now syncs time even if the chrony package is removed or not installed. (EXTPLESK-4596)
- The IP address drawer (Tools & Settings > IP Addresses > IP address) is now opened in Firefox 118.0.1 without any issues. (PPPM-14153)
- The
--set-custom-config
command again works with theplesk bin server_dns
utility. (PPPM-14149) - DKIM signing of outgoing mail is now disabled for subscriptions created via the CLI or API if no DNS server is installed or DKIM signing is disabled for the whole server. (PPPM-14134)
- Attempts to add particular configurations to the âAdditional Apache directivesâ text field no longer result in false positive errors about not closed
Location
tags. (PPPM-14132) - SSH Terminal now works when
PermitRootLogin
is set tono
in/etc/ssh/sshd_config
. (PPPM-14124) - Cgroups Manager can now manage CPU usage of a subscription in Plesk on AlmaLinux 8 when
multipathd.service
is enabled. (PPPM-14047)
Windows
- Plesk Task Manager can now handle and write exceptions to
panel.log
when it fails to flush old tasks. (PPPM-14122) - It is now possible to create a backup when a Microsoft SQL database has the
AUTO_CLOSE=on
option. (PPPM-13922)
Changes in Third-Party Components
- Updated ModSecurity 2.9 to version 2.9.7.
- Updated OWASP ModSecurity CRS to version 3.3.5.
Linux
- Updated ModSecurity 3.0 to version 3.0.10.
- Updated Roundcube to version 1.6.3.
- Updated Courier-IMAP to version 5.2.5.
- Updated Kaspersky Anti-Virus SDK to version x64-8.9.2.824.
- Updated Kaspersky Anti-Virus SDK to version x86-8.9.2.595.
Windows
- Updated ASP.NET Core 7.0 to version 7.0.11.
- Updated ASP.NET Core 6.0 to version 6.0.22.
- Updated BIND to version 9.16.44.
DNS integration for Cloudflare 1.0.0
10 October 2023
- Initial production ready release.
- Import DNS records to Plesk from Cloudflare.
- Export DNS records from Plesk to Cloudflare.
- Enable/disable proxy mode in Plesk to start using Cloudflare CDN per DNS record.
- Manage customersâ domains under an administrator account if needed.
- Customize the type of DNS records to be managed/synced by the extension.
Monitoring 2.8.0
5 October 2023
- If a website is connected to 360 Monitoring, clicking the âMonitoringâ button now opens the 360 Monitoring data of the website.
- The Monitoring button can now be hidden from a domain card if you choose to monitor a website on your own and did not connect the website to 360 Monitoring. We also improved appearance of the button and made its icon dynamically reflect the current status of Monitoring for a domain.
- Internal improvements.
PHP Updates
2 October 2023
- Updated PHP 8.2 to version 8.2.11.
- Updated PHP 8.1 to version 8.1.24.
Linux
- Updated Redis to version 6.0.1 for PHP 8.2, 8.1.
Docker 1.6.4
29 September 2023
- Reverted the changes made in version 1.6.3: âThe container ports are no longer available to the outside world. (PPPM-9222)â.
SSL It! 1.14.1
27 September 2023
- Accessing the SSL It! page for a domain no longer fails with the âCannot access offset of type stringâ error. (EXTSSLIT-2062)
SSL It! 1.14.0
25 September 2023
- Added support for DNS-based Authentication of Named Entities (DANE) that ensures reliable encryption for email transport.
Docker 1.6.3
21 September 2023
- The container ports are no longer available to the outside world. (PPPM-9222)
WP Toolkit 6.2.10
15 September 2023
- Plugins with uppercase characters in their slug no longer prevent certain WP Toolkit features from working. (EXTWPTOOLK-10772)
WP Toolkit 6.2.9
12 September 2023
- Achieved minor increase of the WordPress installation speed
- Improved site list performance in certain cases related to WP Toolkit CLI usage
Plesk DNSSEC 1.4.1
12 September 2023
- Rollover of ZSK keys no longer fails with the âObject of class Modules_Dnssec_Dnssec\Service\Unix\RolloverZskUnix could not be converted to stringâ error. (EXTDNSSEC-138)
- Email notifications now contain the correct domain names. (EXTDNSSEC-121)
DNS integration for Cloudflare 0.9.5
12 September 2023
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk versions 18.0.50-18.0.54 and labeled it version 0.9.5. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.55 and later.
DNS integration for Cloudflare 0.9.4
11 September 2023
- Added the ability to enable and disable default types of DNS records for synchronization with Cloudflare.
- Now you can see export and import results without having to reload the page.
- Improved stability.
Plesk Obsidian 18.0.55 Update 1
7 September 2023
Fixed Product Issues
- The content of email notifications is once again rendered correctly. (PPPM-14130)
Linux
- It is once again possible to switch to Dynamic List view after updating to Plesk Obsidian 18.0.55. (PPPM-14123)
Windows
- Creating a mail user with a strong password on a Plesk server with the SmarterMail Build 8629 installed no longer fails with the âInvalid parameters: SYSADMIN_SECURITY_PASSWORD_REQUIREMENTSâ error. (PPPM-14120)
PHP Updates
5 September 2023
- Updated PHP 8.1 to version 8.1.23.
- Updated PHP 8.2 to version 8.2.10.
Windows
- Updated PHP 8.0 to version 8.1.30.
SSH Terminal 1.3.3
1 September 2023
- The extension now again opens correctly if SSH root login is prohibited in the sshd config. (PPPM-14124)
Kaspersky Anti-Virus for Servers 8.9.2-75
31 August 2023
- Updated Kaspersky Anti-Virus SDK to version 8.9.2.
Kaspersky Anti-Virus for Servers 8.5.1-65
31 August 2023
- Kaspersky Anti-Virus for Servers v8.5.1-65 will be the last Kaspersky Anti-Virus for Servers update that supports Plesk versions older than Plesk 18.0.55. To continue receiving Kaspersky Anti-Virus for Servers with bugfixes and new features, please update your Plesk installation to version 18.0.55 or higher.
Plesk Obsidian 18.0.55
29 August 2023
Whatâs New?
-
Starting from Plesk Obsidian 18.0.55, the Sitejet Builder extension will be installed by default for all new Plesk installations. If for some reason you want to disable the feature, add the following lines to the
panel.ini
file:[extensions] blacklist = plesk-sitejet
We are constantly working on the extension, so the latest update got the following new features:
- Clicking Publish now automatically saves the website. This makes sure that the latest version of the website will be published.
- Added new website templates: MakeIt Agency and LumeDeAqua.
- Added support for website migrations, making it possible to migrate Sitejet websites between Plesk servers.
- Weâve given our template selection a stylish makeover to make it even more enjoyable to browse.
- Fixed a critical issue where some pages were not being indexed by search engines.
- We now allow cross-origin requests for www-prefixed domains allowing forms to work properly.
- In our continuous effort to improve performance, weâve made the publishing process even faster.
- During the update to Plesk Obsidian 18.0.56 and later, the Sitejet Builder extension will be enabled by default for all existing Plesk installations.
-
We are thrilled to introduce the Flexible Backups feature, which enables you to do the following:
- Establish multiple backup schedules with different destinations at once to get a flexible and robust backup policy.
Establishing multiple backup schedules at once is a part of a license to the Backup to Cloud Pro extension. The extension is included to Plesk Hosting Pack.
- Schedule frequent (several times a day or even on hourly) backups for critical data with one click from the Plesk interface.
By default, the ability to schedule hourly backups is only enabled for Plesk administrators. To enable resellers and customers to do so as well, go to Tools & Settings > Backup Manager, click Settings, select the âAllow customer and reseller accounts to schedule hourly backupsâ checkbox, and then click OK.
-
Backing up only databases. Previously, it was possible to back up databases together with files only.
-
To ensure better protection of emails from unauthorized changes and impersonation, we added support for 2048-bit DKIM keys. Starting from Plesk Obsidian 18.0.55, such keys will be used for all new Plesk installations by default.
- To enable the feature on existing domains, follow the steps described in the KB article.
-
To switch back to 1024-bit DKIM keys, as a Plesk administrator, add the following lines to the
panel.ini
file:[mail] dkimKeySize = 1024
-
On the domain card, we added the Performance Booster icon that indicates if the websiteâs performance can be optimized at the moment. The feature is supported in Plesk Obsidian 18.0.55 and later by default. To enable the feature in Plesk 18.0.54 and earlier, add the following lines to the
panel.ini
file:[ext-performance-booster] domainButtonEnabled=true
- Performance Booster can now detect custom gzip-related directives and suggest applying the optimal configuration excluding these directives.
- In the Firewall extension, we added indicators to the firewall rulesâ descriptions. These indicators show you if a rule allows all traffic or denies some of it.
-
Starting from Plesk Obsidian 18.0.55, Plesk can automatically identify the following:
- Technologies (PHP, Ruby, Python, .NET, Node.js, Composer).
- Top PHP frameworks (Laravel, Symfony, CodeIgniter, CakePHP, Yii).
- CMS (WordPress, Joomla!, Drupal, PrestaShop, TYPO3).
In Dynamic List view, Plesk adds a corresponding icon to the domain card so that you can figure out which application is installed on a domain at glance. In case Plesk has a matching tool for the used technology (for example, WordPress, Joomla!, .NET, Node.js, Laravel Toolkits, Composer), you can open the corresponding configuration page by clicking the icon. In addition, Plesk published Wappspector, an open-source CLI utility based on this functionality. The utility can analyze the file structure of a web hosting server and identify the frameworks and CMS used on websites that are hosted on the server. For more information on Wappspector, see our Github repository.
- (Plesk for Windows) Added support for the DNSSEC extension that allows signing DNS zones. DNSSEC stands for Domain Name System Security Extensions and represents a set of DNS protocol extensions that were introduced by IETF with the goal of signing DNS data to secure the domain name resolving process. Please pay attention that if you want to secure Plesk services with DANE, you have to sign a DNS zone using DNSSEC.
-
(Plesk for Windows) It is now possible to load the user profile for IIS application pools. That way you ensure better security and isolations of web applications.
In the Plesk interface, you can enable the feature using the âLoad user profileâ option on the following pages:
- Tools & Settings > IIS Application Pool
- Domains > Domain_name > Hosting & DNS > Dedicated IIS Application Pool for Website
- Service Plans > Service_Plan_(or_addon)_name > Performance
- Customers > Customer_name > IIS Application Pool
- Resellers > Reseller_name > IIS Application Pool
Via the CLI, you can enable the feature by adding the
-load-user-profile
flag option to the following commands:- The whole Plesk server:
plesk bin server_pref --set-iis-app-pool-settings -load-user-profile true
- Service plans:
plesk bin domain_template -u <service_plan_name> -load-user-profile true
- Add-on service plan:
plesk bin domain_addon_service_plan -c <addon_name> -iis-app-pool true -load-user-profile true
- Per domain:
plesk bin domain -u example.com -load-user-profile true
- Customers/Resellers options:
plesk bin client_pref --set-iis-app-pool-settings <customer_name> -iis-app-pool-turned-on true -load-user-profile true
- Customers only:
plesk bin client -u <customer_name> -iis-app-pool true -load-user-profile true
- In March 2024, Active List view will be deactivated in domain cards. All customers will be automatically switched to Dynamic List view. See Feature Deprecation Plan for details.
Feature Improvements
-
In Dynamic List view, made a number of improvements to domain cards:
- Based on your numerous requests, we colored and redesigned the icon set in the domain cards. That way you can find the desired feature with less cognitive load.
-
We renovated the âStatisticsâ part of the domain cards:
- Moved the âData Transferâ, âFTP Transfer reportâ, âDisk space and trafficâ, and âWeb Statistics SSL/TLSâ links to the new âMore statisticsâ drop-down list.
- The âOpen in webâ and âPreviewâ buttons now appear when you hover the cursor over the websiteâs screenshot.
- Improved the UI of the âHosting Settingsâ drawer.
- The PHP Composer extension button is now hidden if PHP is disabled in the domainâs settings.
-
(Plesk for Linux) We prepared Plesk QCOW2 images based on AlmaLinux 9 to replace those based on CentOS 7 because it reaches EOL on June 30, 2024.
Fixed Product Issues
- Creating an FTP user account via REST API no longer fails with the âcode: 1014â error. (EXTREST-158)
- Opening the âScheduled Backup Settingsâ page in the Scheduled Backup List extension no longer results in a blank screen. (PPP-61987)
- Customers and resellers can open the âHosting Settingsâ page of subscriptions in Mozilla Firefox version 114 or earlier without errors. (PPPM-14086)
- The Plesk feedback form now opens correctly in Service Provider view. (PPPM-14093)
- Hosting Plan Exporter now correctly exports and imports additional PHP directives of hosting plans. (EXTPLESK-4898)
- Removed the confusing duplicate âIP addressesâ title from the âHosting Settingsâ page of a domain when logged in as a customer. (PPPM-14074)
- The Firewall extension is now enabled on Safari browser on the first try. (EXTPLESK-4908)
Linux
- Opening Backup Manager no longer fails with the âutf-8â codec canât decode byte 0xfa in position 850: invalid start byteâ error if a customerâs login contains a special character. (PPPM-13939)
- Now enabling or disabling an extension in a custom PHP handler does not unintentionally affect the state of the extension in other custom handlers. (PPPM-14081)
- Customers can now again open the âMail Settingsâ page of a domain without an error. Previously, the error occurred when the Plesk administrator enabled the âDisabled for incoming mailâ option in the domainâs mail settings. (PPPM-14065)
- Changing the preferred domain via the CLI now works correctly. (PPPM-14082)
- Added a more specific error message for cases when Website Log Check detects the â403 Forbiddenâ error related to the .htaccess and .htpasswd Apache files. (PPPM-14089)
- Removing domains with the âSend from domain IP addresses and use domain names in SMTP greetingâ outgoing mail mode selected no longer results in overuse of server resources. (PPPM-13851)
- DKIM keys no longer unintentionally change when updating the mail settings of a domain. (PPPM-14098)
- When switching a domain to the âWebsiteâ hosting type, Plesk now shows the confirmation message. (PPPM-14105)
- Adding an IP address to the primary DNS server via the CLI no longer fails with the âUnsupported DNS record typeâ error. (PPPM-14107)
- Fixed the issue where particular customers could not add domains because of the âCannot read properties of undefined (reading âsplitâ)â error. (PPPM-14112)
- Fail2ban now again bans IP addresses from which the specified number of failed login attempts was exceeded. (PPPM-14116)
- On Plesk servers running on AlmaLinux 8 with SOGo Webmail installed, running the
dnf update
command no longer fails with an error. (EXTPLESK-4933) - Plesk Firewall is no longer shown as installed after removing it via Plesk Installer. (PPPM-13980)
- Adding a range of IPv6 addresses to the Fail2Ban whitelist in the Plesk interface no longer fails with the âThe provided IP address, network address, or hostname is invalidâ error. (PPPM-14073)
- Now the update period is set to âNoneâ when switching via the CLI to a rule set that does not suppport update periods. (PPPM-14084)
- It is now more reliable to manually run scheduled tasks on CloudLinux servers without CageFS configured. (PPPM-14111)
Windows
- The
plesk repair web example.com
command now again fixes the .NET CLR version if ASP.NET version 4.x is selected in the corresponding subscriptionâs settings. (PPPM-14088) - 32-bit applications of a service plan can now be again managed via the CLI. (PPPM-14058)
- Backup Manager no longer creates a text database dump instead of a binary one during the scheduled backing up if the âUse native MS SQL backup functionalityâ option is enabled. (PPPM-14072)
- When clicking the â/swagger/index.htmlâ path on the âLogsâ page of a subdomain, the error is now shown with the correct path. (PPPM-14079)
Changes in Third-Party Components
Linux
- Updated Fail2ban to version 1.0.2.
Windows
- Updated Kaspersky Anti-Virus SDK to version 8.10.0.511.
- Updated ASP.NET Core 7.0 to version 7.0.10.
- Updated ASP.NET Core 6.0 to version 6.0.21.
- Updated Node.js 16 to version 16.20.1.
- Updated Node.js 18 to version 18.17.0.
Plesk Obsidian 18.0.54 Update 4
24 August 2023
Fixed Product Issues
- Resellers can once again change the IP addresses of subscriptions owned by their customers. (PPP-62277)
- Resellers can once again manage hosting settings of subscriptions in Dynamic List view. (PPPM-14102)
Linux
- Trying to restore one or more MySQL databases from a Plesk backup on a server with MySQL 8 installed no longer fails with the âExecution failed with return code 2â error. (PPPM-14100)
Sitejet Builder 1.0.2
24 August 2023
- Introducing support for website migrations, making it possible to migrate Sitejet websites between Plesk servers.
- We have given our template selection a stylish makeover to make it even more enjoyable to browse.
- We now allow cross-origin requests for www-prefixed domains, allowing forms to work properly.
- In our continuous effort to improve performance, weâve made the publishing process even faster.
- Fixed a critical issue where some pages were not being indexed by search engines.
Experience these new features and enhancements in our latest version. Happy website building!
SSH Terminal 1.3.2
23 August 2023
- Internal improvements.
- Plesk Mobile can now use the SSH terminal. (PPPM-13728)
- The extension stops connection attempts if SSH login is forbidden. (PPPM-14097)
PHP Updates
21 August 2023
- Updated PHP 8.2 to version 8.2.9.
Linux
- Updated Xdebug to version 3.2.22 for PHP 8.2
Firewall 2.1.5
21 August 2023
- Applying configuration no longer fails in Safari browser. (EXTPLESK-4908)
.NET Toolkit 2.1.8
21 August 2023
- Significantly sped up logging in to Plesk for customers that have domains with the installed .NET Toolkit extension. (EXTPLESK-4912)
Google Workspace 1.1.4
17 August 2023
- (Plesk) Google Workspace v1.1.4 will be the last Google Workspace update that supports Plesk versions older than Plesk 18.0.50. To continue receiving Google Workspace updates with bugfixes and new features, please update your Plesk installation to version 18.0.50 or higher.
Git 2.5.0
16 August 2023
-
The Git button on the domain card now shows the last commit hash in the local copy of the repository. It also helps to see at a glance whether the commit is deployed.
The feature is automatically enabled for all new repositories. It will be enabled for existing repositories after the next manual or automatic deployment.
In Plesk Obsidian 18.0.55 and later, a tooltip with the commit message, author, and date will also be displayed when hovering over the button.
PHP Updates
10 August 2023
- Updated PHP 8.1 to version 8.1.21.
Linux
- Updated PHP 8.0 to version 8.0.30.
- Updated Xdebug to version 3.2.22 for PHP 8.1, 8.0.
Google Authenticator 1.5.4
10 August 2023
- Logging in to Plesk with an expired or terminated license no longer fails with the âERR_TOO_MANY_REDIRECTSâ error if the Google Authenticator extension is enabled. (PPPM-14096)
Plesk Obsidian 18.0.54 Update 3
8 August 2023
Fixed Product Issues
- Customers and resellers can now again open the hosting settings of their subscriptions. (PPPM-14086)
Linux
- Creating and updating a domainâs mailbox via the GUI is now again recorded in the Plesk log files. (PPPM-14090)
- Adding a primary DNS server for a domain no longer fails with the âTypeError: Plesk\Smb\Form\Final\DnsZone\Record\Data::__construct()â error. (PPPM-14091)
Node.js Toolkit 2.3.7
7 August 2023
- Opening the Node.js application from the Search bar no longer results in Internal Server Error 500. (EXTNODEJS-313)
Scheduled Backups List 1.0.2
2 August 2023
- The extension no longer shows blank page while opening. (EXTPLESK-4852)
Firewall 2.1.4
2 August 2023
- Added visualization icons to better indicate the types of rules during mass operations. Thank you David from Nublue for requesting this improvement.
Plesk Obsidian 18.0.54 Update 2
1 August 2023
Feature Improvements
- Internal improvements for scheduled backups.
Fixed Product Issues
- (Plesk for Linux) Temporary domains now open correctly again after updating to Plesk 18.0.54 Update 1. (PPP-62056)
- (Plesk for Windows) It is now again possible to change the version of ASP.NET in a domainâs hosting settings. (PPP-61995)
Sitejet Builder 1.0.1
1 August 2023
- Clicking âPublishâ now automatically saves the website. This makes sure that the latest version of the website will be published.
- Added new website templates: MakeIt Agency and LumeDeAqua.
- Aligned the naming throughout the Editor: âIndexâ under More > SEO is now âNoindexâ.
- Renamed files to âFiles & Stock Photosâ to make sure users do not miss Stock Photo Library.
- The text toolbar no longer hides itself in narrow website environments.
- Fixed the issue where contact forms might not work properly on www-prefixed domains.
Node.js Toolkit 2.3.6
28 July 2023
- Opening the extension on domains with non-existent handlers no longer results in Internal Server Error 500. (EXTNODEJS-122)
Grafana 1.4.8
27 July 2023
- The extension no longer shows empty graphs on AlmaLinux and Red Hat Enterprise Linux 9. (EXTPLESK-4838)
Plesk Obsidian 18.0.54 Update 1
25 July 2023
Fixed Product Issues
- Opening the âHomeâ page in the Scheduled Backup List extension no longer fails. (PPP-62003)
- Domain cards now open correctly on mobile devices again. (PPP-61957)
Linux
- Restoring IDN websites using the
pleskrestore
utility no longer fails with an error. (PPP-61938)
Windows
- The âASP.NET Server-Wide Configurationâ page now opens correctly again. (PPP-62010)
Premium Antivirus for Servers 1.0.2-1
24 July 2023
- Updated antivirus engine and signature databases on Linux.
SOGo Webmail 1.1.1
21 July 2023
- Installation of SOGo Webmail no longer fails in Plesk on Ubuntu 22 with a MariaDB database server. (EXTPLESK-4847)
Amazon Route 53 2.9.1
21 July 2023
- For the sake of security, we removed the ability to sign in to Amazon Route 53 using the accountâs root user credentials.
Let's Encrypt 3.2.1
20 July 2023
- Trying to log in to Plesk immediately after installation no longer fails with the âYour connection is not privateâ error. (EXTLETSENC-1219)
Laravel Toolkit 1.4.7
20 July 2023
- The extension no longer crashes when the
.env.example
file does not exist. (EXTPLESK-4879) - Internal improvements.
Plesk Obsidian 18.0.54
18 July 2023
Whatâs New?
-
We are excited to introduce the Sitejet Builder extension, our new website builder for Plesk powered by WebPros. This extension is provided free of charge, allowing you and your clients to effortlessly create modern and stunning websites without any coding skills. Here are some of the key features of our new website builder:
- Drag & Drop Website Builder
- 140+ Website Templates
- 120+ Section Templates
- Responsive Settings (Flexbox)
- AI Text Generator
- SEO Settings
- Dynamic Content (for example, Blog Feature)
- E-Commerce
- Multi-language websites
- Free Stock Photos & Videos
- Image Editing
- Website Backups
- Full Design Flexibility (HTML, CSS, JS)
- And many moreâŠ
Once installed, the Sitejet Builder is available in the setup wizard when adding a new domain, but also visible for all other domains on the domain card under âInstall Applicationâ, and also as an option for the âAdd Domainâ action.
We would love to hear your feedback about this extension at feedback@plesk.com.
- Added the ability to tune the MySQL/MariaDB server performance in Tools & Settings > Performance Booster (under âGeneral Settingsâ).
- Added the ability to add Transport Layer Security Authentication (TLSA) DNS records to domainsâ DNS zones in Plesk. Such records are most commonly used to implement DNS-based Authentication of Named Entities (DANE).
- Added the ability to back up databases separately from other website content by splitting the âUser files and databasesâ checkbox into separate âDatabasesâ and âUser filesâ checkboxes in Backup Manager.
-
Added the ability to schedule hourly backups in Backup Manager. To enable the feature, add the following lines to the
panel.ini
file:[pmm] allowHourlyTask = on
By default, the ability to schedule hourly backups is only enabled for Plesk administrators. To enable resellers and customers to do so as well, go to Tools & Settings > Backup Manager, click Settings > select the âAllow customer and reseller accounts to schedule hourly backupsâ checkbox, and then click OK.
- Based on Beta users feedback we are glad to announce that our tool to convert your CentsOS 7 server to AlmaLinux 8 is now Production ready! The ready to use CLI tool is available in our GitHub repository.
-
Added a number of features to the DNS integration for Cloudflare extension (the extension is still in beta).
- The extension now allows to enable & disable CDN (proxy mode).
- Plesk administrator can now manage all domains on the server and enable/disable the integration for the domains owned by customers.
- In Plesk for Windows, it is now possible to integrate your server with 360 Monitoring, a new tool present in the Plesk 360 cloud service. 360 Monitoring brings a couple of useful features, for example, monitoring of website availability, various notification channels, and more.
Feature Improvements
-
It is now possible to set Dark Mode by default in Plesk. To do so, add the following lines to the
panel.ini
file:[branding] theme = "dark"
- We made a number of improvements to the way icons are placed on the domain card in Dynamic list view:
- Changed the way icons are aligned to grid.
- Limited the number of icons in a row to three.
- Increased the icon size from 16px to 24px. These changes make the domain card easier to read, and help you locate specific icons more quickly regardless of your viewport size.
- In Dynamic List view, we merged the âHosting Settingsâ and âWeb Hosting Accessâ into a single drawer accessible right from the domain card.
-
Made a number of improvements to Dynamic List view:
-
When set to âOn a separate pageâ, you can now see websitesâ root folders. To enable the feature, add the following lines to the
panel.ini
file:[dynamicList] showColumnHostingLocation = on
- When set to âIn an expanded rowâ, clicking the âExpand all/Collapse allâ button now completely expands or collapses the entire list of domains and subdomains.
- Removed the separate âHosting Settingsâ page for domain aliases. Controls for most settings can now be found right on the alias card. The option to rename a domain alias was moved to the hamburger menu in the top right corner of the alias card.
-
- Added support for nightly packages in Plesk on RHEL 9 and its derivatives to the âSOGo Webmailâ extension.
-
Added the
-auto-confirm-this-may-lock-me-out-of-the-server
option to theplesk ext firewall
command line utility. The option can be used with the--apply
and--enable
commands, and removes the need to run the--confirm
command in a separate SSH session when applying a new firewall configuration.This option must only be used for automated Plesk deployments. Using this option may result in being permanently locked out of the server if the applied firewall configuration is misconfigured.
Fixed Product Issues
- Running the
plesk bin site --show-php-settings
orplesk bin domain_template --show-php-settings
commands now shows the PHP settings correctly. (PPPM-14009) - Entries about mailbox quota changes are now added to the action log. (PPPM-13934)
- Updating customer information no longer fails with the âTypeError: rewind(): Argument #1 ($stream) must be of type resource, array givenâ error. (PPPM-14038)
- SSL/TLS certificates securing webmail no longer become unassigned when migrating domains from a Plesk Onyx server to a Plesk Obsidian server, or when restoring a backup created on a Plesk Onyx server on a Plesk Obsidian server. (PPPM-14014)
- Switching to a different domain on the âPHP Settingsâ page now correctly shows the PHP handler for the latter domain. (PPPM-14041)
- Searching for the name of a removed domain using the search bar no longer results in errors. (PPPM-14013)
- Restoring a MariaDB database from a backup now aborts and shows an error if the backup cannot be restored correctly because it was created on a MariaDB with an earlier version. (PPPM-14012)
- The contents of a backup file are now shown in Backup Manager if the
<storages>
section of thebackup_info
XML file is empty. (PPPM-14045) - Summary reports are no longer sent to customer accounts converted from reseller accounts. (PPPM-14032)
Linux
- The Plesk GPG key no longer disappears from the
/etc/apt/trusted.gpg.d/
directory after installing or updating Plesk. (PPPM-14016) - Installing the SOGo Webmail extension on a Plesk server with MySQL 8 installed no longer fails with an error. (EXTPLESK-4458)
- The SOGo Webmail extension no longer creates its own spam directory, separate from the Plesk spam directory. (EXTPLESK-4732)
- Postfix no longer fails on Plesk servers without the
mariadb-connector-c package
package installed. (PPPM-13724) - Incremental backups created in the remote FTP storage no longer have the same size as full backups. (PPPM-13957)
- Creating a backup in the remote storage no longer fails with the âRepository error: The volumes number is not equal to expected numberâ error under specific circumstances. (PPPM-14023)
- It is now possible to remove TXT DNS records containing values in uppercase using the
plesk bin dns
command line utility together with the-txt
and/or-domain
options. (PPPM-13976) - The
plesk repair mail
command now correctly processes mailboxes with encrypted passwords. (PPPM-14050) - It is now possible to remove the firewall rule that was added most recently. (EXTPLESK-4720)
- Plesk mail handlers no longer convert the âfromâ header, regardless of the capitalization (for example, âfromâ, âFromâ, and âfRomâ are now treated the same). (PPPM-14037)
- Creating firewall rules using a country code as the source on the first day of the month no longer fails with the âThe requested URL returned error: 404â error on Plesk servers using geolocation data provided by DB-IP. (EXTPLESK-4813)
- Installing Plesk on Red Hat Enterprise Linux 8 servers no longer fails with the âNo matching repo to modifyâ error. (PPPM-14017)
- Logging in to Plesk no longer results in the âHTTP 500 Server Errorâ error. (PPPM-14036)
- Opening Backup Manager no longer fails with the âstat: path should be string, bytes, os.PathLike or integer, not NoneTypeâ error under specific circumstances. (PPPM-14044)
- Creating a backup no longer fails if there is one or more custom buttons with custom images created for the domain(s) being backed up. (PPPM-13938)
- On Ubuntu 22 servers, registering the PHP 7.0 FPM handler using the âphp7.0-fpmâ service name no longer fails with an error. (PPPM-14054)
- Importing one or more firewall rules with multiple destination addresses no longer breaks the Firewall interface. (EXTPLESK-4796)
- Applying a new firewall configuration no longer fails with the âHTTP 502 Bad Gatewayâ error when applying the configuration takes longer than expected. (EXTPLESK-4804)
- Enabling HTTP/2 no longer results in the âprotocol options redefinedâ warning. (PPPM-14042)
- Opening a file containing one or more multibyte characters in HTML Editor no longer results in the âDOMDocument::loadHTML():Argument #1 ($source) must not be emptyâ error. (PPPM-13961)
Windows
- Running the
plesk repair web
command now also fixes the Default Web Site in IIS. (PPPM-12727) - Timestamps in log files now use the time zone set in Tools & Settings > System Time instead of UTC. (PPPM-14051)
Changes in Third-Party Components
Linux
- Updated Postfix to version 3.5.20.
- Updated Dovecot and Pigeonhole to versions 2.3.20 and 0.5.20, respectively.
- Updated Courier-IMAP to version 5.2.4.
- Updated courier-authlib and courier-unicode to versions 0.72.0 and 2.2.6, respectively.
- Updated ProFTPD to version 1.3.8.
- Updated Dr.Web to version 6.0.2.
Windows
- Updated ASP.NET Core 7.0 to version 7.0.9.
- Updated ASP.NET Core 6.0 to version 6.0.20.
- Updated OpenSSL used by Plesk and Plesk Installer to version 3.0.9.
- Updated BIND to version 9.16.42.
- Updated MailEnable Standard to version 10.46.
- Updated Dr.Web to version 12.0.
Firewall 2.1.3
13 July 2023
- Added support for using the
--apply
and--enable
commands without the--confirm
command in automated deployment scenarios. (EXTPLESK-4831) - The
--import -config rules.json
CLI command run with a file that is not accessible now shows a more clear error message. (EXTPLESK-4829) - The
--confirm
CLI command now waits until the activation process appears. It is no longer necessary to repeat the command if it fails. (EXTPLESK-4825) - Restored missing CLI locale keys.
SOGo Webmail 1.1.0
10 July 2023
- Added support for nightly packages in Plesk on RHEL 9 and its derivatives.
- The extension now uses the default Plesk Spam folder. (EXTPLESK-4732)
- Web server configuration for SOGo is now removed during uninstallation. (EXTPLESK-4457)
Linux
- Installation of SOGo Webmail no longer fails in Plesk on Ubuntu 22 with a MySQL 8 database server. (EXTPLESK-4458)
Sitejet Builder 1.0.0
10 July 2023
- Initial release. The extension works in Plesk Obsidian 18.0.52 and later.
Plesk Migrator 2.24.1
10 July 2023
- Internal improvements.
- The extension now correctly gathers the list of chroot directories to migrate. (PMT-5178)
WP Toolkit 6.2.6
7 July 2023
- WordPress backup limits in Service Plans and subscriptions are properly working again. (EXTWPTOOLK-10625)
- Sets are no longer lost in time if their owner has internal user ID changed for whatever reason. (EXTWPTOOLK-10071)
Node.js Toolkit 2.3.5
7 July 2023
- The extension no longer shows a false positive error. (EXTNODEJS-310)
Firewall 2.1.2
6 July 2023
- Default GeoIP data source (
db-ip-lite
) download is now more reliable at the start of a month. (EXTPLESK-4813) - The firewall rules list now opens correctly after importing rules for outgoing and forwarding connections. (EXTPLESK-4796)
- Applying a configuration no longer fails with the âUnexpected tokenâ error. (EXTPLESK-4804)
Site Import 1.6.9
28 June 2023
- Mail import from IDN domains no longer fails with an encoding error in the configuration step. (PMT-5177)
Monitoring 2.7.0
28 June 2023
- In Plesk for Windows, it is now possible to integrate your server with 360 Monitoring, a new tool present in the Plesk 360 cloud service. 360 Monitoring brings a couple of useful features, for example, monitoring of website availability, various notification channels, and more.
DNS integration for Cloudflare 0.9.3
28 June 2023
- Added the ability to enable and disable the CDN in the DNS records of a domain.
SSL It! 1.13.0
22 June 2023
- Currency symbols no longer overlap prices on the screen when users make in-place purchases of certificates. (EXTSSLIT-2019)
SSL It! 1.12.12
22 June 2023
- SSL It! version 1.12.11 will be the last SSL It! update that supports Plesk versions older than Plesk Obsidian 18.0.51. To continue receiving SSL It! updates with bugfixes and new features, update your Plesk installation to version 18.0.51 or later.
Plesk Obsidian 18.0.53 Update 2
20 June 2023
Fixed Product Issues
- It is again possible to manage user roles if an APS application is installed. (PPPM-14031)
Linux
- Nginx configuration is again correct if the âPlesk Premium Email, powered by Kolabâ extension is installed. (PPPM-14026)
- It is again possible to secure temporary domains with SSL/TLS certificates from Letâs Encrypt. (PPP-61697)
Firewall 2.1.1
19 June 2023
- It is now possible to remove the last source or destination address of a firewall rule. (EXTPLESK-4720)
Plesk Obsidian 18.0.53 Update 1
13 June 2023
Fixed Product Issues
- Summary Report and Traffic History (in Tools & Settings > the âStatisticsâ section) work again. (PPP-60003, PPP-61636)
Linux
- Updating Plesk no longer fails with the âAn error occurred during the signature verificationâ error caused by the Plesk GPG key misconfiguration. (PPPM-14016)
- Domainsâ logs again have correct timestamps. (PPP-61654)
Windows
- It is again possible to fix the âDefault Web Siteâ settings in IIS using the
plesk repair web -y
command. (PPPM-12727)
Docker 1.6.1
13 June 2023
- Domainsâ pages now open correctly in Plesk Obsidian 18.0.50 and later if the extension is installed. (EXTDOCKER-175)
PHP Updates
12 June 2023
- Updated PHP 8.2 to version 8.2.7.
- Updated PHP 8.1 to version 8.1.20.
- Updated PHP 8.0 to version 8.0.29.
Linux
- Updated Xdebug to version 3.2.1 for PHP 8.0.
Node.js Toolkit 2.3.4
8 June 2023
- In Active List view, opening the Node.js application of a domain no longer results in the âInvalid domain IDâ error. (EXTNODEJS-303)
Grafana 1.4.6
7 June 2023
- Monitoring no longer shows empty graphs in Plesk Obsidian 18.0.53. (EXTPLESK-4728)
Plesk Obsidian 18.0.53
6 June 2023
Whatâs New?
-
It is now possible to use Hosting Plan Exporter to export reference hosting plans from one Plesk server and spread them to other servers via the CLI. That way you can keep hosting plans on your Plesk servers unified and up-to-date, as well as quickly deliver them to a newly deployed Plesk server.
To export several hosting plans via the CLI, run the following command:
plesk ext hp-exporter --export -plan 'name1, name2...'
To import hosting plans from a local file, remote storage, or a URL via the CLI, run the following command:
plesk ext hp-exporter --import -config path_to_source
-
To prevent temporary domains from being used for phishing and fraud, we added a banner that appears the first time you visit a temporary domain.
Linux
- Added the ability to export and import a firewall rules configuration from a Plesk server to other Plesk servers.
-
Based on your feedback, we have published the new 0.2.0 version for the public beta CLI script that in-place converts your Plesk server on CentOS 7 to AlmaLinux 8. We recommend that you use the script to convert your Plesk server and check the result before CentOS EOL on June 30, 2024. That way we will be able to take into account the specifics of your serverâs configuration in the stable release.
Please report any issues related to the conversion on GitHub. We have assigned a developer to process your feedback there. While this script is in beta, we do not provide help with the conversion via Plesk Support.
Feature Improvements
- In Websites & Domains in Dynamic List view, it is now possible to create a staging website for testing purposes using the âWebsite Copyingâ button.
- The Git extension now respects the selected branch when requesting a webhook.
Linux
- Now you can configure the Plesk mail server to issue a 5yz response code for emails that fail the DMARC check.
-
Introduced the following improvements for Performance Booster:
- Now the âSet optimized PHP settingsâ option cannot be selected if custom PHP settings are applied in the
panel.ini
file. - Added an ability to gauge the performance of a website before and after its optimization.
- Added a description for the âPerformance Boosterâ page (in Tools & Settings).
- Now the âSet optimized PHP settingsâ option cannot be selected if custom PHP settings are applied in the
Deprecated and Removed Items
- Dropped support for Ubuntu 18.04 because it has reached EOL on May 31, 2023. You can either migrate to a supported OS using Plesk Migrator or run dist-upgrade to upgrade your Ubuntu 18.04 instance.
-
(Plesk for Windows) myLittleAdmin has been removed from Plesk because the vendor stopped providing support for it. Therefore, it was out of date and had security issues.
Instead of myLittleAdmin, you can now use local database clients (for example, HeidiSQL and SQL Server Management Studio (SSMS)).
Fixed Product Issues
- Fixed the issue where an external IP address was added to the BIND allow-transfer in case Plesk worked behind NAT. (PPPM-12126)
- In Power User view, it is now again possible to open images of domains using File Manager. (PPPM-13971)
- The desktop version of a website no longer unintentionally opens from a mobile device. (PPPM-13973)
- The âAdd Domainâ button works correctly when the browser window is scaled down. (PPPM-13981)
- Added the missing hint for the Disable Node.js button. (PPPM-13983)
- In the CLI, viewing information about a hosting plan with the enabled
-ssi
support no longer results in the âUndefined array key âssi_htmlâ error. (PPPM-13985)
Linux
- Horde works correctly after reinstallation. (PPPM-12017)
- In Plesk on RHEL 8, the Imagick module no longer crashes if gssproxy is installed. (PPPM-13689)
- When updating some PHP settings of a subscription from a file via the CLI, the remaining PHP settings are no longer reset to default. (PPPM-13910)
- During installation or upgrade of Plesk on CentOS 7, the Plesk installer no longer shows the misleading âUnable to create yum cache for â*epelâ OS repository.â error. (PPPM-13946)
- Fixed the issue where a custom 403 error page was not shown on the RHEL-based Plesk servers under some circumstances. (PPPM-13958)
- Assigning a domain to a customer no longer results in the JavaScript error if an IPv6 address is removed. (PPPM-13972)
- When sending emails from Plesk with the configured Roundcube, the misleading âPHP Error: Detected âtemp_dirâ changeâ error is no longer logged. (PPPM-13977)
- The âphpinfo()â page for a custom PHP handler now opens correctly. (PPPM-13986)
-
New custom PHP handlers added using the
plesk bin php_handler --add
CLI command will now restart correctly again. (PPPM-13995)To fix the existing custom PHP handlers added that way, run the following command:
plesk bin php_handler --update
- It is now possible to use more than 64 characters in passwords to an external SMTP server. (PPPM-13999)
Windows
- The
plesk repair
command now again fixes issues found in the IIS settings of a domain. (PPPM-12727) -
If a Plesk server had 32 CPU threads or more, the backing up process could be complete with an error. (PPPM-13989)
To fix the issue, limit the number of CPU threads that the backing up process can use. For example, you can set the limit to 16 threads by adding the following lines to the
panel.ini
file:[pmm] archiverMaxThreads = 16
Changes in Third-Party Components
- Updated PHP used by Plesk to version 8.2.6.
Windows
- Updated Git to version 2.40.1.
- Updated MariaDB 10.3 to version 10.3.39.
- Updated MariaDB 10.5 to version 10.5.20.
- Updated MariaDB 10.6 to version 10.6.13.
- Updated MariaDB 10.11 to version 10.11.3.
WP Toolkit 6.2.4
6 June 2023
- Link to WP Toolkit is now available again for clients, together with
Subscriptions
screen. (EXTWPTOOLK-10567)
WP Toolkit 6.2.3
5 June 2023
- Improved compatibility with Plesk Obsidian version 18.0.53
- Elementor Pro plugin no longer prevents users from logging in to WordPress site via WP Toolkit. This was fixed on the plugin side, so make sure you are running Elementor Pro v3.12.3 or later. (EXTWPTOOLK-10276)
- WP Toolkit no longer provides false positive vulnerability scan results in some rare cases. (EXTWPTOOLK-10396)
Monitoring 2.5.12
5 June 2023
- Monitoring v2.5.12 will be the last Monitoring update that supports Plesk versions older than Plesk 18.0.53. To continue receiving Monitoring updates with bugfixes and new features, please update your Plesk installation to version 18.0.53 or higher.
Advisor 1.9.13
2 June 2023
- Running the âplesk ext advisor âadvice-listâ command no longer results in the âUndefined create_functionâ error. (EXTADVISOR-925)
Firewall 2.1.0
30 May 2023
- Added support for exporting and importing of firewall rules via the GUI and the CLI.
- The
--remove-rules
CLI command with the-id
or-name
options now correctly removes a firewall rule. (EXTPLESK-4597)
Google PageSpeed Insights 2.1.2
25 May 2023
- Fixed the broken links used to download the extensionâs packages. (EXTPLESK-4598)
DNS integration for Cloudflare 0.9.2
22 May 2023
- An active domain is no longer unintentionally disabled while improrting it to Cloudflare from Plesk with enabled proxy mode. (EXTPLESK-4472)
Plesk Obsidian 18.0.52 Update 3
17 May 2023
Fixed Product Issues
Windows
- Plesk cloud images are again correctly deployed. (PPP-61323)
PHP Updates
16 May 2023
- Updated PHP 8.1 to version 8.1.19.
- Updated PHP 8.2 to version 8.2.6.
Linux
- (PHP version 8.0, 8.1 and 8.2) The Imagick module no longer crashes if gssproxy is installed. (PPPM-13689)
- Introduced PHP updates are the last ones for Ubuntu 18.04 âBionicâ. See Feature Deprecation Plan for details.
Hosting Plan Exporter 1.1.0
16 May 2023
- Added support for the
export
andimport
commands to the CLI.
DNS integration for Cloudflare 0.9.1
11 May 2023
- A Plesk administrator can now view all domains on the server by adding the new
adminDomainFilters
parameter to thepanel.ini
file. (EXTPLESK-4471)
Firewall 2.0.2
4 May 2023
-
It is now possible to change the confirmation timeout by adding the following lines to the
panel.ini
file:[ext-firewall] confirmTimeout = 15 ; the timeout in seconds before the configuration is rolled back confirmTimeoutCli = 60 ; the timeout in seconds for the --confirm CLI command
-
Applying configuration is now more tolerant to long-running service restarts and long-running firewall activation scripts. (EXTPLESK-4587)
Plesk Obsidian 18.0.52 Update 2
3 May 2023
Fixed Product Issues
Windows
- Customers and resellers can now again open the âASP.Net Settingsâ page of their domains. (PPPM-13979)
Plesk Obsidian 18.0.52 Update 1
2 May 2023
Fixed Product Issues
Linux
- It is again possible to install the Slave DNS Manager extension. (PPPM-13974)
Dropbox Backup 4.2.4
1 May 2023
- Fixed the âUnable to create the remote backupâ error. (EXTPLESK-4582)
Firewall 2.0.1
27 April 2023
- Rules aimed to deny all incoming/outgoing connections from/to IPv4 or IPv6 addresses on all ports no longer block the other IP address version. git
DigitalOcean DNS 1.3.10
27 April 2023
- The extension again correctly opens the main page with the list of domains. (EXTPLESK-4579)
Node.js Toolkit 2.3.1
26 April 2023
- The extension installation on Plesk earlier than 18.0.50 no longer fails with a ParseError. (EXTNODEJS-298)
Plesk Obsidian 18.0.52
25 April 2023
Whatâs New?
-
(Plesk for Linux) It is now possible to block countries using the Plesk Firewall. The feature works out of the box.
By default, the feature uses the free version of the DB-IP geolocation database. You may want to use geolocation databases from MaxMind (GeoLite2 or GeoIP2), for example, because they are updated more frequently than DB-IP. GeoLite2 is free, while GeoIP2 is paid, but both require a license key. Learn how to switch from DB-IP to MaxMind.
-
(Plesk for Linux) We are thrilled to introduce the websitesâ performance optimization feature. At the moment, it is possible to optimize PHP and nginx settings for one or more websites.
The feature is available in Tools & Settings > Performance Booster (under âGeneral Settingsâ). In the next Plesk versions, we aim to introduce MySQL settings optimization and some tweaks to the existing settings for an even greater speed boost.
-
(Plesk for Linux) CentOS 7 reaches end of life on June 30, 2024. We have prepared a public beta CLI script that in-place converts your Plesk server on CentOS 7 to AlmaLinux 8. You can use the script to convert your Plesk server and check the result before CentOS EOL.
Please report any issues related to the conversion on GitHub and/or send us feedback to beta-extensions@plesk.com. While this script is in beta, we do not provide help with the conversion via Plesk Support.
- MariaDB 10.11 is now supported. It is the latest âlong-term supportâ version from the vendor.
-
Plesk now supports secure MySQL connections. The Plesk administrator can now connect to a remote database securely via SSL/TLS and prohibit using a non-secure connection.
- (Plesk for Linux) Ruby 2.7, 3.0, 3.1, and 3.2 are now supported.
Feature Improvements
-
Updated the Node.js Toolkit extension (former Node.js) to version 2.3.0:
- Added quick access to File Manager.
- You can now call
npm/yarn
commands from the âRun Node.js commandsâ tab in the extension interface. - You can now install/remove Node.js versions available on a Plesk for Linux server in the extension interface.
- Renamed the Node.js extension to Node.js Toolkit.
- Added the âRubyâ button to the âAdding New Domainâ drawer. After a domain with the selected âRubyâ option is created, Plesk offers the necessary toolkit to manage the domain with Ruby right away. It is now easy to enable Ruby at the same time as adding a domain.
- Modified the âInstall Applicationâ drawer:
- Moved the âInstall Applicationâ button to the bottom of a domain card.
- Moved the âGitâ and âWebsite Importingâ buttons from the drawer to a domain card.
- After an application was installed on a domain, the corresponding application buttons now remain in the drawer.
- Improved visibility of the global search bar.
- Global search now shows the most recent results at the top.
-
To bring Plesk in line with the evolving industry-standard vocabulary, added aliases of the following CLI options:
The
dns
utility--set-master
>--set-primary
--set-slave
>--set-secondary
The
service_plan
utility-dns_zone_type (master|slave)
>-dns_zone_type (primary|secondary)
Note: This improvement does not affect existing integrations that use the old CLI options. They continue to work.
Linux
- Converted the Plesk Firewall module to an extension. It is now possible to update the firewall separately from Plesk.
- Converted the Premium Antivirus for Servers component to an extension. It is now possible to update the antivirus separately from Plesk.
- It is now possible to clone MySQL databases that have stored procedure triggers with
DEFINER
.
Windows
-
MyLittleAdmin is scheduled for removal in June 2023 (Plesk Obsidian 18.0.53).
We have prepared a KB article with the instructions on how to download, install, and configure local database clients (for example, HeidiSQL and SQL Server Management Studio (SSMS)) and added the link to the article to the Plesk interface.
The Plesk administrator can replace the default link with a custom one via the
panel.ini
file:[databaseManagement] features.dbclient.info = "https://support.plesk.com/hc/en-us/articles/13302777933719" ; the default link
Deprecated and Removed Items
- Ubuntu 18.04 reaches end of life on May 31, 2023. The OS vendor plans no security updates since that date. Plesk Obsidian 18.0.52 on Ubuntu 18.04 is the last Obsidian release on this OS.
Fixed Product Issues
- Fixed the description of the Git button on the âAdding New Domainâ drawer. (EXTGIT-306)
- The
panel.ini
file configured to hide all Plesk promos now also hides the Dynamic View promo. (PPP-60603) - The
plesk bin service_plan -i
command now correctly shows information about service plans. (PPPM-13955), (PPPM-13953) - The AdBlock for Firefox extension no longer blocks the âBrandingâ page in Plesk in Tools & Settings. (PPP-60600)
- The Plesk page with the URL of the
https://<IP_address>:8443/login_up.php/<anything>
pattern no longer reloads continuously. (PPPM-13931) - In Tools & Settings > DNS Settings (under âGeneral Settingsâ), setting a TTL value of a DNS record no longer populates an empty TTL field of the next opened DNS record with this value. (PPPM-13944)
- The underscore is now used as a delimiter when a custom prefix is set for database user names in Tools & Settings > Database Hosting Preferences (under âApplications & Databasesâ). (PPPM-13945)
- Passwords of a Plesk administrator account and an internal email address set in the Plesk administrator profile are no longer in sync: changing one does not change the other. (PPP-57040), (PPP-60820)
- Reinstalling an application via the Application Catalog no longer fails with an HTTP error 500. (PPP-60954)
- The Plesk firewall rules (including custom ones) can now be backed up and restored. (PPPM-12676)
- The started Dynamic list tour no longer results in a blank page for the âDynamic list view - show websites on a separate pageâ view. (PPPM-13967)
Linux
- It is again possible to change the location of virtual hosts using the
transvhosts.pl
utility. (PPPM-13949) - If âFPM application served by nginxâ or âDedicated FPM application served by nginxâ was selected in a domainâs PHP settings and the corresponding PHP handler was then deleted, the âPHP settingsâ page of the domain is now opened without any issues. (PPPM-13941)
- Inserting images to an HTML file via HTML Editor in File Manager no longer fails with the âError Call to undefined function get_magic_quotes_gpc()â error. (PPPM-13901)
- If debug mode is enabled with the
show.util_exec_io
option, operations that trigger the DNS update task no longer hang. (PPPM-13908, PPPM-13963) - If a specific IP address version (IPv4 or IPv6) is set for a domain, Plesk now sends mail from the domain only via this IP address. (PPPM-13770)
- Adding or removing mail forwarding via XML API now works. (PPPM-13933)
- A Plesk administrator account password can now contain up to 255 characters. Previously the password longer than 158 characters caused an error. (PPPM-13965)
- The âSSH/Shell accessâ button is again shown for a domain whose owner is allowed SSH access. (PPPM-9970)
- It is now possible to access files in password-protected directories when âSmart static files processingâ and âProxy modeâ are enabled in the âApache & nginxâ settings. (PPPM-13942)
- Customers with Plesk on the EOL Debian can now update Plesk to the latest availiable version using the
plesk installer upgrade <version> ---source <source>
command. (PI-763)
Windows
- If the âKeep securedâ feature is enabled, it automatically renews an expired SSL/TLS certificate for FTP in IIS. (PPP-60650)
- Creating an address book in Horde no longer fails with the â$name must be a stringâ error. (PPPM-13919)
- The CLI now supports the
set
subcommand of the-forwarding-addresses
option of themail
utility. (PPPM-13950) - It is now possible to create a mail user in SmarterMail 100.0.8495 or later. (PPPM-13966)
Future Plans
-
In the nearest future, we plan to switch PHP used by Plesk to PHP 8.2. This is because security support for PHP 8.0 will end in November 2023. If you are running any custom extensions, you will need to update them to support PHP 8.2 to avoid potential issues.
This change is currently scheduled to take place with the release of Plesk Obsidian 18.0.53 (early June 2023).
Changes in Third-Party Components
Windows
- Updated Horde Turba to version 4.2.29.
- Microsoft Drivers for PHP for SQL Server are now shipped with PHP 8.2.
- Updated ASP.NET Core 7.0 to version 7.0.5.
- Updated ASP.NET Core 6.0 to version 6.0.16.
Node.js Toolkit 2.3.0
25 April 2023
- Added quick access to File Manager.
- You can now call
npm/yarn
commands from the âRun Node.js commandsâ tab in the Node.js Toolkit interface. - You can now install/remove Node.js versions available on a Plesk for Linux server from the interface.
- The Node.js extension was renamed to Node.js Toolkit.
Firewall 2.0.0
25 April 2023
Linux
- It is now possible to block countries using the Plesk Firewall.
- Reworked and modernized the UI for the improved UX.
Google PageSpeed Insights 2.1.11
24 April 2023
- Fixed the visualisation of statistics on a domainâs report page. (EXTPLESK-1432)
.NET Toolkit 2.1.4
24 April 2023
- Fixed the âFailed to get hosting properties: Permission deniedâ error. (EXTPLESK-4492)
DigitalOcean DNS 1.3.9
24 April 2023
- The extension now correctly handles situations when the rate limit on requests to the DigitalOcean API per hour and/or per minute was exceeded in Plesk. (EXTPLESK-4502)
PHP Updates
19 April 2023
- Updated PHP 8.2 to version 8.2.5.
- Updated PHP 8.1 to version 8.1.18.
Linux
- Updated Xdebug to version 3.2.1 for PHP 8.2, 8.1.
Let's Encrypt 3.1.10
19 April 2023
- Fixed broken links to KB articles in Plesk and its documentation.
Laravel Toolkit 1.4.5
19 April 2023
- The Laravel toolkit button is once again shown on the domain card if Laravel was activated via the corresponding option in the âInstall Applicationâ drawer or Laravel application was found on the domain.
Plesk Email Security 1.3.9
19 April 2023
- Fixed broken links to KB articles in Plesk and its documentation.
Advisor 1.9.11
19 April 2023
- Fixed broken links to KB articles in Plesk and its documentation.
- Fixed compatibility issues with Plesk Obsidian 18.0.52.
Site Import 1.6.5
18 April 2023
- Moved the âWebsite Importingâ button from the âInstall Applicationâ drawer to the domain card. Also, the button is now shown in domain overview.
Ruby 1.4.5
18 April 2023
- Ruby 2.7, 3.0, 3.1, 3.2 are now supported.
- The extension can now be installed on Ubuntu 22.04 (both on x86-64 and ARM architectures), Red Hat Enterprise Linux 9, AlmaLinux 9.
- The Ruby button is once again shown on the domain card if Ruby was enabled during domain creation or via the corresponding option in the âInstall Applicationâ drawer.
Joomla! Toolkit 2.5.11
18 April 2023
- Separated buttons for the âInstall applicationâ and âAdd domainâ drawers. Changed mechanism to show ext buttons in the domain overview and header
.NET Toolkit 2.1.3
18 April 2023
- Separated buttons for the âInstall applicationâ and âAdd domainâ drawers. Changed mechanism to show ext buttons in the domain overview and header.
WP Toolkit 6.2.1
13 April 2023
- Login to WordPress from Dynamic List now properly works again. (EXTWPTOOLK-10409)
Monitoring 2.5.10
13 April 2023
- In Plesk 18.0.49 and earlier, the extension no longer crashes with the âAn unexpected error occurredâ error. (EXTPLESK-4511)
WP Toolkit 6.2.0
12 April 2023
- Added new API methods for working with plugins and themes on an installation.
- Added help output for the updated
--clear-cache
CLI command. - Adjusted the logic of displaying warnings about outdated PHP versions to make sure alt-php doesnât incorrectly trigger them anymore.
- Updated integration with Dynamic list to accommodate for corresponding changes in Plesk.
- WP Toolkit no longer shows
Failed to find set with specified ID
error when installing WordPress under certain rare circumstances. (EXTWPTOOLK-9898) - Unaccessible free trial offer is no longer displayed for Smart Updates. (EXTWPTOOLK-10312)
- Once mitigated via WP Toolkit, CVE-2022-3590 vulnerability is now always properly shown as mitigated. (EXTWPTOOLK-10298)
- Smart Update no longer reports certain combinations of square brackets as a false positive âbroken shortcodeâ issue. (EXTWPTOOLK-10050)
Monitoring 2.5.9
7 April 2023
- It is now possible to create an additional agent360 configuration file (
/etc/agent360-custom.ini
) that will not be overwritten during agent360 upgrades. You can use this file to store custom settings, for example, for plugins. - When opening the extension in the left pane, the correct breadcrumbs are now shown. (EXTPLESK-4414)
Let's Encrypt 3.1.9
7 April 2023
- Added support for asynchronous order finalization in the ACME protocol.
Sectigo SSL 1.3.11
6 April 2023
- Newly issued OV/EV certificates now come with a Sectigo Trust Seal. It is a visual stamp displayed on a website indicating that the website is authentic and the identity of the entity operating it has been verified. Learn more about the Sectigo Trust Seal.
Plesk Obsidian 18.0.51 Update 1
5 April 2023
Fixed Product Issues
- The
ProcessAutoreports
subtask no longer runs for long periods of time while consuming a large amount of RAM without sending summary reports. (PPPM-13951)
Windows
- Letâs Encrypt SSL/TLS certificates securing FTP connections are now correctly renewed in IIS. (PPPM-13940)
Let's Encrypt 3.1.8
5 April 2023
- Added support for the Plesk Premium Email (powered by Kolab) extension. A certificate can be issued and installed in the webmail client if the SSL It! extensionâs version is 1.12.8 or later.
Export lists to CSV 1.2.0
5 April 2023
- The extension can now again be used with Plesk Obsidian 18.0.44 and later. (EXTPLESK-4467)
Git 2.4.7
4 April 2023
- Moved the âGitâ button from the âInstall Applicationâ drawer to the domain card. Also, the button is now shown in domain overview.
- Added a detailed warning message shown if the extension cannot perform post-deployment actions.
PHP Updates
29 March 2023
Linux
- Fixed the issue where domains using PHP 8.2 could become unavailable due to the âMemory violationâ error. (PPPM-13872)
Extensions Catalog 1.16.4
29 March 2023
- The Extension Catalog no longer shows misleading texts for some paid extensions. (EXTCATALOG-663)
Plesk DNSSEC 1.4.3
28 March 2023
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk versions 18.0.55-18.0.59 and labeled it version 1.4.3. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.60 and later.
Log Browser 1.6.6
28 March 2023
- The extension no longer sends false positive reboot notifications when the system log is rotated. (EXTPLESK-4463)
Git 2.4.5
27 March 2023
- Updated translations of custom buttons in the âInstall applicationâ drawer.
PHP Updates
20 March 2023
- Updated PHP 8.2 to version 8.2.4.
- Updated PHP 8.1 to version 8.1.17.
Windows
- Microsoft Drivers for PHP for SQL Server are now shipped with PHP 8.2
Premium Antivirus for Servers 1.0.1-1
15 March 2023
- Initial release. The extension works in Plesk Obsidian 18.0.52 and later.
Plesk Obsidian 18.0.51
14 March 2023
Whatâs New?
-
Introducing Dark Mode in Plesk for when you want to rest your eyes in a low-light environment. Dark Mode can be enabled by clicking the âcrescentâ icon in the upper corner of the screen.
Note: Dark Mode in Plesk uses cookies and works on per session basis.
-
We are glad to introduce the Sophos Anti-Virus for Servers extension. The extension supports Plesk for Linux, including ARM-based servers. Hereâs how it helps to protect you from malicious emails:
- Scans incoming and outgoing mail.
- Scans all archive and compressed archive file formats.
- Scans file formats that contain an executable stub that automatically decompresses the body of the file.
- Rejects malicious and potentially dangerous e-mail messages.
- Features CX-Mail, a context-aware setting that enables more aggressive detection rules specifically designed for email traffic.
- Automatically updates virus signatures.
We would love to hear your feedback about this extension at feedback@plesk.com.
-
We are glad to introduce the production version of the SOGo Webmail extension. Added the following improvements to the extension:
- It is now possible to customize the service configuration templates.
- The SOGo database is now backed up daily.
- The extension has been translated into 32 languages.
-
We are glad to introduce the beta version of the DNS integration for Cloudflare extension. The extension automates the provisioning of DNS records from Plesk to Cloudflare, simplifying this routine to a couple of clicks.
- Connect your existing Cloudflare account to Plesk.
- Import DNS records from Cloudflare to Plesk.
- Export DNS records from Plesk to Cloudflare both manually and automatically.
We would love to hear your feedback about this extension at beta-extensions@plesk.com.
-
The Website Log Check is no longer in beta. Learn more about Website Log Check. To enable the feature, add the following lines to the
panel.ini
file:[websitesDiagnostic] enabled = true
-
We are glad to introduce the result of our research into the possibility to deploy a high-availability Plesk cluster using two new features:
- Centralized database, which is no longer in beta as of this Plesk release.
- Centralized storage based on NFS. Learn how to configure centralized DB and storage
We built a proof-of-concept high-availability Plesk cluster with active and passive nodes. Read the step by step guide and testing result for such a cluster.
We would love to hear your feedback about these features and the high-availability cluster on the Plesk forum.
-
Added the ability to recalculate disk space and traffic usage data for individual domains to the Plesk interface.
Feature Improvements
- Classic list view has been updated to appear and function more closely to Dynamic list view, and also renamed to âDynamic list view - show websites on a separate pageâ. If you used Classic list view in the past, âDynamic list view - show websites on a separate pageâ should provide a similar, but improved experience.
- Made a number of improvements to Dynamic list view:
- Updated the layout of the list of hosted domains in Dynamic list view to make it easier to tell domains from subdomains and to make managing large numbers of domains easier in Dynamic list view.
- Added the ability to search for domains to Dynamic list view.
- Updated the Dynamic list view tour to highlight the changes and improvements made to Dynamic list view in Plesk Obsidian 18.0.51.
- Changed the icon of the âView on a separate pageâ button for better legibility, and also added a âCopy domain nameâ button in Dynamic list view.
- Added the Install application button in the Dynamic list view, under âDev Toolsâ. Clicking it opens a drawer from which you can install web applications, such as Laravel, Node.js, and Ruby, on your domain. The list of available applications depends on what extensions are installed in Plesk.
- Reworked the mail service options for individual domains. The available options are now âthe domain can both send and receive emailâ, âthe domain can send, but not receive emailâ, and âthe domain can neither send nor receive emailâ. Selecting the latter option also removes all existing mailboxes for the domain together with all incoming and outgoing mail.
- Updated the links on Plesk error pages to avoid confusion.
- To bring Plesk in line with the evolving industry-standard vocabulary, the following changes were made to the terms used in Plesk:
- âMaster DNS server/zoneâ > âPrimary DNS server/zoneâ
- âSlave DNS server/zoneâ > âSecondary DNS server/zoneâ
- Illustrations in Plesk have been redone in a unified style for consistency, visual integrity, and emotional response based on our target audience opinions and identified by tests.
- Requests from the Plesk Screenshot Service to websites hosted in Plesk are now marked by the custom âPlesk screenshot botâ User-Agent header.
- Plesk Premium Antivirus has been converted from a Plesk component to an extension.
Fixed Product Issues
- Updated the default DMARC DNS TXT record to make it RFC compliant. (PPPM-13892)
- Restoring from a backup stored in remote FTP storage now fails with an error instead of hanging indefinitely if the backup is invalid. (PPPM-13925)
- Information about the availability of WP Toolkit Deluxe for the installed Plesk license can now be found in Tools & Settings > License Information. (PPP-60387)
- It is now again possible to retrieve the list of all hosted databases via the REST API âdatabasesâ endpoint. (PPPM-13917)
- Removed email forwarding addresses no longer reappear after restoring from a backup. (PPPM-13862)
- It is now possible to create certificate signing requests with key sizes other than 1024 and 2048 bits via the RPC API. (PPPM-13918)
Linux
- Removing PHP 8 via Plesk Installer no longer results in an error when browsing Tools & Settings > PHP Settings. (PPPM-13850)
- Websites using PHP 8.1 and 8.2 with the PHP-FPM handler no longer randomly throw âHTTP 503 Service Unavailableâ errors due to the handler process experiencing a segmentation fault. (PPPM-13872)
- Enabling debug logging in Plesk no longer makes the Plesk GUI inaccessible with the âHTTP 502 Bad Gatewayâ error. (PPPM-13885)
- Entering a custom TTL value for a PTR record in Plesk DNS settings now results in the custom value correctly taking effect. (PPPM-13776)
- Running the
plesk repair all -y
orplesk sbin fsmng --fix-plesk-packages
commands on a Plesk server with the Imunify360 extension installed and the default OS locale changed no longer fails with the âERROR:âasciiâ codec canât decode byte 0xc5 in position 1934: ordinal not in range(128)â error. (PPPM-13860) - Running the
plesk repair mail
command on a Plesk server using Postfix as the mail server no longer enables the mail service if it was intentionally disabled. (PPPM-13859) - Websites using PHP 8.1 and 8.2 with OPcache enabled no longer randomly throw âHTTP 503 Service Unavailableâ errors due to child processes terminating themselves unexpectedly. (PPPM-13876)
- On Plesk servers using Postfix as the mail server, securing mail with a TLS/SSL certificate may fail if multiple different end of line sequences (for example, both â\r\nâ and â\nâ) are used in the certificate body. (PPPM-13887)
- Running the
plesk repair installation
command on a Plesk server with phpMyAdmin installed no longer breaks phpMyAdmin configuration. (PPPM-13902) - Watchdog will now monitor the correct ploop device after host node reboot if Plesk is installed in an OpenVZ 7/Virtuozzo 7 container. (PPP-57361)
Windows
- Removing all registered database servers from Tools & Settings > Database servers no longer makes it impossible to add new ones. (PPPM-13893)
- It is now again possible to change a websiteâs document root directory via the RPC API. (PPPM-13915)
- Exporting a database to PDF in phpMyAdmin no longer fails with the âHTTP 500 Server Errorâ error. (PPPM-13823)
Future Plans
-
In the nearest future, we plan to switch PHP used by Plesk to PHP 8.2. This is because security support for PHP 8.0 will end in November 2023. If you are running any custom extensions, you will need to update them to support PHP 8.2 to avoid potential issues.
This change is currently scheduled to take place with the release of Plesk Obsidian 18.0.53 (early June 2023).
-
In the nearest future, we plan to stop shipping MyLittleAdmin with Plesk. This is because MyLittleAdmin is not in active development, and has known security issues. Instead, Plesk will provide links to downloadable clients and instructions on how to connect the client to the Plesk server.
This change is currently scheduled to take place with the release of Plesk Obsidian 18.0.53 (early June 2023).
Changes in Third-Party Components
- Updated PHP 8.0 used by Plesk to version 8.0.28.
Linux
- Webalizer can now be installed on servers running Red Hat Enterprise Linux 8 and its derivatives.
- Updated phpMyAdmin to version 5.2.1.
Windows
- Updated Git to version 2.39.2.
- Updated BIND to version 9.16.38.
- Updated OpenSSL used by Plesk and Plesk Installer to version 1.1.1t.
- Updated ASP.NET Core 7.0 to version 7.0.3.
- Updated ASP.NET Core 6.0 to version 6.0.14.
- Updated Node.js 18 to version 18.14.1.
- Updated Node.js 16 to version 16.19.1.
SOGo Webmail 1.0.0
13 March 2023
- We are glad to announce that the SOGo Webmail extension has left beta.
Support SSH Access 1.1.0
8 March 2023
- Dropped compatibility of legacy components.
- Simplified the process of providing access.
- The overview screen now shows the list of all licenses with the license support status and a reason why a license is not supported.
SSL It! 1.12.6
8 March 2023
- Added support for the SOGo Webmail extension.
- Backing up of subscriptions no longer fails if they have a lot of SSL It! orders to issue certificates. (EXTSSLIT-1936)
Node.js 2.2.2
8 March 2023
- Moved the custom button that installs Node.js applications to the installation drawer.
Monitoring 2.5.8
8 March 2023
- The 360 Monitoring agent is now updated correctly even if the server has MariaDB 10.4 or later and invalid
mysql.user
table. (EXTPLESK-4428)
Let's Encrypt 3.1.7
8 March 2023
- Added support for the SOGo webmail client. A certificate can be issued and installed on the webmail client if the SSL It! extensionâs version is 1.12.6 or later.
WP Toolkit 6.1.3
7 March 2023
-
--clear-cache
CLI command now supports partial (targeted) cache reset. - WP Toolkit no longer shows
Failed to find set with specified ID
error when installing WordPress under certain rare circumstances. (EXTWPTOOLK-9898) - Vulnerability warning is no longer displayed for cloned websites with already mitigated vulnerabilities. In addition, email notifications about mitigated vulnerabilities allegedly being active are no longer sent to users. (EXTWPTOOLK-10259)
- Service Plan limit
WordPress websites with Smart Update
now works correctly again, as before. (EXTWPTOOLK-10179)
.NET Toolkit 2.1.2
6 March 2023
Linux
- Fixed the âdotnet binary not specifiedâ error on Ubuntu 22. (EXTPLESK-4168)
Plesk Obsidian 18.0.50 Web Presence Builder update
28 February 2023
- The Web Presence Builder console of websites that use Google Analytics is again accessible and no longer shows the âUnable to connect to Web Presence Builder serverâ error. (PPB-4680, PPS-13967)
SOGo Webmail 0.2.0
23 February 2023
- It is now possible to customize the service configuration templates. For more information, see
/usr/local/psa/var/modules/sogo/templates/README.md
. -
Added support for CourierIMAP.
Note: Features based on the Sieve protocol will be unavailable if CourierIMAP is used.
- The SOGo database is now backed up daily. SQL dumps are rotated to prevent excessive usage of disk space.
- Switched the password storage to secure SSHA512 hashes, which enables to store longer passwords.
- Improved the UI of the extensionâs main screen.
- The installation task now shows correct text upon completion. (EXTPLESK-4202)
DigitalOcean DNS 1.3.6
23 February 2023
- The extension now shows the actual status of DNS zones. (EXTPLESK-4374)
PHP Updates
22 February 2023
- Updated PHP 8.0 to version 8.0.28.
- Updated PHP 8.1 to version 8.1.16.
- Updated PHP 8.2 to version 8.2.3.
Monitoring 2.5.6
21 February 2023
- Selecting nine or more subscriptions for comparison on the âSubscriptionsâ tab no longer results in an error. (EXTPLESK-4395)
Ruby 1.4.12
20 February 2023
- Updated Ruby to versions 3.0.6, 3.1.4, 3.2.2 to fix the CVE-2023-36617 vulnerability.
Plesk Obsidian 18.0.50 Update 2
14 February 2023
Fixed Product Issues
- Backing up to FTP storage no longer fails with the âCurl error: (28) Timeout was reachedâ error when FTPS mode is enabled. (PPPM-13895)
Docker 1.5.6
10 February 2023
- The extension can now be installed if Docker Engine is already installed. (EXTDOCKER-161)
Linux
- The extension can now be removed, purged, and reinstalled on Ubuntu. (EXTDOCKER-160)
WP Toolkit 6.1.2
9 February 2023
- WP Toolkit is sending notifications about found vulnerabilities again. (EXTWPTOOLK-10169)
- Copy Data feature is no longer blocked when thereâs a remote site connected to WP Toolkit. (EXTWPTOOLK-10212)
- Addressed unruly behavior of security measure switches in the menu that addresses CVE-2022-3590 vulnerability. (EXTWPTOOLK-10157)
Plesk Obsidian 18.0.50 Update 1
8 February 2023
Fixed Product Issues
- Creating a custom button with the â#â character in place of the URL no longer results in the Plesk interface becoming unavailable. (PPPM-13878)
- Fixed the issue with checkboxesâ alignment on multiple Plesk screens. (PPPM-13884)
- Accessing the Plesk interface on an unstable network connection no longer results in intermittent HTTP 500 errors. (PPP-59897, PPP-59956)
Linux
- Trying to manage greylisting settings via the
plesk bin grey_listing
CLI utility no longer fails with the âarray_keys(): Argument #1 ($array) must be of type array, null givenâ error. (PPP-60083) - Enabling the Plesk debug mode no longer results in the Plesk interface becoming unavailable with the HTTP 502 error. (PPPM-13885)
- Enabling the âEnable nginx cachingâ option no longer breaks the Plesk UI layout. (PPPM-13884)
Let's Encrypt 3.1.4
8 February 2023
- The âFailed to read X509 certificate from PEM stringâ error no longer appears during the Plesk daily maintenance task. (EXTLETSENC-1182)
- The âopenssl_pkey_get_public(): Donât know how to get public key from this private keyâ error no longer appears during execution of the keep-secured cron job. (EXTLETSENC-1183)
Grafana 1.3.6
3 February 2023
- Grafana v1.3.6 will be the last Grafana update that supports Plesk versions older than Plesk 18.0.50. To continue receiving Grafana updates with bugfixes and new features, update your Plesk installation to version 18.0.50 or later.
- The extension installation no longer fails with a syntax error in Plesk Obsidian 18.0.34 and earlier. (EXTPLESK-4332)
Scheduled Backups List 1.0.1
2 February 2023
- The extension no longer crashes with a PHP fatal error while opening. (EXTPLESK-4326)
Plesk Obsidian 18.0.49-18.0.50 mod_proxy update
1 February 2023
Linux
- Updated Apache
mod_proxy
to fix the issue where new configuration files for the Apache web server were not created due to errors in the configuration templates. The issue occurred if the LiteSpeed web server was installed. (PPP-59909)
Plesk Obsidian 18.0.50
31 January 2023
Whatâs New?
We are glad to release the anniversary version Plesk Obsidian 18.0.50. To all our customers, we thank you for your loyalty!
We have prepared a small gift for you. Are you intrigued? Follow the cat paw prints in Tools & Settings > About Plesk (under âPleskâ).
-
Added support for queue workers to the Laravel Toolkit extension. Laravel website owners can now manage queue jobs out of the box: schedule, monitor, remove, rerun, and so on.
To enable queues in your Laravel project, follow the instructions.
- Customers can now create database users on the default server and servers where they already have databases (even if customers do not have the âDatabase server selectionâ permission).
- Introduced the new SSL It! main screen, which offers a birdâs view of all domains, installed certificates (if any), the certificatesâ expiration dates, and certificate authorities. It is now also possible to filter domains by status (valid, expired, self-signed, and so on) and certificate authority.
-
In the Git extension, added the ability to select users who can access a local repository via HTTP/HTTPS.
Previously, only the system user had access to all repositories in a subscription. You can now select additional users when creating a local repository or changing the settings of an existing one. These users can pull and push to a local repository via HTTP/HTTPS using their credentials.
-
The Git extension now correctly handles moving domains between subscriptions and places the Git directory to the appropriate subscription afterward.
Note Moving domains between subscriptions changes the
plesk-git
directory password because it must be synced with the subscriptionâs system user password. - Due to increased phishing attacks, creating websites with publicly resolvable temporary domain names is available only for paid licenses from now on.
Windows
- Microsoft SQL Server 2022 is now fully supported.
Plesk can now detect Microsoft SQL Server 2022 installed locally and allows to create and manage user databases. It is now also possible to do the following:
- Use Microsoft SQL Server 2022 as a remote database server.
- Install Microsoft SQL Server 2022 locally using Plesk Installer.
- Import and export Microsoft SQL Server 2022 databases via the Plesk interface.
Feature Improvements
-
New domains now sign outgoing mail with DKIM. This improvement protects against email spoofing.
DKIM helps to verify that an email was indeed sent from the domain and no one tampered with the email content in transit. Previously, DKIM was not enabled by default for domains. Spoofed email messages with âFrom addressâ forged to display a Plesk domain could pass DKIM and DMARC validation and were not filtered. New domains now have the âUse DKIM spam protection system to sign outgoing email messagesâ option selected by default.
Note: This improvement works only for new domains that have their DNS and mail hosting in Plesk.
-
New domains now use the DMARC quarantine policy by default. This improvement protects outgoing mail against email spoofing.
The DMARC policy defines how the receiver should treat email messages depending on the results of DKIM and SPF checks. The new default DMARC policy (
v=DMARC1; adkim=s; aspf=s; p=quarantine
) strictly enables DKIM and SPF checks. Emails that do not pass these checks are now put in quarantine (moved to the spam folder or flagged as suspicious).Note: This improvement works only for new domains that have their DNS and mail hosting in Plesk.
- When migrating to a server with a Plesk Web Admin license installed or installing the license, the previous subscription limits are now ignored and treated as unlimited.
- Decluttered Dynamic List view and made it easier to navigate through multiple domains:
- Introduced icons for no-hosting domain types (alias, forwarding, no hosting).
- Removed the âTypeâ column.
- Plesk now better handles domains with modern applications installed (for example, Laravel, .NET, and Node.js) while moving the domains between subscriptions.
- SSL It! now shows recommended extensions and TLS versions in the âSettingsâ drawer.
- Significantly improved backup performance for backups stored in the FTP storage: backup upload speed is now ~1.6 times faster, while CPU load decreased by a factor of two.
Linux
-
It is now possible to use Atomic Standard and Atomic Advanced ModSecurity rule sets in Plesk on RHEL 8, CloudLinux 8, AlmaLinux 8, and Rocky Linux 8. To enable these rule sets, add the following lines to the
panel.ini
file:[modSecurity] ruleSet.tortix = true ; enables the Atomic Standard rule set ruleSet.atomic = true ; enables the Atomic Advanced rule set
Deprecated and Removed Items
- VPS Optimized has been deprecated and will be removed in Plesk Obsidian 18.0.51. Learn more.
Fixed Product Issues
- Customers can now access the administrative interface of applications installed via APS Catalog. (PPPM-13842)
- Improved the error message shown when Plesk cannot define the server hostname while creating a server backup. (PPPM-13814)
- The âScheduled Tasksâ model dialog box now correctly shows special characters. (PPPM-13817)
- The âScheduled Tasksâ model dialog box now again has the scroll bar and the âCloseâ button. (PPPM-13820)
- Dynamic List view now shows favicons set up with the âFavicon by RealFaviconGeneratorâ WordPress plugin. (PPP-59576)
Linux
- It is now possible to add the
listen.backlog
PHP-FPM setting in the Plesk interface. (PPPM-11945) - It is now possible to reset password using the Plesk username. (PPPM-13839)
- It is now possible to use custom PHP-FPM handlers with a systemd unit in
/etc/systemd/system/
. (PPPM-11570) - The text in Tools & Settings > Database Servers (under âApplications & Databasesâ) > Settings no longer misleads users about remote access support of PostgreSQL. (PPPM-13718)
- Changing the interface language of Plesk no longer resets that of the Horde webmail to the default English language. (PPPM-13828)
- Fixed the help of the Plesk Firewall command line utility. (PPPM-13833)
- Backup Manager can now be opened without any issues in Plesk with a large number of customers (more than 995). (PPPM-13845)
Changes in Third-Party Components
- Updated PHP 8.0 used by Plesk to version 8.0.27.
Windows
- Node.js 18.12.1 is now supported and shipped with Plesk.
- Updated MailEnable Standard to version 10.43.
- Updated ASP.NET Core 7.0 to version 7.0.2.
- Updated ASP.NET Core 6.0 to version 6.0.13.
- Dropped support for ASP.NET Core 3.1, which reached end of life.
- Updated Git to version 2.39.1.
Extensions Catalog 1.15.6
30 January 2023
- The âBuyâ button is no longer shown on the Google Workspace extension overview page. (EXTCATALOG-614)
- The Extension Catalog UI is no longer completely broken in Plesk 18.0.42 and earlier. (EXTCATALOG-618)
WP Toolkit 6.1.1
27 January 2023
- Users can now mitigate CVE-2022-3590 vulnerability in WordPress core on
WordPress Vulnerabilities
screen. - Improved performance in certain cases related to Smart PHP Updates
- Smart Update now respects page crawling limits set in the config file. (EXTWPTOOLK-10118)
Plesk Obsidian 18.0.43-18.0.49 mod_proxy update
27 January 2023
Linux
- Updated Apache
mod_proxy
to fix the issue where Apache did not start after an update of httpd to 2.4.6-98 on RHEL 7/CentOS 7/CloudLinux 7. (PPP-59844)
Git 2.4.0
26 January 2023
-
Added the ability to select users who can access a local repository via HTTP/HTTPS.
Previously, only the system user had access to all repositories in a subscription. You can now select additional users when creating a local repository or changing the settings of an existing one. These users can pull and push to a local repository via HTTP/HTTPS using their credentials.
-
The Git extension now correctly handles moving domains between subscriptions and places the Git directory to the appropriate subscription afterward.
Note: Moving domains between subscriptions changes the
plesk-git
directory password because it must be synced with the subscriptionâs system user password.
Log Browser 1.6.3
24 January 2023
- The extension no longer sends multiple requests to get the status of any service. (EXTPLESK-4246)
Monitoring 2.5.4
20 January 2023
- The extension buttons no longer slow down the rendering of the domain list because they are now loaded asynchronously. (EXTPLESK-4204)
Amazon Route 53 2.8.2
19 January 2023
- The extension no longer produces PHP error messages regarding AWS. (EXTPLESK-4242)
SSL It! 1.12.0
17 January 2023
- Introduced the new main screen, which offers a birdâs view of all domains, installed certificates (if any), the certificatesâ expiration dates, and certificate authorities. It is now also possible to filer domains by status (valid, expired, self-signed, and so on) and certificate authority.
- Recommended extensions and TLS versions are now shown in the âSettingsâ drawer.
Log Browser 1.6.2
16 January 2023
- The extension no longer sends false positive Plesk UI notifications. (EXTPLESK-4217)
WP Toolkit 6.1.0
12 January 2023
- Smart PHP Update premium feature is now available. Users can run Smart PHP Update to check how their website will work on a different version of PHP without affecting the production site. This feature is integrated with Plesk Service Plans. To hide this feature, add
smartPhpUpdateFeature = false
to the corresponding section of thepanel.ini
file. - WP Toolkit Deluxe offer is now available and can be accessed via Plesk Extension Catalog. It currently includes both Smart Updates and Smart PHP Updates. We will continue adding other premium features to this offer in the future.
- Removed all limits on the number of custom labels you can use.
- Renamed product to WP Toolkit.
- Link to PHP version details is no longer lost and is back to its rightful place. (EXTWPTOOLK-9955)
- Corrected the descriptions for several security measures. (EXTWPTOOLK-10012)
- Wordfence plugin no longer breaks cloned WordPress installations. (EXTWPTOOLK-9853)
Plesk Obsidian 18.0.49 Update 2
11 January 2023
Linux
- Trying to open Tools & Settings > Interface Management on a Plesk Obsidian server with no mail server installed no longer results in the â500 GraphQL Permission deniedâ error. (PPPM-13849)
- After updating to the latest Plesk Obsidian version, the Plesk daily task no longer erases ModSecurity configuration when it runs. (PPPM-13843)
SOGo Webmail 0.1.3
11 January 2023
- User suggestions in calendars are now correctly filtered. (EXTPLESK-4216)
PHP Composer 1.2.3
11 January 2023
- The extension no longer crashes when updating an integration plugin if the Composer utility version is 2.3.9 or higher. (EXTPHPCOMP-209)
PHP Updates
10 January 2023
- Updated PHP 8.2 to version 8.2.1.
- Updated PHP 8.1 to version 8.1.14.
- Updated PHP 8.0 to version 8.0.27.
Linux
- Updated Xdebug to version 3.2.0 for PHP 8.2, 8.1, 8.0.
Action Log 1.2.2
10 January 2023
- The âFilterâ panel is now displayed correctly for any display size. (EXTPLESK-2823)
DigitalOcean DNS 1.3.4
4 January 2023
- Added a warning that indicates that an access token to DigitalOcean no longer meets the latest security requirements. On March 31, the support of legacy access tokens will be discontinued. If you see such warning on the main page of DigitalOcean DNS, generate a new access token and upload it in the extension.
SOGo Webmail 0.1.2
30 December 2022
- Databases on older versions of MySQL and MariaDB are now configured properly, allowing SOGo to be used on CentOS 7.
- Opening
webmail.example.com
will no longer greet user with âWeb Serverâs Default Pageâ. It will show SOGo login page as expected. Runplesk sbin httpdmng --reconfigure-server
to see this change immediately. (EXTPLESK-4198) - Packages from Ubuntu 18.04 OS repositories are no longer considered compatible. (EXTPLESK-4199)
- Installing the extension on an unsupported OS now shows way more readable messages about OS compatibility. (EXTPLESK-4200)
Plesk Obsidian 18.0.49 Update 1
21 December 2022
- Updating to Plesk Obsidian 18.0.49 no longer causes social login buttons to disappear from the login page. (PPP-59460)
Laravel Toolkit 1.4.2
21 December 2022
- Added the ability to run a queue worker on the âDashboardâ tab in the extension interface.
Google Drive Backup 1.3.2
21 December 2022
- Internal improvements.
- Backing up no longer fails with the âWeâre sorry⊠but your computer or network may be sending automated queriesâŠâ error under specific circumstances. (EXTPLESK-4192)
Plesk Obsidian 18.0.49
20 December 2022
- We are glad to introduce the beta version of the SOGo Webmail extension. SOGo is a groupware server that provides a rich AJAX-based Web interface and offers your users a uniform and complete interface to access their information.
-
Website favicons are now shown next to website names in Plesk to make it easier to tell them apart. To disable this feature, add the following lines to the
panel.ini
file:[domainManagement] settings.favicons = false
If no favicon can be found for a website, Plesk automatically generates an icon from the first letter(s) of the domainâs name.
- It is now possible to add and remove DNS records in a DNS zone via REST API.
- In Dynamic list, for every user session and individual domain, Plesk now keeps open the tab (âDashboardâ, âHosting & DNSâ, âMailâ) that was last selected manually during the session instead of always reverting to the âDashboardâ tab.
-
When adding a new domain, the âIPv6 addressâ field can now be prefilled with an IPv6 address. The feature is disabled by default. To enable it, add the following lines to the
panel.ini
file:[domainManagement] settings.autoSelectIpv6 = on
- Removed the distracting illustrations that accompanied the âAdd Domainâ wizard to help you focus on the task at hand.
- Removing all records from the DNS zone records template no longer results in the âAdd Recordâ button disappearing from the UI. (PPPM-13783)
- The daily maintenance task no longer runs indefinitely without terminating under specific circumstances. (PPPM-13808)
- Trying to reset a Plesk administratorâs password via the âForgot Your Password?â link now results in an email being sent with instructions on resetting the password. (PPPM-12977)
- It is no longer possible to change a websiteâs document root to a directory whose name contains one or more white space characters via XML-RPC. (PPPM-13777)
- Moving a domain between subscriptions no longer results in the domainâs databases becoming unassigned. (PPPM-13780)
- After uploading one or more files and/or directories using the âupload via URLâ option in File Manager, the screen is now refreshed so that the uploaded files and/or directories can be shown. (PPPM-13787)
- Updating Plesk if the
admin/conf/templates/custom
directory exists on the server but is empty no longer results in a misleading error message being shown. (PPPM-13806)
Linux
- Added the ability to run Plesk with a centralized database. The feature is currently in Beta.
-
Added the ability to install extensions for PHP 7.3 and later handlers using PECL. You can manage PHP extensions in Tools & Settings > PHP Settings > choose the desired handler > Manage PECL Packages.
To disable this feature, add the following lines to the
panel.ini
file:[php] pecl.enabled = off
- You can now install ionCube PHP Loader for PHP 8.1 and later using PHP extensions installer.
-
Using NFS shares to store hosted websitesâ vhost directories is now supported. To enable this feature, add the following lines to the
panel.ini
file:[webserver] syncModeOnRemoveConfiguration = true
- The list of domains in Plesk no longer takes an excessive amount of time to load. (PPPM-13804)
- Creating a backup of the Plesk server no longer fails under specific conditions. (PPPM-13765)
- On Debian-based OS, removing the âPHP by OS vendorâ component via Plesk Installer no longer results in the
/var/lib/php/sessions
directory being removed. (PPPM-13781) - On Red Hat Enterprise Linux 9, certain CLI utilities no longer fail due to incorrect OS detection. (PPPM-13794)
- Removing a subscription should no longer result in errors and inconsistencies in the Plesk database if one or more processes owned by the subscriptionâs system user are running at the moment of removal. (PPPM-13811)
- Installing the âComodo (free)â ModSecurity rule set via the CLI no longer fails with the âmodsecurity_ctl failed: Failed to download comodo rule setâ error. (PPPM-13792)
- Updating Plesk if the default Plesk directory is a symlink to a different directory should no longer cause issues under specific circumstances. (PPP-59354)
Windows
- SpamAssassin no longer creates its temporary files in the
C:\Windows\Temp
directory instead of the proper one. (PPPM-13782) - When editing a TXT record in the DNS zone records template, it is no longer necessary to manually select âTXTâ from the âRecord typeâ drop-down list. (PPPM-13784)
- Adding a TXT record to the DNS zone records template no longer fails with the âField value.type of required type DnsRecordTypeEnum! was not providedâ error. (PPPM-13785)
- Changing the maximum message size in SpamAssassin using the
plesk bin spamassassin
CLI utility no longer fails. (PPPM-13793) - Clicking Refresh on the Tools & Settings > Server Components screen now results in the list of installed components being updated as intended. (PPPM-13797)
- The âSystem Health Monitorâ service no longer fails if Google Drive for desktop is installed on the server. (PPPM-13800)
- Specifying port 465 in Tools & Settings > External SMTP Server no longer makes resetting a userâs password via the âForgot Your Password?â link fail. (PPPM-12755)
Third-Party Component Updates
- Marked PHP 7.4 as outdated because it has reached end of life and removed it from the âRecommendedâ preset.
Linux
- Roundcube 1.5.x and later now runs on PHP 8.0.
Windows
- .NET 7.0 is now supported.
- Updated ASP.NET Core 7.0 to version 7.0.1.
- Updated ASP.NET Core 6.0 to version 6.0.12.
- Updated ASP.NET Core 3.1 to version 3.1.32.
- Updated PHP 7.4 to version 7.4.33.
- Updated PHP used by Plesk to version 7.4.33.
- Updated Node.js to version 16.18.1.
- Updated OpenSSL used by Plesk and Plesk Installer to version 1.1.1s.
Log Browser 1.6.1
14 December 2022
- Added a Plesk UI notification shown after a server was restarted for any reason. The notification contains the link to the extension and helps to check if there were no errors and if everything works well after the restart.
Plesk Migrator 2.23.0
12 December 2022
- Migration no longer fails to authenticate some Microsoft SQL servers. (PMT-5064)
PHP Updates
12 December 2022
- PHP 8.2.0 is now shipped with Plesk Obsidian 18.0.48 and later on all OSes.
Monitoring 2.5.3
12 December 2022
Linux
- On AlmaLinux 9, the agent360 installation process no longer fails with the âPackage âpython36-develâ is not availableâ error. (EXTPLESK-4160)
.NET Toolkit 2.1.1
12 December 2022
- Added the ability to install the ASP.NET Core 7.0 Runtime.
- Internal improvements.
Laravel Toolkit 1.4.1
9 December 2022
- Internal improvements.
- Fixed the âAttempt to read property âscheduleTaskIdâ on nullâ PHP error. (PPP-59056)
- Fixed the âFailed to disable scheduled tasksâ error, which appeared during a backup restoration. (PPP-59221)
- Fixed the âDomain does not have PHP supportâ error, which appeared during a backup restoration. (PPP-59223)
DigitalOcean Spaces Backup 1.0.2
1 December 2022
- Fixed the âPHP Fatal error: Access level to Aws\Api\Parser\RestXmlParser::$parser must be protectedâ error, which made it impossible to configure remote storage. (EXTPLESK-4148)
Log Browser 1.6.0
29 November 2022
- Log Browser now shows the list of all services that exist on the server and their statuses on the âOverviewâ tab. You can go to the list of log entries related to any specific service with a click.
Amazon S3 Backup 1.4.4
29 November 2022
- Fixed the âPHP Fatal error: Access level to Aws\Api\Parser\RestXmlParser::$parser must be protectedâ error, which made it impossible to configure remote storage. (EXTPLESK-4123)
WP Toolkit 6.0.1
23 November 2022
- Updated hints about limitations of non-private labels
-
Forced
autoupdate policies are now correctly applied again. (EXTWPTOOLK-9917) - Smart Updates purchase link is no longer leading to a non-existent page. (EXTWPTOOLK-9914)
Advisor 1.9.8
21 November 2022
- Updated the minimal supported PHP version.
- The extension now correctly validates the password strength policy. (EXTADVISOR-915)
WP Toolkit 6.0.0
17 November 2022
- WordPress Toolkit now provides REST API for the majority of its features. To learn more about REST API, find the corresponding option in the
Global Settings
on cPanel, or in theTools & Settings
>Remote API
on Plesk. - Website labels can now be customized:
- All labels now require users to input a label text. Time to get creative!
- Labels can have different colors (chosen from a predefined palette)
- Labels can be private (visible only to the person who adds the label) or non-private (visible to and manageable by everyone who can access the site in WPT)
- Several private labels (up to five) can be added to a single WP site at once
- Existing labels were converted to non-private labels with the same text (their color is a bit different, though)
- Server administrators can turn off email notifications sent by WordPress to site administrators after the initial WordPress installation. This can be done in
Global Settings
for the whole server. -
wp-cli
utility was updated to version 2.7. - (Plesk) WP Toolkit now supports AlmaLinux 9 & RHEL 9 on Plesk.
- When working with legacy database servers, utf8mb4 symbols will be processed correctly.
- Fixed misprint in the Smart Updates promo text (because we could, not because anyone cared). (EXTWPTOOLK-9742)
- Certain badly coded plugins can no longer break WP Toolkit with
TypeError
error after certain operations. (EXTWPTOOLK-9681) - File Editor link now works properly in the Maintenance Mode customization dialog. (EXTWPTOOLK-9619)
- Confusing error messages no longer should appear in the log files (depends on whether you are literate or not, though). (EXTWPTOOLK-9605)
- Database no longer becomes corrupted under certain (admittedly rare) circumstances after cloning or copying data. (EXTWPTOOLK-9604)
- Cloned site created by Smart Update is now properly deleted if Smart Update fails. (EXTWPTOOLK-9354 / EXTWPTOOLK-9505)
- WP Toolkit now better detects whether a plugin update was actually installed without errors in case of certain stubborn plugins. (EXTWPTOOLK-9193)
- (Plesk) Corrected security status message shown under certain rare circumstances. (EXTWPTOOLK-9638)
- (Plesk) Plesk installer no longer fails with exit code 1 when uninstalling WP Toolkit (boo!). (EXTWPTOOLK-9331)
- (Plesk) Dynamic list no longer shows incorrect WordPress installations in âWordPressâ tab. (EXTWPTOOLK-9901)
Monitoring 2.5.2
11 November 2022
- Now correct values are shown when the âcloudMaxWebsitesâ limit is set. (EXTPLESK-4056)
Log Browser 1.5.0
10 November 2022
- Added the ability to see the Panel logs (/var/log/plesk/panel.log).
- Now Log Browser allows to filter logs for failed systemd services too. (EXTPLESK-4017)
- Priority icons are now present for all records. (EXTPLESK-3960)
- It is now possible to select stopped services in the filter. (EXTPLESK-4041)
Laravel Toolkit 1.4.0
10 November 2022
- Added the âAccess to Laravel Toolkitâ permission to service plans.
.NET Toolkit 2.1.0
10 November 2022
- Added the âAccess to .Net Toolkitâ permission to service plans.
Plesk Obsidian 18.0.48
8 November 2022
- Enhanced the Help menu to make it easier to find Help articles. It is now possible to browse them by categories and search for them directly from the Plesk interface.
- Added the âAccess to Laravel Toolkitâ and âAccess to .Net Toolkitâ permissions to service plans. The respective permissions allow customers to use Laravel Toolkit and .Net Toolkit for their websites.
- The Plesk Repair feature in the UI (âRepair Allâ in Tools & Settings > Diagnose & Repair) and the CLI (
plesk repair web
) now repairs all websites without making all of them unavailable. Only the website with issues goes offline until it is repaired. - A custom sender address no longer blocks Plesk notifications from being delivered to certain mail servers (for example, Amazon Simple Email Service). (PPPM-13719)
- It is now possible to change custom email addresses of recipients for Plesk automatic email notifications. (PPPM-13769)
- Backup restoration no longer fails because of a big configuration file of an extension (more than 10 MB) contained in a backup. (PPPM-13707)
- It is no longer possible to create an additional administrator password that will not work because it contains unsupported characters. (PPPM-13756)
- Plesk again prevents the administrator from removing the only NS record from the DNS zone when DNS is disabled. (PPPM-13774)
- Domain Log Browser no longer crashes if the
passenger.log
file of a domain is too big (200 MB or more). (PPPM-13698) - If a reseller does not have the âHosting settings managementâ permission, creating an add-on domain for the customerâs subscription no longer unsyncs it. (PPPM-12083)
- Help us to make Dynamic List view better by sharing your thoughts in this survey.
Linux
- Added support for AlmaLinux 9 and Red Hat Enterprise Linux 9.
-
The Plesk administrator can now install PECL extensions for Plesk and system PHP handlers via the CLI. To see the exact commands, run
plesk bin php_handler â-help
.Note: It is possible to install only those extensions that do not require additional dependencies and are not already provided by Plesk or system packages of the OS vendor.
- Dropped support for Ubuntu 20.04 LTS on the ARM architecture. You can use Ubuntu 22.04 LTS instead.
- Updating Plesk on Cloud images from Ubuntu 20.04 to Ubuntu 22.04 LTS. The update will take place gradually after release 18.0.48.
- It is now possible to update Plesk even if some repositories are unavailable. Plesk Update Manager detects and can ignore broken repositories if they are not essential for Plesk to work.
- Removing a PHP handler used by a website no longer blocks users from managing PHP settings. Plesk now also informs about the broken PHP handler on the âPHP settingsâ screen of the affected domain, in Tools & Settings > PHP settings, and via Plesk UI notifications.
- In Fail2ban, it is now possible to add descriptions to trusted IP addresses.
- Security improvements. Special thanks to Patrick William (rack911labs.ca) for reporting the issues.
- The
-drop-if-exists
option of theplesk bin ipmanage --auto-remap
command can now reuse IP addresses that already exist in the Plesk database. (PPPM-13467) - Manual remapping to IP addresses that already exist with a different netmask in the Plesk database no longer fails with an integrity constraint error. (PPPM-13506)
- Improved how Plesk syncs the spam filter sensitivity value between the Plesk database and the UI:
- The UI does not show the default value if it is missing from the database.
- The
plesk repair mail
utility sets the default value in both the database and the UI. (PPPM-7118)
- Plesk no longer fails to secure mail with an SSL/TLS certificate if the default locale is changed and the Postfix configuration file contains UTF-8 characters. (PPPM-13743)
- Plesk Installer no longer shows a warning about the missing
amazon-id
plugin if it is not installed. (PPPM-13760) - Plesk no longer fails to create a PostgreSQL database if the database name and database user name differ only by a prefix
(for example,
test
andprefix_test
respectively). (PPPM-13768) - Improved the âterminate called without an active exceptionâ error message shown when, under certain circumstances, installation of an application package fails. (PPPM-13730)
- Plesk logs no longer contain multiple Sanitizer errors that could appear after a Plesk license key was updated. (PPPM-13762)
- Plesk Firewall now shows a warning that enabling the firewall or applying its changes will overwrite firewall rules added manually via iptables. (PPPM-12190)
- Backing up can no longer fail with the âDocument is empty, line 1, column 1 (, line 1)â and âNone (line 0)â errors. (PPPM-13765)
Windows
- Installing the Kaspersky Anti-Virus SDK component (former Kaspersky Anti-Virus) now also automatically installs the Kaspersky Anti-Virus for Servers extension. This change helps to avoid confusing UX when the antivirus tab is not shown in the mailbox menu because the component is installed while the extension is not. (PPPM-13753)
Third-Party Component Updates
- Updated PHP used by Plesk to version 7.4.32.
- Updated OWASP ModSecurity CRS to version 3.3.4.
Linux
- Updated ModSecurity 3.0 to version 3.0.8.
- Updated ModSecurity 2.9 to version 2.9.6.
Windows
- Updated Node.js 16 to version 16.17.1.
- Updated MailEnable Standard to version 10.42.
- Updated ASP.NET Core 6.0 to version 6.0.10.
- Updated ASP.NET Core 3.1 to version 3.1.30.
- Updated BIND to version 9.16.33.
- Updated zlib to version 1.2.13.
Monitoring 2.5.1
28 October 2022
- It is no longer possible to bypass the
cloudMaxWebsites
limit via the CLI. (EXTPLESK-4031) - It is again possible to save thresholds. (EXTPLESK-4022)
Action Log 1.2.1
28 October 2022
- The âAction Logâ link on the âTools & Settingsâ page now always leads to the extension main page. (EXTPLESK-4038)
Plesk Obsidian 18.0.47 Update 5
25 October 2022
- DNS events are now logged correctly again. (PPPM-13766)
Monitoring 2.4.1
21 October 2022
- Monitoring version 2.4.1 will be the last Monitoring update that supports Plesk versions older than Plesk 18.0.41. To continue receiving Monitoring updates with bugfixes and new features, please update your Plesk installation to version 18.0.41 or higher.
- Logging in to Plesk Obsidian 18.0.35 and earlier with Plesk Monitoring 2.4.0 installed no longer fails with the âYour Composer dependencies require a PHP version >= 7.4.0â error. (EXTPLESK-4019)
Monitoring 2.4.0
20 October 2022
- It is now possible to mark websites that are already being monitored by another service or application.
- It is now possible to enable website monitoring right from the domain card if 360 Monitoring integration has been configured.
- Commands run via the CLI interface no longer ignore the maximum websites limit for 360 Monitoring. (EXTPLESK-3988)
- Updated the message being shown when attempting to set up integration with 360 Monitoring in Plesk with a license other than WebPro or WebHost to suggest the correct course of action. (EXTPLESK-3929). (EXTPLESK-4019)
Plesk Obsidian 18.0.47 Update 4
18 October 2022
- Now Plesk Backup Manager can again open a server backup that has customers or resellers with names that contain non-ASCII characters. (PPPM-13757)
Windows
- Running the
plesk repair fs -plesk-files-consistency
command no longer results in the âThere are corrupted files in plesk-python3-package.listâ error. (PPPM-13758) - It is now again possible to open Plesk Backup Manager under an administrator account and get the list of server backups via PMMCli. (PPPM-13754)
Plesk Migrator 2.22.4
14 October 2022
- Running the apt update command on a Plesk server with both the Plesk Migrator and Site Import extensions installed no longer results in a large number of unnecessary warning messages. (PMT-4794)
Plesk eCommerce Toolkit 1.3.1
14 October 2022
- A misleading error message is no longer shown after installing the extension in Plesk for Windows. (EXTPLESK-4000)
Plesk Obsidian 18.0.47 Update 3
13 October 2022
Linux
- Custom favicons are no longer reset to the default ones after upgrading Plesk to version 18.0.47. (PPPM-13749)
Plesk Migrator 2.22.3
6 October 2022
- Migration of MySQL/MariaDB databases from Windows servers no longer fails. (PMT-5056)
Log Browser 1.4.0
5 October 2022
- Removed the classic pagination. Now new log records appear when you click the âShow more recordsâ buttons at the beginning and at the end of the list.
- Now you can set a date starting from which the selected number of log records will be displayed.
- The extension now works faster because it retrieves only a fair number of log records instead of retrieving them all from the server. (EXTPLESK-3898)
- The filter panel now takes less space on the screen.
- The filter by message now works correctly on Debian 10 and Ubuntu 18. (EXTPLESK-3902)
- The filter by source on the âMailâ tab now again displays values. (EXTPLESK-3904)
Plesk Obsidian 18.0.47 Update 2
3 October 2022
- Creation of a remote backup with the enabled âCreate a multivolume backup, volume size (MB)â option no longer results in the âError: The backup process failed: expected str, bytes or os.PathLike object, not intâ error. (PPPM-13739)
PHP Updates
3 October 2022
- Updated PHP 8.1 to version 8.1.11.
- Updated PHP 8.0 to version 8.0.24.
- Updated PHP 7.4 to version 7.4.32.
htaccess to nginx 1.1.2
3 October 2022
- The extension no longer produces errors in the console and does not block auto-filling of the âDocrootâ field. (EXTPLESK-3973)
Plesk Migrator 2.22.2
30 September 2022
- Migration of MySQL/MariaDB databases from DirectAdmin servers or custom panel Linux servers no longer fails with the âPermission deniedâ error. (PMT-5055)
Plesk Obsidian 18.0.47 Update 1
29 September 2022
- WordPress Toolkit now works correctly with all locales. (PPPM-13735)
Linux
- Creation of a domain backup no longer fails when the âExclude log filesâ or âExclude specific files from the backupâ options are enabled. (PPPM-13733)
Plesk Obsidian 18.0.47
27 September 2022
- When using the Laravel Toolkit extension, the âInstall Composer.json dependenciesâ step during application deployment is now optional and can be skipped.
- Added the ability to integrate Plesk with different webmail clients to the Plesk SDK.
- Security improvements. Special thanks to Theologos Kokkinellis for reporting the issue.
- Added the ability to see entries from .NET applicationsâ logs in Plesk Log Viewer to the .NET Toolkit extension.
- After renaming a subscription, the subscriptionâs old name no longer keeps showing up in Laravel Toolkit. (PPP-57840)
- Plesk database inconsistencies no longer result in a blank page when clicking on a subscription. (PPP-58132)
- When opening the âLimit Outgoing Messagesâ window for one or more mailboxes, human-readable text is now shown instead of placeholders. (PPPM-13669)
- Trying to open the Tools & Settings > Database Servers page when there are inconsistencies in the Plesk database no longer results in being redirected to the Home page without an error message. (PPPM-13685)
- In Service Provider View, it is once again possible to close the âAdd Domainâ drawer by clicking the cross icon in the upper right corner. (PPPM-13706)
- It is now possible to see the log check results for more than ten websites at once when using the âWebsite Log Checkâ feature. (PPPM-13684)
- Custom page titles containing the hyphen (-) character are no longer cropped. (PPPM-12271)
- Plesk has changed its trial license limits on September 27. All trial licenses created after that date will be limited to managing three (or less) of the following: domains, domain aliases, mailboxes, mail accounts, user accounts, and web users. You can purchase non-trial Plesk licenses without these limitations.
Linux
- Plesk Obsidian is now available as a cloud image on the Oracle Cloud Marketplace. The image is based on Ubuntu 22 and uses the ARM CPU architecture to lower hosting costs.
- Published a new Plesk Obsidian cloud image on Amazon Marketplace. The image is based on Ubuntu 22 and uses the ARM CPU architecture to lower hosting costs.
- On CentOS 8 servers, creating an additional FTP account for a domain no longer results in incorrect ownership being set on the domainâs files and directories. (PPPM-12524)
- The âDefault domain, DNS zone of domain alias updatedâ Event Manager event no longer fires when the DNS zone of the primary domain is modified, but the option âSynchronize DNS zone with the primary domainâ for that domainâs alias is switched off. (PPPM-13646)
- Running the
plesk repair mail -y
command no longer adds unnecessary entries to thedata.db
file. (PPPM-13693) - Updating from Plesk Onyx to Plesk Obsidian no longer fails with the âException: Failed to solve dependenciesâ error because one or more necessary repositories are not configured. (PPPM-10923)
- Installing Plesk Obsidian on a Red Hat Enterprise Linux 8 server using Amazon RHUI repositories no longer fails with the âFailed to check system configurationâ error. (PPPM-12538)
- Opening Log Browser no longer results in an endless âloadingâ screen under specific circumstances. (PPPM-13697)
- Specifying a custom sender address for Plesk email notifications in the
panel.ini
file is now correctly used in notification emails. (PPPM-13686) - A comprehensible error message is now shown when updating Plesk fails because there are one or more unsupported repositories configured on the server. (PPPM-13716)
- On Debian-based servers, the
fsmng
command line utility no longer fails when run. (PPPM-13691) - On Ubuntu 22 servers, enabling the
pagespeed
module via theplesk sbin nginx_modules_ctl -e pagespeed
command no longer results in an error. (PPPM-13699) - Applying changes made to the SOA template no longer also applies the default DNS template to domains with custom DNS records. (PPPM-12685)
- When adding one or more custom headers to a website, the trailing double quote (â) character is no longer removed. (PPPM-13695)
- On Ubuntu 22 servers, connecting to websites over SSL/TLS via PHP code no longer fails with the âOpenSSL Error messages: error:0A000126:SSL routines::unexpected eof while readingâ error. (PPPM-13710)
- When creating a domain with mail service or adding mail service to a domain, mail service creation no longer fails with the âERROR:main:UNIQUE constraint failedâ error. (PPPM-12229)
-
Installing Plesk with MariaDB 10.6 inside a Virtuozzo container no longer fails. (PPPM-13640)
**Note:** Plesk Obsidian is installed inside a Virtuozzo container with MariaDB 10.3. To use a different MySQL implementation, pre-install it before installing Plesk.
- When updating to Plesk Obsidian 18.0.46, the
awstats-icon
alias is now correctly updated for websites set as default sites for one or more IP addresses. (PPPM-13703) - Running the
apt update
command after an unsuccessful attempt to install a Plesk extension no longer fails. (PPP-58250) - The âRemove aliasâ button is now shown for all mail aliases belonging to a mailbox, including the first one in the list. (PPPM-13721)
Windows
- The .NET Toolkit extension is now available in Plesk for Windows.
- Running the
plesk bin repair --web -sslcerts
command now correctly repairs webmail SSL certificates. (PPP-57692) - Renaming a subscription now fails with a human-readable error message if the home directory for one or more of that subscriptionâs additional FTP accounts is missing. (PPPM-13657)
- When updating a Plesk Obsidian server with the Git extension installed to the latest version, the misleading âERROR: The process âgit-cmd.exeâ not found.â error message is no longer shown. (PPPM-13688)
- On Plesk servers with a custom favicon configured, updating to the latest Plesk version no longer results in it being replaced with the default one. (PPPM-13705)
Third-Party Component Updates
Linux
- Updated Courier-IMAP to version 5.1.8.
- Updated Roundcube to version 1.6.0.
- Updated ProFTPD to version 1.3.7e.
- Updated libcurl to version 7.85.0.
- Updated Turba to version 4.2.29.
Windows
- Updated MariaDB 10.6 to version 10.6.9.
- Updated MariaDB 10.5 to version 10.5.17.
- Updated MariaDB 10.3 to version 10.3.36.
- Updated boost to version 1.80.0.
Let's Encrypt 3.1.1
27 September 2022
- The extension now shows correct error messages if the Letâs Encrypt service returns some errors. (EXTLETSENC-1171)
Plesk Obsidian 18.0.46 Update 2
26 September 2022
- When clicking checkboxes, they are now selected or cleared correctly again. (PPP-58373)
.NET Toolkit 2.0.0
23 September 2022
Windows
- Plesk for Windows is now supported.
- Added log viewing of ASP.NET Core applications for Plesk 18.0.47 and later.
Node.js 2.2.1
22 September 2022
Linux
- Added the âNodeJSâ option to the domain/subscription creation wizard.
Site Import 1.6.1
20 September 2022
- Site import no longer fails with the âCharacter set âutf8mb4â is not a compiled character setâ error when migrating from outdated MySQL/MariaDB servers. (PMT-5050)
Plesk Migrator 2.22.1
20 September 2022
- Migration no longer fails with the âCharacter set âutf8mb4â is not a compiled character setâ error when migrating from outdated MySQL/MariaDB servers. (PMT-5050)
Let's Encrypt 3.0.1
20 September 2022
- Letâs Encrypt 3.0.1 is the last Letâs Encrypt update that supports Plesk version 18.0.35 and earlier. To continue receiving the Letâs Encrypt extensionâs updates with bugfixes and new features, update your Plesk to version 18.0.36 or later.
Repair Kit 1.3.2
15 September 2022
- The âDiagnose & Repairâ screen in âTools & Settingsâ now shows check results correctly if the extension found some issues. (EXTPLESK-3546)
Kaspersky Anti-Virus for Servers 8.5.1-64
15 September 2022
- Disabling the extension now also disables the Kaspersky service.
Joomla! Toolkit 2.5.2
15 September 2022
- Updating Joomla! 4.2.0 to later versions no longer fails with the âClass âJoomla\Plugin\Behaviour\Taggable\Extension\Taggableâ not foundâ error. (EXTPLESK-3944)
htaccess to nginx 1.1.1
15 September 2022
- The extension now again works in Plesk Obsidian 18.0.44 and later. (EXTPLESK-3765)
Plesk Obsidian 18.0.46 Update 1
6 September 2022
- It is now again possible to add a CNAME record with underscore symbols on the âDNS Settingsâ screen. (PPP-58251)
Plesk DNSSEC 1.3.0
6 September 2022
- Updated translations.
- The DNSSEC button is shown under Hosting & DNS tab instead of section âDev Toolsâ (EXTDNSSEC-90)
Site Import 1.6.0
29 August 2022
- Website content is no longer corrupted during migration when UTFmb4 characters are used. (PMT-5047)
Linux
- The extension can now be installed on Plesk servers running on Red Hat Enterprise Linux 9.
Plesk Migrator 2.22.0
29 August 2022
- Website content is no longer corrupted during migration when UTFmb4 characters are used. (PMT-5047)
Linux
- The extension can now be installed on Plesk servers running on Red Hat Enterprise Linux 9.
Plesk Mobile Center 1.20
21 August 2022
- The extension now uses a new Apple Push Notification service certificate.
WordPress Toolkit 5.12.3
19 August 2022
- Site Kit plugin from Google was added to a number of default sets.
- Site administrators running their WordPress sites on PHP 8.0 and higher can now log in to WordPress admin from WordPress Toolkit even if certain unruly or buggy plugins are active on these sites. (EXTWPTOOLK-9070)
Slave DNS Manager 1.10.2
18 August 2022
- Plesk Search no longer shows placeholders for Slave DNS Manager pages. (EXTPLESK-1040)
- The extension no longer uses the
-clean
flag to manage BIND version 9.10 and earlier. (EXTPLESK-2647)
Plesk Obsidian 18.0.46
16 August 2022
-
A number of improvements were made to the Laravel Toolkit extension:
- Added the ability to turn maintenance mode off (php artisan down) and on (php artisan up) on the âDashboardâ tab in the extension interface.
- Added the ability to automatically turn maintenance mode on and off for the duration of the application deployment.
- Added the ability to manage deployment steps of the application on the âDeploymentâ tab in the extension interface.
-
Added the ability to switch between the automatic and manual deployment modes of the application on the âDashboardâ tab in the extension interface.
If you select the automatic deployment mode, the application will be automatically deployed after a push to the repository (if the repository is local) or a webhook call (if the repository is remote). If you select the manual deployment mode, the application will be deployed when you click the Deploy button in the Laravel Toolkit or the Git extension interface.
- A single webhook is now used for the Git and Laravel Toolkit extensions.
-
A number of improvements were made to the Git extension:
- The extension now deploys files to production websites asynchronously if the deployment was triggered by a webhook.
- Added the run-actions option to the createand update API methods, which enable/disable execution of additional deployment actions.
- Added the async-deploy method to the CLI and XML API. The method invokes the asynchronous deployment of files to the production website.
- Fixed removal of additional deployment actions after disabling them in the Plesk interface.
-
A number of improvements were made to the Transfer of DNS Records extension:
- It is now possible to perform DNS record lookup.
- The extension now supports DNS templates for the Google Workspace and Office 365 services.
- Improved DNS records import algorithm.
- Running the import CLI command no longer fails in Plesk on CentOS.
-
A number of improvements were made to the Plesk Mobile Center extension:
- Added support for Android 13.
- Improved work with the mobile version of Plesk.
- Improved app stability.
- Fixed bugs related to the accessibility of the Plesk extension logs.
- (Plesk for Linux) Fixed the issue where logs for the latest Plesk versions were not displayed.
- Added the âReset adminâs password on the next loginâ checkbox (cleared by default) to the Plesk initialization screen.
- Added the ability to hide the entire âAssistance & Troubleshootingâ section of the Tools & Settings menu in Restricted Mode.
- When a subdomain for a website with a resolvable domain name is created, SSL It! now waits for the subdomain name to become resolvable as well before trying to secure it with a Letâs Encrypt SSL certificate. This prevents situations where a newly created subdomain could not be secured with the âThe domain is not resolvableâ error. (PPPM-12892)
- The âInterface Controls Visibilityâ tab has been removed from the Tools & Settings > âInterface Managementâ menu because most of the controls found on the tab were obsolete. The âHide controls for rejection messages for non-existent mail addressesâ checkbox has been renamed to âHide bounce controlsâ and moved to the âInterface Viewsâ tab.
- Updated the appearance of pie charts used to show domainsâ disk and traffic usage information.
- Updated the interface of the Tools & Settings > Services Management menu to make it easier to read the current status of services at a glance. (PPPM-13598)
- Incremental server backups created in remote storage no longer take an unreasonably long time to finish. (PPPM-13635)
- Creating a subscription using a private IPv6 address mapped to a public IP address in Tools & Settings > IP Addresses no longer results in the private IP address being used in the domainâs DNS records instead of the public IP address. (PPPM-13650)
- Removing a user with the âWebMasterâ role no longer fails with the âError 500: Unable to find instance with id in databaseâ message. (PPPM-13655)
- Sorting scheduled tasks in Tools & Settings > Scheduled Tasks (Cron jobs) by âScheduleâ now works properly. (PPPM-13661)
- The
plesk db
command line utility no longer uses the--no-defaults
option when calling themysql
ormysqldump
commands. (PPPM-10414) - It is no longer possible to create a CNAME DNS record using an IP address as the canonical name. (PPP-57900)
Linux
-
We are glad to introduce the production version of the .NET Toolkit extension. Added the following improvements to the extension:
- It is now possible to manage installed versions of the ASP.NET Core Runtime.
- It is now possible to create a website running on ASP.NET Core with just a few clicks (Websites & Domains > Add Domain > .NET site).
- Added the ability to restart the application.
- .NET Toolkit configuration is now included in Plesk backups.
-
A number of improvements were made to the Log Browser extension:
- It is now possible to view the
systemd/journalctl
logs in the Plesk interface. - The extension can now filter logs by priority.
- Redesigned the log filter form.
- The extension now uses
journalctl
as the default source of mail logs.
- It is now possible to view the
-
We are glad to announce official support of ARM-based servers:
- Plesk can now be installed on ARM-based servers running on Ubuntu 22.
- The SSH Terminal extension can now run on ARM-based servers.
- SFTP Backup can now run on ARM-based servers.
- nginx shipped with Plesk is now compiled with
ngx_http_geoip2_module
out of the box. This makes it possible to use MaxMind Geo IP databases to detect visitorâs geographical location by their IP address. This, in turn, makes it possible to limit access to websites to visitors from certain countries, or to automatically redirect them to country-specific URLs. - The
plesk repair sysusers
CLI utility can now be used to repair system users on Plesk for Linux servers. - Reports sent by Watchdog by mail no longer arrive incomplete if the report length exceeds 131072 chatacters. (PPPM-13474)
- Running the
plesk repair web
command no longer produces an error for every disabled Apache PHP module if thempm_event
module is enabled. (PPPM-13512) - AWStats now correctly calculates the stats for the last day of the month if nginx is disabled on the server. (PPPM-13568)
- On Plesk servers running on Red Hat Enterprise Linux 8 and its derivatives with the Extra Packages for Enterprise Linux (EPEL) repository configured, running the
dnf update
command now properly updates the âplesk-phpXX-imagickâ packages. (PPPM-13570) - Plesk Premium Antivirus no longer fails to start on Plesk servers with TLSv1.x protocols disabled for the Plesk web server. (PPPM-13576)
-
On Plesk servers running on Red Hat Enterprise Linux 8 and its derivatives with the Extra Packages for Enterprise Linux (EPEL) repository configured, installing AWStats packages from the EPEL repository no longer results in AWStats being non-functional.(PPPM-13617)
Note: If you have disabled the installation of AWStats packages from the EPEL repository, you need to undo the changes, or else future Plesk updates will fail.
- Restoring one or more subscriptions from backup that had their hosting type changed from forwarding to physical hosting after the backup was created no longer results in unnecessary email notifications. (PPPM-13630)
- Misleading âWarning: Extension âLaravel Toolkitâ Unable to back up extension.â message is no longer shown when creating a backup on a Plesk server with the Laravel Toolkit extension installed. (PPPM-13632)
- Disabling the DNS service for a domain no longer removes the Add Record button in Hosting & DNS > DNS Settings. (PPPM-13643)
- The Event Manager âDefault domain, DNS zone of domain alias updatedâ event no longer triggers when the DNS zone of a domain with one or more domain aliases with the âSynchronize DNS zone with the primary domainâ option disabled is modified. (PPPM-13646)
- Postfix shipped with Plesk is once again compiled with MySQL support. (PPPM-13665)
- Removing a mail address from SpamAssassinâs black or white list in Plesk no longer results in the address being removed from the list in Plesk but not in the SpamAssassinâs configuration files. (PPPM-13670)
- It is once again possible to send mail without authentication using the
sendmail -bs
command. (PPPM-13584) - Emoji characters stored in MySQL databases are now backed up and restored properly. (PPPM-10414)
-
Starting from Plesk 18.0.48 (November 8th, 2022), Ubuntu 20.04 LTS on the ARM architecture will no longer be supported.
We do recommend that you either migrate to a supported OS using Plesk Migrator or run dist-upgrade to upgrade your Ubuntu 20.04 instance.
Windows
- Node.js 16 is now supported.
- To help Plesk users in India comply with the new data law, Plesk now provides a script that can be used to copy Plesk log files to a different server for long-term storage. Learn more and download the latest version of the script here.
- Internal server errors caused by running PHP CLI utilities are now caught and reported properly. (PPP-57663)
- Renaming a subscription whose main domain is disabled no longer makes the domainâs directory inaccessible for additional FTP users. (PPPM-13654)
- Scheduled backups no longer result in an email notification warning about the âExtra content at the end of the documentâ error being sent under specific circumstances. (PPPM-9405)
Third-Party Component Updates
Linux
- Updated sw-engine PHP to version 7.4.30.
- Updated Roundcube to version 1.5.3 (for OSes other than Red Hat Enterprise Linux 7, CentOS 7, CloudLinux 7.1, and Ubuntu 18.04).
- Updated Dovecot and Pigeonhole to versions 2.3.19.1 and 0.5.19, respectively.
- Updated RRDtool to version 1.8.0.
Windows
- Updated Node.js 16 to version 16.16.0.
- Node.js 4, 6, 8, 10, and 12 are no longer shipped with Plesk.
- Updated ASP.NET Core 6.0 to version 6.0.8.
- Updated ASP.NET Core 3.1 to version 3.1.28.
- Updated libcurl to version 7.84.0.
Log Browser 1.3.2
11 August 2022
- The extension again works in Plesk versions 18.0.45 and earlier. In Plesk 18.0.46 and later, it is possible to access the extension if access to the âAssistance and Troubleshootingâ section is enabled in Tools & Settings > Restricted Mode Settings (under âPleskâ). (EXTPLESK-3834)
Laravel Toolkit 1.3.0
11 August 2022
- Added the ability to turn maintenance mode off (
php artisan down
) and on (php artisan up
) on the âDashboardâ tab in the extension interface. - Added the ability to automatically turn maintenance mode on and off for the duration of the application deployment.
- Added the ability to manage deployment steps of the application on the âDeploymentâ tab in the extension interface.
-
Added the ability to switch between the automatic and manual deployment modes of the application on the âDashboardâ tab in the extension interface.
If you select the automatic deployment mode, the application will be automatically deployed after a push to the repository (if the repository is local) or a webhook call (if the repository is remote). If you select the manual deployment mode, the application will be deployed when you click the Deploy button in the Laravel Toolkit or the Git extension interface.
- A single webhook is now used for the Git and Laravel Toolkit extensions.
Git 2.2.0
11 August 2022
- The extension now deploys files to production websites asynchronously if the deployment was triggered by a webhook.
-
Added the run-actions option to the createand update API methods, which enable/disable execution of additional deployment actions.
To enable/disable execution of additional deployment actions via the CLI, run the following commands:
# enables execution of additional deployment actions for the "repo-example" repository on the domain "example.com" plesk bin extension --call git --update -domain example.com -name repo-example -run-actions false # disables execution of additional deployment actions for the "repo-example" repository on the domain "example.com" plesk bin extension --call git --update -domain example.com -name repo-example -run-actions true
To enable/disable execution of additional deployment actions via the XML API, run the following commands:
<!-- enables execution of additional deployment actions for the "repo-example" repository on the domain "example.com" --> <packet><extension><call><git><update><domain>example.com</domain><name>repo-example</name><run-actions>true</run-actions></update></git></call></extension></packet> <!-- disables execution of additional deployment actions for the "repo-example" repository on the domain "example.com" --> <packet><extension><call><git><update><domain>example.com</domain><name>repo-example</name><run-actions>false</run-actions></update></git></call></extension></packet>
-
Added the async-deploy method to the CLI and XML API. The method invokes the asynchronous deployment of files to the production website.
To asynchronously deploy files to the production website via the CLI, run the following command:
plesk bin extension --call git --async-deploy -domain example.com -name repo-example
To asynchronously deploy files to the production website via the XML API, run the following command:
<packet><extension><call><git><async-deploy><domain>example.com</domain><name>repo-example</name></async-deploy></git></call></extension></packet>
- Fixed removal of additional deployment actions after disabling them in the Plesk interface.
.NET Toolkit 1.2.0
10 August 2022
- It is now possible to create a website running on ASP.NET Core with just a few clicks (Websites & Domains > Add Domain > .NET site).
- It is now possible to manage installed versions of the ASP.NET Core Runtime.
- Added the ability to restart the application.
WordPress Toolkit 5.12.2
5 August 2022
- WordPress Toolkit no longer takes waaay too much time to load the list of WordPress installations. (EXTWPTOOLK-9580)
Repair Kit 1.3.1
5 August 2022
- Added the ability to hide the âAssistance & Troubleshootingâ section of the âTools & Settingsâ menu for restricted admin accounts.
Plesk Mobile Center 1.19
5 August 2022
- Added support for Android 13.
- Improved work with the mobile version of Plesk.
- Improved app stability.
- Fixed bugs related to the accessibility of the Plesk extension logs.
Linux
- Fixed the issue where logs for the latest Plesk versions were not displayed. (PMBL-630)
Plesk eCommerce Toolkit 1.3.0
5 August 2022
- Added automatic backup and restore features for all stores with active licenses.
- Updated translations of all supported languages.
- Improved how obsolete stores are deleted.
- Optimised code for better performance and error mitigation.
Transfer of DNS Records 1.1.0
4 August 2022
- It is now possible to perform DNS record lookup.
- The extension now supports DNS templates for the Google Workspace and Office 365 services.
- Improved DNS records import algorithm.
- Running the import CLI command no longer fails in Plesk on CentOS. (EXTPLESK-3504)
WordPress Toolkit 5.12.1
2 August 2022
- WordPress Toolkit no longer breaks down with
InternalServerError
in case of internal database inconsistency. (EXTWPTOOLK-9555) - WordPress Toolkit now properly works again with customized
wp-config.php
files. (EXTWPTOOLK-9559)
WordPress Toolkit 5.12.0
1 August 2022
- Added new optional security measure that disables WordPress XML-RPC (blocks all requests to
xmlrpc.php
). - Dynamic list now displays WordPress Toolkit icons in the list item headers for all domains with WordPress sites.
- WordPress Toolkit now fully works on ARM64 architecture (currently supported by Ubuntu 20).
- Autoupdate tasks now work much faster if there are quarantined installations on the server.
- WordPress Toolkit database inconsistencies no longer break WordPress installations list. (EXTWPTOOLK-9429)
- Clone and Copy Data now properly work on ARM64. (EXTWPTOOLK-9174)
-
Install
button is no longer missing for some users under certain circumstances. (EXTWPTOOLK-9314) - Wrong WordPress installations are no longer shown on Installations tab when WordPress Toolkit is opened via Search. (EXTWPTOOLK-9403)
Mail Log Browser 1.2.2
1 August 2022
- Mail Log Browser v1.2.2 will be the last Mail Log Browser update that supports Plesk versions older than Plesk 18.0.41. To continue receiving Mail Log Browser updates with bugfixes and new features, please update your Plesk installation to version 18.0.41 or higher.
Log Browser 1.3.1
1 August 2022
- The extension no longer behaves incorrectly if any
systemd/journalctl
log files contain one or more non UTF-8 characters, non-printable characters, or very long messages. (EXTPLESK-3808)
Log Browser 1.3.0
28 July 2022
- It is now possible to view the
systemd/journalctl
logs in the Plesk interface. - The extension can now filter logs by priority.
- Redesigned the log filter form.
- The extension now uses
journalctl
as the default source of mail logs.
Plesk Obsidian 18.0.45 Update 2
25 July 2022
Linux
- Sending mail via
sendmail -bs
no longer requires any additional actions from customers. (PPPM-13584)
Plesk Obsidian 18.0.45 Update 1
20 July 2022
Linux
- In the Beta version of the âWesite Log Checkâ tool, the requests bar is now displayed correctly. (PPP-57762)
- Opening a domain card from the Websites & Domains page no longer results in a blank screen. Previously the error occurred when the âWebsite Log Checkâ feature was manually enabled in the
panel.ini
file. (PPPM-13639) - It is now possible to send mail via
sendmail -bs
again. (PPPM-13584) - Added missing
/usr/lib/plesk-9.0/remove_temp_backups
to the âplesk-backup-utilitiesâ package. (PPP-57734)
PHP Updates
19 July 2022
Linux
- Added the missing âImagick::setImageInterpolateMethodâ function for PHP 7.1 on the Red Hat Enterprise Linux 8-based systems. (PPP-57747)
PHP Composer 1.2.2
14 July 2022
- The extension no longer fails while updating an integration plugin. (EXTPHPCOMP-202)
PHP Updates
13 July 2022
- Updated PHP 8.1 to version 8.1.8.
- Updated PHP 8.0 to version 8.0.21.
Linux
- Switched to the static ImageMagick link for PHP 7.1-8.1 on the Red Hat Enterprise Linux 8-based systems. Previously, updating the ImageMagick library in the EPEL repository on the Red Hat Enterprise Linux 8-based systems failed with the âdnf updateâ error. (PPPM-13570)
Laravel Toolkit 1.2.3
11 July 2022
- Fixed the backup error when there is no Node.js configuration on the domain. (EXTPLESK-3733)
Plesk Obsidian 18.0.45
5 July 2022
-
Added a new feature âWebsite Log Checkâ (Beta). You can use it to scan web server logs for evidence of common issues, see how often a specific issue occurs, and get suggestions about ways to resolve them. Learn more about Website Log Check. To enable the feature, add the following lines to the
panel.ini
file:[websitesDiagnostic] enabled = true
-
Plesk administrator can now specify a custom email address to be used as a mail relay (the address will be used as the sender address for all Plesk email notifications found in âTools & Settingsâ > âNotificationsâ). Using an email address with a properly configured domain (DKIM, SPF records, etc.) would ensure that the notifications would not be treated as spam. To do so, add the following lines to the
panel.ini
file:[notification] senderAddress=<custom email address>
- The new password strength validator is now enabled by default. Learn more about the new password strength validator.
- Added the ability to schedule tasks to the Laravel Toolkit extension.
- Added the ability to run Node.js commands choosing the Node.js version and the package manager (npm/yarn) to the Laravel Toolkit extension (the Node.js extension must be also installed).
- It is now possible to upload a custom favicon in Plesk via the GUI. To do so, go to âTools & Settingsâ > âBrandingâ (under âPlesk Appearanceâ). In addition, the custom favicon is no longer reset to default when updating Plesk.
- Re-added the ability to sort the list of domains by creation date.
- Additional users restricted to accessing only one specific subscription can no longer see the list of all subscriptions of the customer. (PPPM-13599)
- Emails (sent by Package Update Manager) containing the list of packages with updates available no longer mention packages that have already been updated to the latest version. (PPPM-12733)
- It is now possible to log in to Plesk as an additional user whose password has been reset via a password reset link. (PPPM-13558)
- The website preview thumbnail now gets rendered correctly. (PAUX-5171)
Linux
-
We are glad to introduce the beta version of the .NET Toolkit extension. This extension enables you to:
- Run ASP.NET Core applications on your Plesk for Linux server.
- Use .NET 6 Core out of the box.
- View the extension logs in Log Browser.
- Configure environment variables.
- Added the ability to manually clear nginx cache for websites with nginx caching enabled, both via the GUI and using the
plesk bin subscription_settings --clear-nginx-cache <domainName>
command. - Dropped support for Debian 9.
- The nginx ModSecurity ruleset from Comodo in now available in Plesk.
- To help Plesk users in India comply with the new data law, Plesk now provides a script that can be used to copy Plesk log files to a different server for long-term storage. Learn more and download the latest version of the script here.
- Updating to Plesk Obsidian 18.0.44 in unattended mode on a server with a customized Extra Packages for Enterprise Linux (EPEL) repository no longer fails with the âPlesk installation requires âepelâ OS repository to be enabledâ error. (PPPM-13588)
- Running the
plesk bin ipmanage --auto-remap -drop-if-exists
command on a server where one or more IP addresses are listed in the Plesk database but are absent from network interfaces now correctly re-maps IP addresses in addition to removing the missing IP addresses from the database. (PPPM-13467) - Running the
plesk bin ipmanage --remap
command now correctly updates DNS records for domain aliases. (PPPM-13521) - Running the
plesk sbin fsmng --fix-plesk-packages
command on a server with Plesk running on a dpkg-based OS now fixes permissions on directories. (PPPM-13524) - Disabling SpamAssassin for a mail account with a large number of mail aliases no longer fails with the âERR [panel.ui] spammng failed:â error. (PPPM-13539)
- Custom error pages are now shown even if the nginx proxy mode is disabled for the domain with configured custom error pages. (PPPM-13542)
- Temporary files created when restoring backups on Plesk servers with Fail2Ban and/or ModSecurity enabled are now cleaned up periodically. (PPP-57024)
- The SSH Terminal extension no longer shows the âConnection brokenâ error every time the
plesk repair web
command is run on the server. (EXTPLESK-3509) - It is now possible to rename a mail account using the name of a previously deleted mail account if that account was deleted after removing SpamAssassin. (PPPM-13567)
- Plesk Health Monitor no longer generates garbage files on Plesk servers with Cgroups enabled when users logged in via SSH perform operations on files stored on loop devices. (PPPM-13573)
- Statistics collection no longer gets stuck under very specific conditions. (PPPM-13581)
- Running the
plesk bin service_plan -u 'Default Domain' -nginx-proxy-mode true
command no longer results in an error. (PPPM-13586) - Scheduled tasks fetching an URL containing one or more â%â characters no longer fail when run. (PPPM-13593)
-
php-fpm_error.log
files can now be opened and viewed in Log Browser. (PPPM-13596) - Dedicated PHP-FPM processes are now stopped if the corresponding domain is suspended. (PPPM-13597)
- Switching to a different domain owned by the same subscription when on the âMail Settingsâ screen no longer results in the âWarning: Possible phishing attempt detected: The link you used attempted to redirect you to another site.â error. (PPPM-13603)
Windows
- Domains are now created approximately 10% faster.
- Removed the Plesk Premium Antivirus component from the âRecommendedâ preset.
- The current status (enabled/disabled) of the âDeny IP Address based on the number of concurrent requestsâ and âDeny IP Address based on the number of requests over a period of timeâ IIS features is now correctly shown in Plesk. (PPPM-13613)
- Selecting either âPreventing DoS attacks by IIS dynamic IP restrictionâ or âDeny IP addresses based on the number of requests over a period of timeâ checkbox in the Plesk GUI no longer results in both âDeny IP Address based on the number of concurrent requestsâ and âDeny IP Address based on the number of requests over a period of timeâ IIS features being enabled at once. (PPPM-13614)
- Accessing the backups menu when the
pmm-ras.exe
binary is missing from the server now results in a comprehensible error message. (PPPM-13391) - Plesk distributive files stored in the âC:\ProgramData\Plesk\Installer\cacheâ folder during Plesk update are now cleaned up once an update is installed. (PPPM-13572)
- Plesk now correctly shows whether a websiteâs dedicated IIS application pool is set to 32-bit or not when the Turkish locale is selected. (PPPM-13616)
Third-Party Component Updates
Linux
- Updated Logrotate to version 3.20.1.
Windows
- Updated ASP.NET Core 6.0 to version 6.0.6.
- Updated ASP.NET Core 3.1 to version 3.1.26.
- ASP.NET Core 5.0 is no longer shipped with Plesk.
- Updated PHP used by plesk-engine to version 7.4.30.
- Updated MariaDB 10.6 to version 10.6.8.
- Updated MariaDB 10.5 to version 10.5.16.
- Updated MariaDB 10.3 to version 10.3.35.
- Updated boost to version 1.79.0.
- Updated libcurl to version 7.83.1.
- Updated Turba to version 4.2.27.
- Updated BIND to version 9.16.30.
Laravel Toolkit 1.2.2
5 July 2022
- No longer causes backup to show warnings for domains without Laravel (EXTPLESK-3725).
SSL It! 1.11.0
4 July 2022
-
SSL It! now makes sure that the domain name can be resolved before securing a new domain.
To disable this feature, add lines of the following pattern to the
panel.ini
file:[ext-sslit] wait-resolving-enabled = false
SSL It! 1.10.4
4 July 2022
- SSL It! version 1.10.4 will be the last SSL It! update that supports Plesk versions older than Plesk 18.0.32. To continue receiving SSL It! updates with bugfixes and new features, update your Plesk installation to version 18.0.32 or later.
Laravel Toolkit 1.2.0
1 July 2022
- Instead of adding scheduled tasks like
artisan schedule:run
into the domainâs crontab, you can now use the âScheduled Tasksâ feature in Laravel Toolkit (only available in Plesk Obsidian 18.0.45 and later). - As long as the âScheduled Tasksâ switch is on, a tab with the same name will show all scheduled tasks Laravel has registered.
- You can now call npm/yarn commands from the âNode.jsâ tab in the Laravel Toolkit interface.
- Node, npm, and yarn can now be called from within the deployment actions, simplifying the task of deploying new app versions (Git 2.1.0 must be installed on the server).
.NET Toolkit 1.1.0
23 June 2022
- Added management of environment variables.
- Added log viewing of ASP.NET Core applications for Plesk 18.0.45 and later.
PHP Updates
17 June 2022
Linux
- Introduced PHP updates are the last ones for Debian 9 âStretchâ. See Plesk EOL Policy for details.
- The Sodium extension is now dynamic for PHP 7.4, 8.0, and 8.1 again. (PPPM-13609)
- Argon2 passwords are working now on Debian 9 âStretchâ for PHP 7.4, 8.0, 8.1. (PPPM-13611)
Extensions Catalog 1.16.0
17 June 2022
- Fixed the issue where manual update to an unstable version would result in an error. Only stable versions are now available for update. (EXTCATALOG-621)
Plesk Obsidian 18.0.44 Update 3
16 June 2022
-
Updated Horde Turba to version 4.2.27 to fix the CVE-2022-30287 vulnerability.
We strongly recommend that you update Plesk.
PHP Updates
14 June 2022
- Updated PHP 8.1 to version 8.1.7.
- Updated PHP 8.0 to version 8.0.20.
- Updated PHP 7.4 to version 7.4.30.
Linux
- Updated Xdebug to version 3.1.5 for PHP 8.1, 8.0, 7.4.
- EPEL repository is now required and will be automatically enabled for PHP 7.4, 8.0, 8.1 on CentOS 7/RHEL 7/CloudLinux 7/RHEL 8/AlmaLinux 8/CloudLinux 8/RockyLinux 8
Monitoring 2.3.4
10 June 2022
- Switching back to Built-in Monitoring now automatically removes
agent360
unless the Plesk administrator selected to keep it. - If
skip_name_resolve
is enabled, it no longer breaksagent360
and the extension. (EXTPLESK-3455)
Plesk Obsidian 18.0.44 Update 2
9 June 2022
- It is now again possible to view the list of existing WordPress websites and create new ones in WordPress Toolkit. (PPPM-13587)
Linux
- Plesk migration now restores all the required data and no longer completes with the âPHP Fatal error: Uncaught TypeError: Return value of Plesk\Service\Driver\Dns\Plesk\Core::callDnsmng() must be an instance of Service_Agent_Response_Abstractâ error. (PPPM-13580)
Windows
- Adding a MS SQL server no longer fails with the âClass âMssqlLocalHostâ not foundâ error. (PPPM-13578)
WordPress Toolkit 5.11.2
8 June 2022
-
Refresh
button now properly refreshes WordPress installation data. (EXTWPTOOLK-9284) - Site vulnerability check for multiple sites no longer fails with
Cannot read properties of undefined (reading 'isVulnerable')
error under some circumstances. (EXTWPTOOLK-9290) - Activating a theme from the
Themes
tab in a site card no longer briefly shows two active themes at once. (EXTWPTOOLK-9291) - Plugins from blocklist can again be deactivated, but not activated. (EXTWPTOOLK-9292)
- Mass update screen now properly shows autoupdate settings for all assets. (EXTWPTOOLK-9294)
- Plugins can again be uploaded into sets. (EXTWPTOOLK-9298)
- Plugin status is now properly refreshed after plugin activation from the global
Plugins
tab. (EXTWPTOOLK-9323) - Installation screen properly opens again when installation is launched from Plesk domain card. (EXTWPTOOLK-9302)
htaccess to nginx 1.1.0
3 June 2022
- Fixed compatibility issues with Plesk Obsidian 18.0.44 and later. (EXTPLESK-3558)
Grafana 1.3.4
3 June 2022
Linux
- Monitoring no longer shows empty graphs and the âorigin not allowedâ warning if nginx is not installed on the server. (EXTPLESK-3426)
Plesk Obsidian 18.0.44 Update 1
1 June 2022
Linux
- Sending mail via
sendmail -bs
is no longer restricted. (PPPM-13584) - The
cloning
utility with the-reset-license
option now works in Plesk on Ubuntu 22. (PPP-57259) - Plesk Update Manager now works on Ubuntu 22. (PPPM-13575)
WordPress Toolkit 5.11.1
27 May 2022
- It is now possible again to use WordPress Toolkit in Safari. (EXTWPTOOLK-9268)
WordPress Toolkit 5.11.0
26 May 2022
- Smart Updates feature was redesigned to improve the user experience, focusing on hard data instead of screenshots:
- Detailed per-page information about found issues is now the main focus of user attention
- Test website is now fully available for manual review until Smart Update is applied or discarded. This allows users to do in-depth validation for all important pages, including those that could not be covered by screenshots (like checkout pages and so on)
- Smart Update checks up to 100 website pages now (was 30 pages before)
- Smart Updates now works faster since it doesnât have to do high-quality screenshots anymore (users have access to the actual test website instead)
- WordPress Toolkit v5.11.0 update cannot be installed on CentOS 6 or CloudLinux 6. If you are using these OSes, please update them to at least CentOS 7 or CloudLinux 7.
- Scan procedure was taught to no longer search for WordPress sites in the Recycle Bin (
.trash
) directory. - Vulnerability menu now correctly displays available updates for vulnerable sites after they were added by the Scan procedure. (EXTWPTOOLK-9146)
Plesk Obsidian 18.0.44
24 May 2022
-
We are glad to introduce the production version of the Laravel Toolkit extension. Added the following improvements to the extension:
- Use the extension in Plesk for Windows.
- Deploy a Laravel skeleton application on a domain.
- Create a website with the latest Laravel version with just a few clicks (Websites & Domains > Add Domain > Laravel site).
- Introduced the new âDeploymentâ section that makes it possible to use custom scripts to deploy applications.
- View the extension logs in Log Browser.
- (Plesk for Linux) Run artisan and composer commands without having to specify the whole path.
- Enjoy smoother transitions between screens with introduced content placeholders. When Plesk loads application cards as well as Composer and Artisan sections, you can now see their rough skeletons.
- Multiple UX improvements.
- The new âAdd Domainâ screen is now enabled by default. Learn more about this improvement.
- The
/root/.my.cnf
file that contains the password for the MySQL console client no longer blocks Plesk automatic updates. - The interface in Power User View is now always set to âAll webspacesâ unless users select the desired webspace themselves. As soon as the Plesk administrator creates the second webspace, they now see a hint on how to switch between webspaces.
- Made the transitions between domain cards smoother by introducing content placeholders: when Plesk loads a domain card, users now see its rough skeleton.
- It is now possible to change IP addresses of subscriptions with âForwardingâ and âNo hostingâ types.
- Made it more clear for users how to add SRV DNS records: the âService nameâ and âProtocolâ fields now have correct examples. (PPP-56626)
- If Plesk has a subscription with the limit on domain aliases or subdomains set to zero, this no longer prevents the Plesk administrator from creating domain aliases and subdomains in the Plesk interface. (PPPM-13534)
- Specifying empty values of
panel.ini
settings no longer stops the domainsâ âPHP Settingsâ page from being loaded. (PPPM-13516) - Subscriptionsâ names in Customer Panel are now again sorted in alphabetical order. (PPPM-13517)
- File Manager now correctly uploads directories with empty files or directories inside. (PPPM-13535)
- Clearing the âMail messagesâ checkbox in Backup Manager > Back Up no longer resets the backup type to âIncrementalâ. (PPPM-13503)
- Changing PHP settings of a locked subscription no longer overrides them with the default PHP settings of the service plan the subscription was based on. (PPPM-11555)
- Operations with multiple items selected from the list now again work in Plesk extensions. (PPPM-13548)
- Increased the length of the âTXT recordâ text field for the following types of DNS records: TXT, MX, DS, and CAA. (PPP-56760)
- Plesk again shows the content of the Application Catalog categories (âAll Available Applicationsâ > âWebâ, âCollaborationâ, and so on). (PPPM-13546)
- Restoring a domain from a backup now preserves custom TTL values of the domainâs DNS records. (PPPM-13426)
Linux
-
The console now works using a domainâs PHP version instead of the system PHP. Customers can now run artisan, composer, and other commands without having to specify the whole path.
To propagate and turn on the feature for all subscriptions, run the
plesk bin php_settings --update-all
command.To use the feature in Scheduled Tasks, prepend the cron command with the following:
export PATH="/opt/plesk/phpenv/bin:$PATH"; eval "$(phpenv init -)";
To disable the feature and bring back how the console worked before, add the following lines to the
panel.ini
file:[php] phpenv = off
Note: The feature works for Plesk PHP handlers only. It does not work for custom PHP handlers and CloudLinux with CageFS.
- Ubuntu 22.04 is now supported, with certain limitations. You can use the dist-upgrade procedure to upgrade your OS from Ubuntu 20.04 to Ubuntu 22.04.
- It is now possible to customize the
client_max_body_size nginx
directive in the Plesk interface, via the CLI, and via the XML API. - It is now possible to change a database user password on the remote database server Percona MySQL 8.0.23. (PPPM-13538)
- The âPHP-FPM settingsâ section in a domainâs PHP settings is now present for custom PHP handlers. (PPPM-13507)
- If Apache-only hosting is turned on, third-party services that use the âHostâ header validation (for example, Grafana) now work. (PPP-56778)
- Log rotation now works correctly after updating to Plesk Obsidian 18.0.43 even if
/usr/local/psa/etc/logrotate.conf
was customized. (PPPM-13519) - Fixed the error message shown when a password is not complex enough for the the âVery Strongâ password strength policy. (PPPM-13550)
- In Plesk on Debian 10 and AlmaLinux 8, a start, stop, or restart of the dedicated PHP-FPM handler no longer fails with the âUnable to stop service: Variable â$actionTypeâ got invalid value âstopââ error. (PPPM-13547)
- It is no longer possible bypass email sending restrictions for Postfix and qmail by using the
-bs
option with the sendmail wrapper. (PPPM-13497) - When editing a domainâs PHP settings in the âCommon settingsâ section, the cursor no longer jumps to the end of the text box. (PPPM-13554)
- On certain servers, Plesk no longer runs its Daily Maintenance tasks significantly longer than 24 hours. (PPPM-13532)
- Collecting statistics for a domain with a large number of files (about one million) now consumes significantly less RAM. (PPPM-13415)
- BIND no longer fails to start if Plesk has websites with enabled DNS zones but absent NS records. (PPPM-13468)
Windows
- It is now possible to use the Laravel Toolkit extension.
- Backup restoration no longer fails if the DNS server was deleted from Plesk and a custom DNS service is used (for example, DigitalOcean DNS). (PPPM-13511)
- When users select the âTradeoffâ or âThoroughâ configurations in ModSecurity, they now see the confirmation dialog, which informs that these configurations may disrupt operation of WordPress websites. (PPPM-13504)
Third-Party Component Updates
- Updated PHP used by Plesk to version 7.4.29.
- Updated libcurl to version 7.83.0.
Windows
- Updated POCO to version 1.11.2.
- Updated ASP.NET Core 6.0 to version 6.0.5.
- Updated ASP.NET Core 5.0 to version 5.0.17.
- Updated ASP.NET Core 3.1 to version 3.1.25.
-
ionCube Loader is no longer shipped with Plesk because of the reorginization of the third-party component shipment with Plesk. ionCube will be automatically installed in one of the upcoming releases in the scope of installation of the PHP components.
To use ionCube Loader, install it manually.
Note: The already installed ionCube Loader component continues to work but PHP updates no longer update the component.
-
Excluded the myLittleAdmin component from the âFull Installationâ preset and marked the component as outdated.
Note: The vendor does not support myLittleAdmin since 2013. Using outdated components is not secure. You can still install the component at your own risk by doing the following:
- (During Plesk installation) Select the âCustomâ installation type and then select myLittleAdmin.
- (After Plesk installation) Run the
plesk installer add --component mylittleadmin
command.
Laravel Toolkit 1.1.0
23 May 2022
- Introduced the new âDeploymentâ section that makes it possible to use custom scripts to deploy applications.
- Deploy a Laravel skeleton application on a domain.
- Create a website with the latest Laravel version with just a few clicks (Websites & Domains > Add Domain > Laravel site).
- View the extension logs in Log Browser.
- (Plesk for Linux) Run artisan and composer commands without having to specify the whole path.
- Enjoy smoother transitions between screens with introduced content placeholders.
- UX improvements.
Node.js 2.1.3
18 May 2022
- The extension no longer tries to install Node.js version 18 or higher if glibc version 2.27 or earlier is installed on the server. (EXTNODEJS-215)
Git 2.0.4
17 May 2022
-
Added the ability to perform custom deployment actions separately from the deploy command. To use deferred execution of custom deployment actions via the CLI, run the following commands:
# run deploy without custom deployment actions for repository "repo-example" on domain "example.com" plesk bin extension --call git --deploy -domain example.com -name repo-example -no-deployment-actions # only run custom deployment actions for the "repo-example" repository on domain "example.com" plesk bin extension --call git --run-deployment-actions -domain example.com -name repo-example
To use deferred execution of custom deployment actions via the XML API, run the following requests:
<!-- run deploy without custom deployment actions for repository "repo-example" on domain "example.com" --> <packet><extension><call><git><deploy><domain>example.com</domain><name>repo-example</name><no-deployment-actions/></deploy></git></call></extension></packet> <!-- only run custom deployment actions for the "repo-example" repository on domain "example.com" --> <packet><extension><call><git><run-deployment-actions><domain>example.com</domain><name>repo-example</name></run-deployment-actions></git></call></extension></packet>
Slave DNS Manager 1.10.1
13 May 2022
- Removal of DNS zones is now again synced between Plesk and secondary DNS servers that use BIND 9.14 and later. (EXTPLESK-3353)
Plesk Email Security 1.3.3
13 May 2022
Linux
- The extension can now install and use Amavis in Plesk on Red Hat Enterprise Linux 8. (EXTPLESK-3420)
SSL It! 1.10.3
22 April 2022
- An unwanted security warning no longer appears if the Sectigo and Digicert extensions are not installed. (EXTSSLIT-1851)
- Now the option to choose the certificateâs vendor does not appear if the Sectigo and Digicert extensions are not installed. (EXTSSLIT-1890)
- It is no longer possible to issue a certificate that secures only domainâs aliases, but not the main domain. Such certificates can not be installed in Plesk. (EXTSSLIT-1899)
Monitoring 2.3.3
22 April 2022
- It is now possible to configure the 360 Monitoring integration via the CLI.
To see the CLI commands, run
plesk ext monitoring --cloud
.
PHP Updates
18 April 2022
- Updated PHP 8.1 to version 8.1.5.
- Updated PHP 8.0 to version 8.0.18.
- Updated PHP 7.4 to version 7.4.29.
Linux
- Updated Xdebug to version 3.1.4 for PHP 8.1, 8.0, 7.4.
Plesk Obsidian 18.0.43 Update 1
15 April 2022
Linux
- Updating Plesk to version 18.0.43 no longer fails when MySQL Community Server is used. (PPPM-13514)
WordPress Toolkit 5.10.2
15 April 2022
- WordPress plugins and themes will now be properly autoupdated by WordPress Toolkit after the corresponding autoupdate settings are enabled and âTake over wp-cron.phpâ option is switched on.
- Twenty Two theme now properly conforms to autoupdate settings when itâs installed during WordPress core update. (EXTWPTOOLK-8831)
- âWordPress Vulnerabilitiesâ screen now displays a hint if WordPress core update is required to update a vulnerable plugin or theme. (EXTWPTOOLK-8538)
Linux
- Smart Updates now work properly when proxy mode is disabled for nginx. (EXTWPTOOLK-8798)
- WordPress widgets can now be managed on nginx + PHP-FPM when permalinks are used. (EXTWPTOOLK-8839)
Windows
- Users can delete plugins that were uploaded manually on the global âPluginsâ tab. (EXTWPTOOLK-8695)
- WordPress can now be installed if PHP 8.1 is used. (EXTWPTOOLK-9045)
Plesk Obsidian 18.0.43
12 April 2022
-
The new âAdd Domainâ screen is now enabled by default for new Plesk Obsidian installations. This screen provides additional domain creation options:
- Create a blank site.
- Create a WordPress site.
- Upload content using File Manager after websiteâs creation.
- Connect a Git repository.
- Import website from another hosting.
To disable it, add the following lines to the
panel.ini
file:[domainManagement] applicationWizard.enabled = false
-
Node.js applications now write their logs to separate log files that can be viewed in the Log Browser. To disable this feature, add the following lines to the
panel.ini
file:[ext-nodejs] showApplicationLogs = false
- The Node.js extension now automatically cleans up the downloaded archives of minor Node.js versions that are no longer necessary from the extensionâs cache.
-
Fine-tuned the password strength validator in Plesk to make it better at accurately evaluating strength of passwords generated by third-party applications and services.
The feature is disasbled by default because it may affect the automatic password generation scripts that must meet the new requirements. To enable the updated password strength validator, add the following lines to the
panel.ini
file:[passwordManagement] estimator = zxcvbn
The feature will be enabled by default in Plesk Obsidian 18.0.45. Read more about this feature.
- For customers, who use automatic scripts for subscriptions/customers creation the new âAPI 1038 error codeâ was added. This error code will be returned to a 3rd-party system if a used password was not accepted by Plesk so it will be possible to reinitiate the password generation process. It means that customers with a such scenario can update their scripts to reinitiate a password generation and validation process if the previous password was not accepted.
- On Plesk servers using BIND as the DNS server, the ânotify-to-soaâ option is now in effect. This ensures that the NS server specified as the primary master name server for a DNS zone in the zoneâs SOA record is sent NOTIFY messages. This is useful in âhidden masterâ scenarios where the master NS server is not listed at the registrar and does not have an NS record in the DNS zone, and a slave NS server is listed in the SOA record instead.
- Increased the speed of website preview generation for certain websites.
- Increased the speed of switching between domains by up to 25% while using the File Manager or the domain card.
- When configuring a custom TTL value for a DNS record for a domain, the custom value is also propagated to the DNS zones of all of that domainâs domain aliases. (PPPM-13425)
- Receiving one or more emails with very long subject lines no longer causes some information to not be shown in âTools & Settingsâ > âMail Queueâ. (PPPM-13462)
- Clarified the notification shown when one or more backup files in remote FTP storage do not conform to the expected naming conventions. (PPPM-13453)
- When scrolling through the contents of a directory in File Manager, the list of the files can no longer partially be seen through the pageâs footer. (PPPM-13374)
- Configuring or attempting to back up to a remote FTP repository hosted on the Azure Blob service no longer fails with the â(SSH_FX_OP_UNSUPPORTED)â error. (EXTPLESK-3418)
- Perl and Python support is no longer listed as available but turned off in âAccountâ > âHosting Optionsâ if the corresponding Plesk components are not installed. (PPPM-13456)
Linux
-
Indroduced a beta version of the Laravel Toolkit extension that allows you to manage Laravel applications running on your Plesk server:
- Scan and automatically connect Laravel websites to Laravel Toolkit. That way you can manage them using the Plesk interface.
- Get your Laravel applications from a remote Git repository and deploy them.
- Automatically update Laravel applications using Git webhooks.
- Manage the .env file using the graphical user interface (GUI).
- Run artisan and composer commands without having to access the shell.
We would love to hear your feedback about this improvement. Please send us your feedback to feedback@plesk.com.
- Plesk users granted shell access (even chrooted) can now execute certain Node.js commands (like
nvm use
ornpm install
) straight from the shell. - The Node.js extension now supports the Yarn package manager (along with already supported npm).
- When changing the PHP handler to âFastCGI application served by Apacheâ for a domain owned by a subscription based on a service plan that provides PHP-FPM by default, the PHP handler is now correctly changed to FastCGI. (PPPM-13450)
- Performing dist-upgrade from Debian 10 to Debian 11 no longer results in an outdated version of the âplesk-py27-paramikoâ package being installed. (PPPM-13478)
- On Ubuntu 20.04 servers, restarting the nginx service no longer results in the âUnable to restart the service: Failed to fetchâ error. (PPPM-13483)
- The BIND service no longer fails to start after updating to Plesk Obsidian 18.0.42.1. (PPPM-13487)
- Clarified the error message shown and logged when subscription creation fails when greylisting is enabled in global spam filter settings, but the
/var/lib/plesk/mail/greylist
directory is missing. (PPPM-13457) - Log rotation now works correctly after updating to Plesk Obsidian 18.0.42. (PPPM-13473)
- After updating to Plesk Obsidian 18.0.42, backup creation no longer fails with the âUnable to run the backup agentâ error. (PPPM-13492)
- Installing Plesk Obsidian on a server running AlmaLinux 8.4 no longer results in misleading warning messages in the installer log. (PPPM-13485)
- On servers running an RPM-based Linux with Yum, it is no longer possible to run the
yum clean all
command during the update, which led to the update failing. (PPPM-11218) - Setting the
settings.fpm.pm.process_idle_timeout.values[]
andsettings.fpm.pm.process_idle_timeout.default
PHP parameters to exactly â1â in thepanel.ini
file no longer prevents users from changing PHP handlers for hosted domains. (PPPM-13484) - Running the
plesk repair web
command now also repairs missing PHP modules. (PPPM-13387) - âForgot passwordâ emails are now sent in the language matching the userâs language configured in Plesk. (PPPM-13496)
Windows
- Mail sent from IP addresses added to the white list now bypasses DNSBL checks. You can now add and remove IP addresses to/from the white list via the
--add-to-white-list
and--remove-from-white-list
options for themailserver.exe
command. - When moving a domain from one subscription to another, the list of available target subscription now includes subscriptions whose âMailbox Sizeâ limit is exceeded by the sum total of disk space taken up by all mailboxes owned by the domain that is being moved. (PPPM-13398)
- Trying to change the value of the ASP.NET âSession Timeoutâ parameter no longer fails with the âERR [panel] Site without PhysicalHosting cannot be Webspaceâ error. (PPPM-13469)
Third-Party Component Updates
- Updated OpenSSL to version 1.1.1n.
Windows
- Updated ASP.NET Core 6.0 to version 6.0.3.
- Updated ASP.NET Core 5.0 to version 5.0.15.
- Updated ASP.NET Core 3.1 to version 3.1.23.
- PHP 5.2, 5.3, 5.4, and 5.5 are no longer shipped with Plesk.
- Updated Node.js to version 12.22.11.
- Updated libxslt to version 1.1.35.
- Updated zlib to version 1.2.12.
Kaspersky Anti-Virus for Servers 8.5.1-61
11 April 2022
- Internal improvements.
Windows
- The extension now works in Plesk version 18.0.43 and later.
SSL It! 1.10.2
8 April 2022
- It is now again possible to issue Letâs Encrypt certificates on Plesk versions 18.0.22-18.0.28. (EXTSSLIT-1911)
Node.js 2.1.1
8 April 2022
- The extension no longer fails if a subscription has forwarding-type hosting. (EXTNODEJS-210)
Monitoring 2.3.2
8 April 2022
-
It is now possible to change the âOpen 360 Monitoringâ link in the 360 Monitoring page header. The link text will be changed to âpowered by 360 Monitoringâ and the link itself will point to a user-defined URL. To do so, add the following lines to the
panel.ini
file:[ext-monitoring] cloudMonitoringPoweredByUrl = https://example.com
Replace the link with plain text, set the option to
false
:[ext-monitoring] cloudMonitoringPoweredByUrl = false
- On Virtuozzo Linux, the agent360 installation process no longer fails with the âNo package python3-pip availableâ error. (EXTPLESK-3400)
- CPU graphs for subscription usage now show correct values instead of thousands of percent. (EXTPLESK-3410)
Node.js 2.1.0
6 April 2022
- In Plesk for Linux, the extension now supports the Yarn package manager (along with already supported npm).
- In Plesk for Linux, it is now possible to manage Node.js applications from the shell.
- The extension now automatically cleans up the downloaded archives of minor Node.js versions that are no longer necessary from the extensionâs cache.
- Under certain circumstances, installation of the application packages no longer fails with the ânode: not foundâ error. (EXTNODEJS-189)
Laravel Toolkit 1.0.1
29 March 2022
- Laravel applications work correctly on domains with Nginx-only configuration.
DigiCert SSL 1.11.4
29 March 2022
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk versions 18.0.22-18.0.49 and labeled it version 1.11.4. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.50 and later.
WordPress Toolkit 5.10.1
21 March 2022
- Scan procedure now works correctly when launched by non-administrator users. (EXTWPTOOLK-8997)
SSL It! 1.10.1
18 March 2022
-
It is now possible to hide the ability to issue SSL/TLS certificates for the specified top-level domains (TLDs). This prevents failed attempts to issue certificates and reduces support workload when a certificate authority does not issue certificates for one or more country TLDs.
To hide the ability to issue SSL/TLS certificates, add lines of the following pattern to the
panel.ini
file:[ext-sslit] ;For paid Sectigo and DigiCert certificates hiddenTLDsPaidProducts = 'example' ; country TLD ;For free Let's Encrypt certificates hiddenTLDsFreeProducts = 'example' ; country TLD
WordPress Toolkit 5.9.4
17 March 2022
- WordPress Toolkit v5.9.4 will be the last WordPress Toolkit update that supports Plesk versions older than Plesk 18.0.41. To continue receiving WordPress Toolkit updates with bugfixes and new features, please update your Plesk installation to version 18.0.41 or higher.
- Plugin search in the plugin installation dialog now properly works with space characters. (EXTWPTOOLK-8986)
WordPress Toolkit 5.10.0
17 March 2022
- WordPress Toolkit now also scans inactive plugins and themes for known vulnerabilities.
- Email notifications about found vulnerabilities now include information about vulnerabilities found in inactive plugins and themes.
- Warning about outdated PHP version now includes a link to the PHP management screen.
- WordPress Toolkit now uses correct PHP version for additional domain if docroot of this domain contains docroot of another domain. (EXTWPTOOLK-8648)
- Fixed performance issues related to update availability checks on sites with detected vulnerabilities. (EXTWPTOOLK-8720)
- Replaced non-working link in Smart Updates notification email with a working one. (EXTWPTOOLK-8884)
- When users install plugins or themes with known vulnerabilities, a corresponding entry about their vulnerabilities will be added to the action log. (EXTWPTOOLK-8636)
- WordPress v5.9 and higher can be installed on a domain with PHP 8.1. Note: the support for PHP 8.1 was introduced in WordPress itself, not WordPress Toolkit, but if you have contacted our support team about this issue and were given issue ID EXTWPTOOLK-8689, feel free to switch your PHP handler to version 8.1.
- Certain localized WordPress installations can now be properly updated via WordPress Toolkit. (EXTWPTOOLK-8641)
- You can now update your localized WordPress insallation to the latest version of WordPress even if itâs not available in the current WordPress installation language. (EXTWPTOOLK-8623)
- WordPress Toolkit can now properly detect login URL that was changed by
Perfmatters
plugin. Make sure you have updated the plugin to version 1.8.7 or higher. Special thanks to Perfmatters team for helping with this issue quickly. (EXTWPTOOLK-8565) - Inactive plugins and themes with known vulnerabilities are now marked as vulnerable in the WordPress Toolkit interface. (EXTWPTOOLK-8493)
- Inactive plugins and themes with known vulnerabilities can now be updated directly on the
WordPress Vulnerabilities
tab. (EXTWPTOOLK-8492) - Plugin search in the plugin installation dialog now properly works with space characters. (EXTWPTOOLK-8986)
Google PageSpeed Insights 2.1.7
16 March 2022
- Updated the
cacert.pem
file to the latest version provided by Mozilla. - The âPHP warning for non-compound name Exceptionâ error is no longer shown in
panel.log
after the extension was installed and a subscription was created. (EXTCERT-3255)
Plesk Obsidian 18.0.42 Update 1
15 March 2022
- Performing the initial configuration no longer results in a blank screen if the âEnter Pleskâ button is clicked before all necessary fields are filled out. (PPPM-13463)
Linux
- Plesk updates no longer fail on Plesk servers that do not have BIND installed and are using a different DNS server. (PPPM-13466)
Let's Encrypt 3.0.0
15 March 2022
-
Converted the extension into the SSL It! plugin. In Plesk Obsidian 18.0.22 and later, it is no longer possible to issue and manage Letâs Encrypt certificates without the SSL It! extension.
Note: The upgrade from the Letâs Encrypt extension 2.x to 3.0.0 automatically installs SSL It! (if you do not have it installed yet).
Kaspersky Anti-Virus for Servers 8.5.1-60
15 March 2022
- Corrected mistakes in the following locales: Dutch, German, Finnish, Italian, Norwegian, Brazilian, Thai, Turkish, Vietnamese, Chinese, and Taiwanese.
SSL It! 1.10.0
14 March 2022
-
It is now possible to hide the ability to issue wildcard Letâs Encrypt certificates for domains that do not use Plesk as the DNS server and cannot be automatically secured with these certificates. This prevents failed attempts to issue the certificates and reduce customer support tickets.
You can turn on the feature in the Plesk interface (Extensions > the âMy Extensionsâ tab > click Open next to âSSL It!â > âSettingsâ) or via the CLI.
To configure the feature via the CLI, run
plesk ext sslit --wildcard-configuration -enable -nameservers 'ns1.<domain>,ns2.<domain>'
. To see more details, use theplesk ext sslit --help
command. -
A domain secured with a wildcard Letâs Encrypt certificate with all the options enabled (âRedirect from http to httpsâ, âHSTSâ, and so on) is no longer wrongly marked as âSecurity can be improvedâ. (EXTSSLIT-1746)
Monitoring 2.3.0
11 March 2022
-
It is now possible to hide the 360 Monitoring license panel, which displays the limit of websites and servers available for monitoring. To hide the license panel, add the following lines to the
panel.ini
file:[ext-monitoring] cloudShowLicensePanel = false
-
It is now possible to limit the number of websites 360 Monitoring monitors per server. The default limit set by the 360 Monitoring license affects multiple servers. To prevent one or more servers from using up the whole license limit, add the following lines to the
panel.ini
files of the servers you want to limit:[ext-monitoring] cloudMaxWebsites = 5 ; the desired website limit
-
The extension now shows a warning if 360 Monitoring stops processing one of your servers (because the license limit has been reached or the server has been archived in the 360 Monitoring interface).
Plesk Email Security 1.3.2
11 March 2022
Linux
- To significantly reduce CPU load, optimised the script that updates statistics. (EXTCERT-3760)
Mail Log Browser 1.2.1
10 March 2022
- March is now again displayed as the third month of the year. (EXTPLESK-3393)
Grafana 1.3.3
10 March 2022
- The âDashboard not foundâ error no longer occurs for monitored subscriptions after the extension update. (EXTPLESK-3396)
Joomla! Toolkit 2.5.1
3 March 2022
- Added CLI commands to attach and detach Joomla! installations.
For details and usage examples, run the
plesk ext joomla-toolkit --help
command. - Improved handling of runtime exceptions.
- Improved the installation and update process for Joomla! 4.x. (EXTCERT-3746)
Plesk Email Security 1.3.1
3 March 2022
Linux
- Fixed the location detection of the spam folder during its automatic cleanup. (EXTCERT-3727)
Site Import 1.5.6
1 March 2022
- Debian 11 is now supported.
- The âMail importingâ tool is now located on the âMailâ tab.
Kaspersky Anti-Virus for Servers 8.5.1
1 March 2022
Linux
- Initial release. The extension works in Plesk Obsidian 18.0.42 and later.
- Fixed translations into the following languages: Czech, French, Hungarian, Indonesian, Japanese, Korean, Dutch, and Ukrainian.
Git 2.0.3
1 March 2022
-
A new method get-public-key was added to both CLI and XML API. The method generates a new SSH key for a domain if it does not already have an SSH key generated for it and displays the publik key part as the output.
To generate a new SSH key for âexample.comâ via the CLI, run the following command:
plesk bin extension --call git --get-public-key -domain example.com
To generate a new SSH key for âexample.comâ via XML API, execute the following request:
<packet><extension><call><git><get-public-key><domain>example.com</domain></get-public-key></git></call></extension></packet>
- When logged in as a reseller, creating a git local repository no longer results in an error. (EXTGIT-205)
- The âSpecified directory was not found on the serverâ message no longer appears when trying to change the deployment directory in the Git settings after an update. (EXTGIT-196)
Plesk Obsidian 18.0.42
28 February 2022
- Transitions from the âPHP settingsâ screen now happen up to 40% faster.
- Most of the tabs on the subscription overview page (Websites & Domains, Mail, Files, Databases, Statistics, and Users) now open up to half a second faster.
-
Added the option to restrict the ability to create backup to the Plesk administrator. To prevent users other than the administrator from creating, uploading, or scheduling backups in Plesk, add the following lines to the
panel.ini
file:[pmm] manageBackupsByAdminOnly = true
Note that scheduled backups already configured by users other than the administrator will continue to run.
- The âTools & Settingsâ > âDNS Templateâ screen has been renamed to âDNS Settingsâ.
- The âDNS zone serial number formatâ section of the âDNS Settingsâ > âZone Settings [template]â has been renamed to âAdvanced DNS featuresâ.
- On Plesk servers using BIND as the DNS server, it is now possible to specify additional DNS server parameters using
named.conf
syntax. To do so, enter them in the newly added âAdditional DNS settingsâ field (found on the âTools & Settingsâ > âDNS Settingsâ > âServer-wide Settingsâ screen). These parameters override all other server-wide parameters configured elsewhere. - A link to a video describing the process of managing DNS records in Plesk has been added to the âDNS Helperâ wizard.
- Kaspersky Antivirus has been converted from a Plesk component to an extension and excluded from the âRecommendedâ preset. As a result, the size of the Plesk distributable decreased by 35%, which will lead to faster downloads and shorter installation times. This change will not impact servers with Kaspersky Antivirus installed in any way.
- On Plesk servers with the âJoomla! Toolkitâ extension installed, the option to create a website with the latest Joomla! version installed has been added to the âAdd Domainâ wizard.
- Plesk now treats cloud servers runnng on ARM processors as KVM virtualization allowing for the use of VPS license keys.
- Reworked the way information is presented during operations performed in the drawer on the left-hand side of the screen (for example, creating a domain). Progress bars have been moved from the footer to the main body of the drawer to make the interface less visually overloaded.
- The Video Tutorials section of the Plesk Documentation Portal has been populated with a host of new video tutorials giving step-by-step explanations for the most common Plesk use cases.
- Trying to set up mail autodiscover in the iOS Mail app on iPhone or iPad via the Plesk-generated link or QR code no longer fails with the âInvalid Profileâ error. (PPPM-13390)
- Scheduled backup processes no longer get stuck indefinitely when backing up to FTP storage if the configured FTP server is unavailable or if the provided credentials do not match. (PPPM-13411)
- The default SOA Expire Value for domains created in Plesk was increased from 7 days to two weeks to avoid misleading warnings (for example, âSOA Expire Value out of recommended rangeâ). (PPP-56007)
- When creating a domain as a Plesk administrator and selecting the âAssign this domain to a customerâ option, the list of IP addresses (shared and dedicated) available to the selected customer is now shown instead of the list of IP addresses available to the administrator. (PPPM-12040)
- Running the
plesk login
command, logging in to Plesk via the generated URL, and then running theplesk login
command again no longer results in an invalid URL being generated. (PPPM-13134) - When uploading a database dump via the âImport Dumpâ feature, the existing database (if it exists) is removed and then recreated if the âRecreate the databaseâ option is enabled. (PPP-55727)
- The
pmm-ras
command line utility now properly logs all required information if verbose logging is enabled in thepanel.ini
andpmmcli-rc
files. (PPPM-13396)
Linux
- Debian 11 is now supported, with certain limitations. You can use the dist-upgrade procedure to upgrade your OS from Debian 10 to Debian 11.
- Apache no longer fails to start if ModSecurity is enabled but unable to start for some reason. (PPPM-13354)
- It is no longer possible to create an additional FTP user with the account name âpsaclnâ in Plesk. (PPPM-13382)
- If an alert for âSite creationâ is configured for the Plesk administrator on the âTools & Settingsâ > âNotificationsâ page, and one or more event handlers for the âDefault domain (the first domain added to a subscription) createdâ event have been configured on the âTools & Settingsâ > âEvent Managerâ page, an email notification is sent to the administrator whenever a new subscription is created even if one or more event handlers return a non-zero exit code. (PPPM-13401)
- A more comprehensible error message is now shown when trying to create a domain with an internationalized domain name containing not allowed characters in punycode (for example, emojis). (PPPM-13172)
- Plesk Installer no longer fails when started on a server with certain versions of MariaDB installed from RPMs. (PPPM-13431)
- Running the one-click-installer on CloudLinux 7 no longer results in an error. (PPP-56121)
- The âwww.
" >> " " CNAME DNS record was added to the Plesk default DNS zone template.(PPP-52146) - When exporting database dumps, the progress bar no longer gets stuck under specific circumstances. (PPPM-13306)
- The Fail2Ban component now requires syslog/rsyslog (depending on the OS) as a prerequisite. (PPPM-13307)
- Plesk Monitoring now properly cleans up unneeded temporary files it stores in the
/opt/psa/var/health/data/localhost
directory. (PPPM-13313) - It is now possible to log in to webmail for a mailbox with one or more â+â characters in the mailbox name (for example, âmy+mailbox@example.comâ) when the âEnable email subaddressingâ option is disabled in âTools & Settingsâ > âMail Server settingsâ. (PPP-55620)
- A confirmation dialog box is now shown when removing a jail in Fail2Ban. (PPPM-13414)
- The âDo not deliver copies of forwarded emails to the Plesk mailboxâ option can now be enabled or disabled via the CLI using the
plesk bin mail -u <mailbox@domain.name> -forwarding true -delivery false
command. (PPPM-13422) - The sizes of incremental backups stored in FTP storage are no longer shown incorrectly under specific circumstances. (PPPM-13424)
- Certain access log entries that were missing before are now shown in Log Browser for domains with the âPermanent SEO-safe 301 redirect from HTTP to HTTPSâ option enabled. (PPPM-13433)
- A more comprehensible error message is now shown when trying to create a subdomain for a subscription with no hosting. (PPPM-13435)
Windows
- The option to change the SSL/TLS certificate securing the mail server is no longer available if a remote SmarterMail server is configured and selected as the Plesk mail server. (PPPM-13381)
- Plesk Task Manager now properly logs agent exit code when in debug mode. If the exit code is non-zero, the information is logged with the ERROR status. (PPPM-13373)
Third-Party Component Updates
Linux
- Updated phpMyAdmin to version 5.1.3.
- Updated Courier-IMAP to versions 5.1.7.
- Updated OpenSSL to version 1.1.1m.
- Updated Dovecot and Pigeonhole to versions 2.3.18 and 0.5.18, respectively.
- Updated Postfix to version 3.5.14.
- Updated RRDtool to version 1.7.2.
- Updated Logrotate to version 3.19.0.
Windows
- Updated ASP.NET Core 6.0 to version 6.0.2.
- Updated ASP.NET Core 5.0 to version 5.0.14.
- Updated Node.js to version 12.22.9.
- Updated MariaDB 10.5 to version 10.5.15.
- Updated MariaDB 10.3 to version 10.3.34.
- Microsoft Drivers for PHP for SQL Server are now shipped with PHP 8.1.
WordPress Toolkit 5.9.3
24 February 2022
- Performance of automatic updates and Smart Updates was improved.
- WordPress Toolkit now can uninstall WordPress plugins if
proc_open
orproc_close
functions are disabled viadisable_functions
in the currently used PHP handler. (EXTWPTOOLK-8756)
Nextcloud 1.6.2
23 February 2022
Linux
- Changed the way how the ownership of Nextcloud installations is detected. The installations are now mapped to the permission rights of the domains (not usersâ IDs as it was before). (EXTPLESK-3352)
Grafana 1.3.2
22 February 2022
- Updated Grafana to version 8.3.6 to fix a security issue.
- Resolved compatibility issues with Grafana version 8.3.5 and later. (EXTPLESK-3382)
Plesk Migrator 2.21.5
21 February 2022
- The extension can now be installed in Plesk on Debian 11.
- The extension can now connect to source servers that have old versions of OpenSSH even if the servers do not provide correct information on key hashing algorithms. (PMT-5008)
PHP Updates
21 February 2022
- Updated PHP 8.1 to version 8.1.3.
- Updated PHP 8.0 to version 8.0.16.
Linux
- Updated PHP 7.4 to version 7.4.28.
- Updated Redis to version 5.3.7 for PHP 8.1, 8.0, 7.4.
- Updated Xdebug to version 3.1.3 for PHP 8.1, 8.0, 7.4.
- Updated Imagick to version 3.7.0 for PHP 7.4.
- Updated ionCube loader to version 11.0.1 for PHP 7.4.
- The PHP updates mentioned above are the last ones for CentOS 8. For details, see Plesk Lifecycle Policy.
Let's Encrypt 2.15.0
15 February 2022
-
According to the deprecation plan, we hide the Letâs Encrypt interface elements. This change was announced in the Letâs Encrypt 2.14.0 release. For now, you can bring back the Letâs Encrypt interface elements by adding the following lines to the
panel.ini
file:[ext-letsencrypt] showInterface = true
On March 15, 2022 (Letâs Encrypt release 3.0.0), we completely convert the extension into the SSL It! plugin. It will no longer be possible to issue and manage Letâs Encrypt certificates without the SSL It! extension in Plesk Obsidian 18.0.22 and later.
If your Plesk does not have the SSL It! extension installed, the Letâs Encrypt release 3.0.0 will automatically install it.
-
Removed the code related to the deprecated ACMEv1 protocol from the Letâs Encrypt extension. Letâs Encrypt stopped using ACMEv1 to issue certificates.
Monitoring 2.2.1
14 February 2022
-
360 Monitoring graphs are now available again because we fixed the issue with the agent360 configuration file. Because of the incorrect file permissions, agent360 stopped sending the data to the 360 Monitoring server. (EXTPLESK-3361)
To improve agent360 stability, we recommend that you install update 2.2.1 even if your 360 Monitoring was not affected.
Joomla! Toolkit 2.4.6
14 February 2022
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk versions 17.0.17-18.0.40 and labeled it version 2.4.6. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.41 and later.
Monitoring 2.2.0
11 February 2022
- The extension now shows more information in notification messages from 360 Monitoring. (EXTPLESK-3111)
- agent360 installation no longer fails on Ubuntu 20 because of the Ubuntu bug. (EXTPLESK-3311)
- agent360 installation no longer fails after the
mod_status
module was added manually and the Apache plugin was then enabled. (EXTPLESK-3326) - The
plesk repair ftp
command no longer removes the agent360 system user. (EXTPLESK-3347)
Windows
- Monitoring now shows the real memory usage and swap usage separately.
WordPress Toolkit 5.9.2
10 February 2022
- Detached WordPress sites are no longer re-added through the
Scan
procedure, making their detachment permanent. If you need to add a detached site back for some reason, find and remove the.wp-toolkit-ignore
file in the siteâs root folder. -
Block author scans
andEnable bot protection
security measures no longer break WordPress sites installed in a subdirectory. (EXTWPTOOLK-8578)
SSL It! 1.9.10
10 February 2022
- SSL It! now controls the feature of securing Plesk with SSL/TLS certificates (instead of the Letâs Encrypt extension, which did it before).
- If the Sectigo SSL extension is blacklisted, the âExtension with ID âsectigoâ is in blacklistâ error no longer occurs. (EXTSSLIT-1842)
- If internationalized domain names (IDN) are mixed case, the extension no longer shows a redundant warning. (EXTSSLIT-1868)
- If Plesk is secured with a certificate issued for a custom domain name, renewal of the certificate now keeps the custom domain name. (EXTSSLIT-1869)
- If nginx is disabled, it is no longer possible to start securing a domain with the âForwardingâ hosting type (because this scenario is not supported and is bound to fail). (EXTSSLIT-1871)
Plesk Obsidian 18.0.41 Update 1
8 February 2022
Linux
- Emails with daily reports from the âWatchdogâ extension now contain correct data instead of error messages again. (PPPM-13385)
Joomla! Toolkit 2.5.0
7 February 2022
- Added support for Joomla! 4.x.
- Added support for the new âAdd Domainâ screen.
Docker 1.5.2
4 February 2022
- Added support for AlmaLinux OS and Rocky Linux.
- The extension can now be installed on Ubuntu 20 servers running on ARM-based platforms.
PHP Composer 1.2.0
31 January 2022
-
The extension now works with Composer 2.0 by default, since Composer 1.0 is deprecated. In most cases, you will be able to use Composer for your applications as you did before, except for cases described in Composerâs Upgrade Notes (section âFor composer CLI usersâ). To rollback to Composer 1.0 instance, add the following lines to the
panel.ini
file:[ext-composer] composerVersion = '1'
and run the âself-update.phpâ scheduled task in Plesk.
Grafana 1.3.1
27 January 2022
- The extension now supports the ARM architecture.
- Running the
apt update
command on the server with the extension installed by the Monitoring extension no longer causes the âN:Skipping acquire of configured file âmain/binary-i386/PackagesââŠâ error being shown. (EXTPLESK-3313)
PHP Updates
25 January 2022
- Updated PHP 8.1 to version 8.1.2.
- Updated PHP 8.0 to version 8.0.15.
Linux
- Updated Redis to version 5.3.6 for PHP 8.1 and 8.0.
- Updated Imagick to version 3.7.0 for PHP 8.1 and 8.0.
DigiCert SSL 1.11.3
24 January 2022
- The extension now validates wildcard and OV certificates via email and not via file upload because of DigiCert policy changes.
Monitoring 2.1.2
21 January 2022
- It is now possible to configure websites integrated with 360 Monitoring via the CLI.
To see the CLI commands, run
plesk ext monitoring --help
. - The extension can no longer get stuck in step âActivateâ of 360 Monitoring if the server hostname was incorrectly detected. (EXTPLESK-3321)
- The extension now correctly configures the agent360 MySQL plugin for working with MariaDB 10.5. (EXTPLESK-3277)
Extensions Catalog 1.15.2
20 January 2022
- Even if the Extensions Catalog fails to update its endpoint, the search function remains available.
- Internal improvements.
- Removing an extension now automatically redirects to the âMy Extensionsâ tab. (EXTCATALOG-589)
Plesk Obsidian 18.0.41
18 January 2022
- Cgroups Manager is now a free-to-use feature, and a welcome addition to the Plesk Web Pro and Web Host editions. Read more about this feature.
-
Added the
plesk bin action-log
CLI utility. The utility can be used to extract action log entries in raw or JSON format, and also to manage action log rotation settings. - Added the ability to switch outgoing mail control from counting individual messages to counting the total number of recipients from the Plesk interface (âTools&Settingsâ > âMail Server Settingsâ > turn on limitations on outgoing email messages > âCount a number of recipients instead of messagesâ).
- Reduced page load time for the Domain Overview screen.
- Improved the Plesk UI related to tasks in progress to make it more appealing and easier to use.
- The âWebspace Settingsâ section is no longer collapsed by default when adding domains, and will instead remember its last state, whether collapsed or expanded. This will make adding multiple domains easier for people who routinely changed the default usernames, passwords, or IP addresses during domain creation.
-
Decreased the page load time for a number of most popular screens in Plesk. Transitions to the following screens are now up to 400% faster:
- DNS Settings (-400%)
- Websites & Domains (-15%)
- Domains (-15%)
- File Manager (-10%)
- PHP Settings (-28%)
- Web Hosting Access (-25%)
- Hosting Settings (-7%)
- Added the âAllow necessary cookiesâ option to the cookie banner in Plesk to comply with the updated GDPR requirements.
- The SSH Terminal extension now shows a helpful pop-up with instructions if it is unable to connect (for example, because the ssh service is not running or because root login is prohibited).
-
Added the ability to prevent customers from changing the Recycle Bin rotation settings in File Manager. To restrict the ability to change rotation settings to admins and resellers only, add the following lines to the
panel.ini
file:[fileManager] trash.rotation.customerAccess = false
- Based on the collected feedback, the bar on the right side of individual domainsâ screens stays! The invitation to fill in the survey has been removed. Thanks for letting us know your opinion, everyone!
-
Added the ability to control the logging level of XML-RPC requests and responses. To change the logging level, add the following lines to the
panel.ini
file:[log] filter.priority = 6
The valid values range from 0 to 7. The higher the number, the more detailed the log, with 7 being âdebugâ, 6 being âinfoâ, and so on. See Zend Debug Levels for more information.
- Context promos for a number of Plesk extensions have been removed from the âDNS Settingsâ, âUpdates & Upgrades Settingsâ, âEmail Addressesâ, âMail Server Settingsâ, and âBackup Managerâ screens.
- Custom promos added by the customer via the KAPC delivery mechanism are now shown before Plesk promos on the Home screen in Service Provider view.
- Improved the stability of the Extensions Catalog.
- Creating a website via the new domain creation wizard now correctly redirects to the relevant screen after the domain is created (for example, the Git extension is opened if the âGitâ option was selected during domain creation). (PPP-55706)
- Notifications about the backup file being invalid are now correctly sent after backup creation. (PPPM-11642)
- The âPreviewâ link is now shown correctly in the Domain list in Service Provider view when either the âQuick Preview on a domain name in Pleskâ or âQuick Preview on an external domain nameâ option is selected in âTools & Settingsâ > âWebsite Previewâ.(PPP-55571)
- It is no longer necessary to empty the list of files to be excluded from backup in âTools & Settingsâ > âBackup Managerâ > âScheduleâ before you can clear the âExclude specific files from the backupâ checkbox. (PPPM-12262)
- Changing the IP address of a domain with log rotation enabled no longer turns log rotation off. (PPP-55573)
- It is no longer possible to update Plesk administrator profile details if the âEmail addressâ field is empty. (PPPM-13319)
- Added a link to the documentation to the warning message shown when setting outgoing mail limit for a domain, and the configured limit for the domain exceeds the limit for the subscription. (PPPM-13203)
- The âPreviewâ link for the domain selected for previewing other websites (âTools & Settingsâ > âWebsite Previewâ > âQuick Preview on a domain name in Pleskâ) is no longer shown in the Domain list in Service Provider view. (PPPM-13361)
- Uploading files via File Manager no longer sometimes fails with the âNo files selected. To upload the files, you have to select them.â error. (PPP-54792)
- After configuring the Amazon S3 Backup extension via the CLI, it is no longer shown as not configured in the Plesk interface. (PPPM-13332)
- The confirmation message shown when removing a domain now correctly calculates the number of domains that will be removed. (PPPM-13283)
- Fixed the issue where opening a domain resulted in a white screen under specific circumstances. (PPPM-13358)
Linux
- RockyLinux is now supported, both for new Plesk Obsidian installations and for in-place conversion from CentOS 8.
-
Plesk can now be installed on Ubuntu 20 servers running on ARM-based platforms (as a Beta version with certain limitations). You can also try a VPS with Plesk on Graviton2 processors by using this Plesk AWS AMI image in just a click.
Read more about the ARM architecture in the article. Have questions or suggestions regarding this feature? We welcome your feedback!
- Added the ability to add custom headers to emails sent via the Plesk auto-reply mechanism from the Plesk interface (âTools&Settingsâ > âMail Server Settingsâ > âExtra auto-reply headersâ). In addition, the âAuto-Submitted: auto-replied (vacation)â header in now added by default.
- It is no longer possible to create mail accounts for domains for which the mail service was disabled. (PPPM-13205)
- It is no longer possible to create a MySQL user with the name âroot@localhostâ under specific circumstances. (PPPM-12656)
- Importing and exporting MySQL databases with one or more definers and/or triggers via the Plesk interface now works correctly. (PPPM-13311)
- Trying to access Scheduled Tasks under Dev Tools when logged in as a reseller no longer results in the âPermission deniedâ error. (PPPM-13333)
- The
vhostmng-find
process no longer follows symlinks by default, which could prevent daily tasks from running and lead to 100% CPU load. (PPP-47419) - On Red Hat Enterprise Linux 8.x and its derivatives, Plesk Watchdog is now able to correctly detect the status of the SpamAssassin process. (PPPM-13315)
- A more informative error message is now shown when the PUM utility tries and fails to update a duplicated package. (PPP-55204)
- Single quotes in Plesk error messages are no longer replaced with double quotes when clicking the âSearch for related Knowledge Base articlesâ button, which led to empty search results. (PPPM-13327)
- The
plesk bin custom_plan_items --update
CLI utility no longer unexpectedly produces a non-zero exit code upon completion. (PPPM-13365) - Running the
plesk repair mail
CLI utility no longer prevents users from creating mailboxes for domains with the mail service enabled that are owned by a subscription with the mail service disabled. (PPPM-13369) - Incorrect breadcrumbs are no longer shown on certain screein in the Plesk interface. (PPPM-13335)
- Plesk no longer shows an incorrect âThe following Apache modules are not installed on the destination server:â error after migrating from Ubuntu 16 to Ubuntu 20. (PMT-4972, PPP-55411)
- Clarified the error message shown when trying to create an FTP user with a name starting with a number. (PPPM-13344)
- XML API requests specifying the
filter no longer fail. (PPPM-13353) - Opening the PHP settings of a domain with the disabled âPHP version and handler managementâ permission no longer results in an error. (PPPM-13370)
Windows
- Security improvements. (PPPM-13317)
- SpamAssassin no longer penalizes messages that fail the RDNS_NONE check, which could lead to legitimate messages being treated as spam.
- The âPSAMailbackup.exeâ process no longer keeps running when a backup of one or more subscriptions with mail accounts is started and then stopped. (PPPM-11671)
- Websites are now published correctly in Web Presence Builder, and website snapshots can be downloaded. (PPPM-13339)
Third-Party Component Updates
- MariaDB 10.6 is now supported.
- PHP 8.0 is now recommended to use in Plesk, and is now the default PHP versions for websites in Plesk.
- PHP 8.1 is now available in the Plesk installer.
- Marked PHP 7.3 as outdated because it has reached end of life.
Linux
- Updated PHP used by sw-engine to version 7.4.27.
- Updated nginx and the
sw-cp-server
service to version 1.20.2. - Updated Phusion Passenger to version 6.0.12.
- Updated Dovecot to version 2.3.17.1.
- Updated Pigeonhole to version 0.5.17.1.
- Updated Roundcube to version 1.4.13.
- Updated ModSecurity 3 to version 3.0.6.
- Updated ModSecurity 2 to version 2.9.5.
Windows
- .NET 6.0 is now supported.
- Updated ASP.NET Core 6.0 to version 6.0.1.
- Updated ASP.NET Core 5.0 to version 5.0.13.
- Updated ASP.NET Core 3.1 to version 3.1.22.
- Updated PHP used by plesk-engine to version 7.4.27.
- Updated Node.js 12 to version 12.22.7.
- Updated Git to version 2.34.1.
- Updated BIND to version 9.16.23.
- Updated ModSecurity to version 2.9.5.
Repair Kit 1.2.4
18 January 2022
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk versions 17.0.17-18.0.38 and labeled it version 1.2.4. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.38 and later.
Plesk Obsidian 18.0.40 Update 3
17 January 2022
- Creating a website via the new domain creation wizard now correctly redirects to the relevant screen after the domain is created (for example, the Git extension is opened if the âGitâ option was selected during domain creation). (PPP-55706)
Third-Party Component Updates
Linux
- Updated libspf2 to version 1.2.11, which fixes a number of security vulnerabilities, namely: CVE-2021-20314, CVE-2021-33912, and CVE-2021-33913.
Plesk Migrator 2.21.4
17 January 2022
- The extension can now correctly resync email messages from cPanel. (PMT-5000)
- Migration from servers with customized SSH MACs now works. (PMT-4361)
-
Plesk in Restricted Mode no longer shows the âMigration & Transfer Managerâ button in âTools & Settingsâ. (PMT-5001)
Note: To have this bugfix come into effect, update your Plesk to the upcoming version 18.0.41.
Git 2.0.1
17 January 2022
- The Git extension is opened if the âGitâ option was selected during domain creation. (EXTGIT-201)
Plesk Obsidian 18.0.40 Update 2
11 January 2022
- When restoring a customer or a Plesk server from a backup, the âCannot update customer account: unknown country code âXXâ warning no longer appears. (PPPM-13324)
Linux
-
Updated Apache mod_proxy on CentOS 7, Red Hat Enterprise Linux 7, and CloudLinux 7 to fix the mod_proxy SSRF vulnerability (CVE-2021-40438). (PPP-55606)
We strongly recommend that you update Plesk.
Third-Party Component Updates
- Marked PHP 7.3 as outdated because it reached end of life.
- PHP 8.0 is now recommended to use in Plesk.
-
PHP 8.1 is now available in the Plesk installer.
Note: At the moment, PHP 8.1 is not present in the set of recommended components.
Plesk Email Security 1.3.0
11 January 2022
Linux
- Added automatic cleanup of spam emails. You can set up how often Plesk deletes them (for example, every 30 days) in the server-wide settings. (EXTCERT-3652)
- Various internal improvements.
Plesk Mobile Center 1.18
30 December 2021
- The extension no longer shows incorrect memory usage values in Plesk 18.0.40 and later. (PMBL-614)
SSL It! 1.9.9
29 December 2021
- Users in most countries will now see SSL certificate prices without the need to click the âBuyâ button.
- It is now possible to configure the list of certificates available for purchase only by enabling and disabling the Sectigo and DigiCert extensions in the Extension Catalog.
- Aliases are no longer getting secured if the âKeep Websites Securedâ option is enabled, but the âSecure domain aliasesâ checkbox is not checked.(EXTSSLIT-1808)
WordPress Toolkit 5.9.1
24 December 2021
- Default autoupdate settings for new WordPress installations are now correctly set to expected values again. (EXTWPTOOLK-8620)
Monitoring 2.1.0
24 December 2021
- The Monitoring extension installs the agent360 service by itself without using any external bash scripts.
- Added new CLI commands for managing integration with the Cgroups Manager.
-
âEnable integration with the Cgroups Managerâ feature is enabled by default.
However, the Plesk administrator can turn off the feature by adding the following lines to the
panel.ini
file:[ext-monitoring] allowCgroupsManagerIntegration = false
- After you have bought the Pro license for 360 Monitoring, the extension will automatically hide a notification informing that the previous license has expired. (EXTPLESK-3260)
- The Graganaâs graph for CPU on Plesk for Windows has become more user-friendly and easy to read. (EXTPLESK-3261)
- If a Plesk server with configured 360 Monitoring is removed from Plesk360, Plesk Monitoring will now ask to configure 360 Monitoring again. (EXTPLESK-3256, EXTPLESK-3278)
- Monitoring now provides more detailed information if an error occurs when installing agent360. (EXTPLESK-3176)
- Monitoring will not show a blank page when the âe[n].filter is not a functionâ error occurs. (EXTPLESK-3300)
WordPress Toolkit 5.9.0
23 December 2021
- WordPress Toolkit now sends email notifications upon discovering vulnerable plugins, themes, or WordPress sites. These notifications can be configured in the same place as other similar notifications.
- Autoupdate policies for sites were extended to include automatic updates of vulnerable assets, and automatic disabling of vulnerable plugins.
- Site vulnerability check now correctly identifies and marks assets that remain vulnerable after they were updated. (EXTWPTOOLK-8583)
- Site vulnerability check no longer bothers with inapplicable sites (broken, quarantined, etc). (EXTWPTOOLK-8585)
- Site vulnerability check should now display applicable fix version instead of the earliest one. (EXTWPTOOLK-8559)
- Site vulnerability check (because what else it could be at this point, right?) now properly marks vulnerable assets on the site card after they are installed. (EXTWPTOOLK-8519)
- Maintenance mode settings are no longer reset to default when you resize the maintenance mode settings window. (EXTWPTOOLK-8539)
- Maintenance mode now properly validates large values for timers. (EXTWPTOOLK-3566)
- WordPress Toolkit UI no longer vanishes without warning when user session expires. (EXTWPTOOLK-8580)
- Comments in web server config file about
Block access to sensitive files
security measure are now properly attributed to this measure. (EXTWPTOOLK-8594)
Git 2.0.0
23 December 2021
- On Plesk for Linux servers, added the ability to specify login and password for remote HTTPS repositories.
- Completely overhauled the UI to make it modern and more convenient.
- The last commit information is now correctly updated after pulling updates without the need to refresh the page. (EXTGIT-33)
- It is now possible to select the root folder when setting the Git deploy path. (EXTGIT-54)
- The currently selected folder is now shown when changing the Git deploy path. (EXTGIT-69)
- Changing domain settings no longer results in the inability to push changes to local Git repositories. (EXTGIT-70)
- The Git extension no longer shows the wrong directory tree when editing the Git deploy path. (EXTGIT-142)
- The Git extension no longer causes icons to be misaligned on buttons in the domain menu. (EXTGIT-158)
PHP Updates
21 December 2021
- Updated PHP 7.4 to version 7.4.27.
- Updated PHP 8.0 to version 8.0.14.
Linux
- Updated Redis to version 5.3.5 for PHP 7.4 and 8.0.
- Updated Xdebug to version 3.1.2 for PHP 7.4 and 8.0.
Ruby 1.3.14
20 December 2021
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk version 18.0.35 and earlier and labeled it version 1.3.14. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.36 and later.
Node.js 2.0.4
17 December 2021
- Database inconsistency on domain removal was eliminated. (EXTNODEJS-185)
Grafana 1.3.0
17 December 2021
- To improve compatibility with new versions of the Grafana platform, it is now installed only from tested packages from the Plesk repository.
Google Workspace 1.1.2
17 December 2021
- The extension now automatically installs purchased Google Workspace licenses to Plesk.
Google Workspace 1.1.1
15 December 2021
- It is now again possible to select a plan when creating a subscription. (EXTPLESK-3283)
Let's Encrypt 2.14.0
14 December 2021
-
Changing Letâs Encrypt from a standalone extension into a plugin for SSL It!
In February 2022, we plan to change Letâs Encrypt into a plugin for the SSL It! extension.
Will I lose any Letâs Encrypt features?
You will not! The SSL It! extension already has all the features Letâs Encrypt has and more. The only change is that Letâs Encrypt stops being a standalone extension and starts working only in tandem with SSL It!
Which Plesk versions will it affect?
Plesk Obsidian 18.0.22 and later. Earlier Plesk versions do not receive either SSL It! or Letâs Encrypt updates.
How can I continue working with Letâs Encrypt certificates?
- If your Plesk version is 18.0.22 and later, install SSL It! and use it from now on.
- If your Plesk version is 18.0.21 and earlier, update Plesk to version 18.0.40, install SSL It!, and then use it from now on. You can still manage Letâs Encrypt certificates using the maintenance-only fork of the Letâs Encrypt extension (it comes with no new features, improvements, or bug fixes).
How and when will the change go into effect in Plesk 18.0.22 and later?
We are making this change in three steps:
- On December 14, 2021 (Letâs Encrypt release 2.14.0), we announce the changes in the Plesk Change Log and Plesk UI notifications.
-
On February 15, 2022 (Letâs Encrypt release 2.15.0), we hide the Letâs Encrypt UI elements. At that point, you will still be able to bring them back by adding the following lines to the
panel.ini
file:[ext-letsencrypt] showInterface = true
- On March 15, 2022 (Letâs Encrypt release 3.0.0), we completely change the extension to an SSL It! plugin. It will no longer be possible to manage Letâs Encrypt certificates in Plesk Obsidian 18.0.22 and later without SSL It! If you have not installed SSL It! by yourself, Letâs Encrypt release 3.0.0 will automatically install it for you.
Note: The
showInterface
setting in thepanel.ini
file (mentioned above) stops working from this point on. Keeping it will not hinder your Plesk server in any way. However, we recommend that you remove theshowInterface = true
line frompanel.ini
to declutter the file content.Why do you make these changes to the Letâs Encrypt extension?
Less than 10% of all Plesk servers use Letâs Encrypt without SSL It! Plus, combining the SSL It! and Letâs Encrypt extensions offers more features than Letâs Encrypt alone.
Extension Catalog 1.15.0
14 December 2021
- Reduced feed size by excluding description markdown and changelog.
- The context promos window on the Mail tab now shows the correct number of offers for the Plesk Premium Email extension. (EXTCATALOG-581)
WordPress Toolkit 5.8.0
9 December 2021
- WordPress Toolkit now regularly scans plugins, themes, and WordPress versions for known vulnerabilities using information provided by Patchstack service. Sites with known vulnerabilities are marked in the site list. Detailed information about found vulnerabilities is displayed in a separate tab of the
Security
window for each site. - WordPress Toolkit now detects modified WordPress login URL automatically, eliminating the need to specify it manually.
- Blocklist feature now works with CLI operations.
- Updates are no longer checked for blocked plugins.
- Manually launched scan procedure now works much faster.
- Improved the cleanliness of Smart Updates: the procedure should not leave empty folders behind anymore.
- Improved the performance of installing and removing WordPress sites on servers with a lot of connected databases.
- Improved the performance of Action Log when working with very large log files.
- Smart Update results page opened via the link in the notification email now works properly. (EXTWPTOOLK-8488)
- Action log records with non-Latin characters are now properly displayed in all known cases. (EXTWPTOOLK-8427)
- Cloning now properly copies
index.php
to a domain with modified vhost template. (EXTWPTOOLK-8244) - Innocent valid domains on
Hotlink Protection Settings
window are no longer marked as non-valid when an adjacent non-valid domain is removed from the list. (EXTWPTOOLK-8210) - Password protection now works for directories with ampersand in their name. (EXTWPTOOLK-6496)
- Correct hint text is now shown for autoupdate settings on WordPress installation screen. (EXTWPTOOLK-8367)
- Description of
Turn off pingbacks
security measure was updated to appease the nitpickers from our security team. (EXTWPTOOLK-8249) - Description of
Block author scans
security measure was also updated to appease the nitpickers from our security team. (EXTWPTOOLK-8253) - Changelog links for plugins and themes were returned on the
Plugins
andThemes
global tabs andUpdates
screen. (EXTWPTOOLK-8339) - Remote sites connected via plugin can again be properly updated via WordPress Toolkit without unexpected consequences. (EXTWPTOOLK-8235)
- Database table prefix is no longer modified during Copy Data procedure if
Files Only
option was selected. (EXTWPTOOLK-8452) -
Database name
link no longer leads to a broken screen. (EXTWPTOOLK-8425) - Autoupdate tasks are now properly processed even if database limit on a subscription is reached. (EXTWPTOOLK-8505)
-
Log Rotation
button was removed from Action Log on Windows because turns out log rotation isnât actually available on Windows. (EXTWPTOOLK-8448)
Plesk Obsidian 18.0.40 Update 1
8 December 2021
Linux
- Certain actions in Plesk on Ubuntu run in an OpenVZ container (for example, migration, Plesk updates, backing up, and so on) no longer fail with the âboost::filesystem::copy_file: Function not implementedâ error. (PPPM-13321, PPPM-13323)
Third-Party Component Updates
-
Updated Roundcube to version 1.4.12 to fix the following security issues: CVE-2021-44025 and CVE-2021-44026.
We strongly recommend that you update Plesk.
SSH Terminal 1.2.2
1 December 2021
- If SSH root login is prohibited in the sshd config, you will now see a warning message when opening SSH Terminal. (PPP-54539)
SSL It! 1.9.8
29 November 2021
- Updated the process of renewing Letâs Encrypt certificates for Plesk and Mail server. Now SSL It! renews such certificates on its own.
- Now Plesk automatically removes information about OCSP stapling from the configuration file of the domain web server when unassigning a certificate from the domain.
- Plesk no longer replaces the value of the âKeep websites secured with free SSL/TLS certificatesâ service plan setting of the SSL It! extension with the value of a similar setting from the Letâs Encrypt extension. Previously it happened when updating SSL It! (EXTSSLIT-1741, EXTSSLIT-1788)
Plesk Migrator 2.21.3
29 November 2021
- Migrator no longer fails to copy the content and system files of domains that have mixed case names. (PMT-4963)
Monitoring 2.0.3
26 November 2021
- The status of domains added to Monitoring that have not yet been checked is now shown as âPendingâ instead of âSafe and soundâ. (EXTPLESK-3136)
- Line breaks are no longer inserted into one line text strings in the UI when the browser window is resized. (EXTPLESK-3188)
- Updated the text of the links in the notification shown when a user runs out of domains they can monitor for free to prevent possible confusion. (EXTPLESK-3189)
Sectigo SSL 1.3.9
25 November 2021
-
In Plesk for Linux, improved chances of successful issuance of SSL/TLS certificates for domains that have access restrictions or custom rewrite rules. To deliver this, the extension now uses the general location of HTTP tokens.
Note: If necessary, you can turn off this improvement by running the following command:
plesk ext sslit --common-challenge-dir -disable
. However, we recommend that you always keep the improvement on.
Plesk Obsidian 18.0.40
23 November 2021
-
Replaced Gzip with ZSTD as the default compression method for backup and restore operations in Plesk. On multi-CPU servers, depending on the type of data being backed up, this provides the following benefits:
- Reduces the backup size by up to 20%.
- Reduces the CPU load by up to 25%.
- Reduces the backup creation time by up to 2x (fast), and by up to 4x (fastest), based on the compression level.
The desired compression level can be set in âTools&Settingsâ > âBackup Managerâ > âSettingsâ. The âFastâ level is set by default.
-
Added the ability to disable automatic HTTP > HTTPS redirection for webmail. To enable it, add the following lines to the
panel.ini
file:[mail] webmail.forceHttp = true
On Plesk for Windows, to disable automatic HTTP > HTTPS webmail redirection for existing domains, run the
plesk repair web -webmail
command. -
Removed a number of Plesk extensions from the Plesk Installer due to low usage. These extensions are still available from the Extensions Catalog:
In addition, the Plesk Cgroups Manager extension was removed from the âRecommendedâ preset, and the Site Import extension was added to the âRecommendedâ preset.
-
Due to security improvements made by Google, if you are using Google Drive Backup Plesk extension to create backups on a shared drive belonging to a corporate account, you need to do the following to be able to make backups (users with personal drives are unaffected):
- Re-register the drive and explicitly set its type to âSharedâ.
- Make sure your administrator has marked the Plesk Backup Corporate application as trusted.
- Plesk Administrator should explicitly specify their country of residence in their profile.
- A number of buttons initiating the primary action on the page have been visually highlighted to make them more noticeable.
- When creating a subscription, physical hosting is now correctly configured if the subscriptionâs system userâs password includes one or more ampersand (â&â) characters. (EXTREST-118)
- Domain Preview now correctly accesses the website being previewed via IPv4, even if an IPv6 address is also configured for the domain. (PPPM-13075)
- For certain older Plesk extensions, clicking the name of a domain on the extensionâs page no longer results in the domain overview page opening with layout and domain name, but no content. (PPPM-13252)
- Running the
plesk repair mail
command for a domain in Plesk with âOutgoing messages from a subscription (per hour)â set to âUnlimitedâ no longer results in an error. (PPPM-13272) - Searching for a mailbox in Plesk when on the Home Page no longer results in the âAn invalid URL was requestedâ error. (PPPM-13273)
- Opening the Plesk Installer interface in a web browser no longer results in SSL certificate errors. (PPPM-13295)
- It is now possible to add and modify database users even if the subscriptionâs default MySQL server is not available. (PPPM-13265)
- Changing the IP address for a subscription now correctly updates the IP address of all domains owned by the subscription with the âForwardingâ hosting type. (PPPM-13256)
- Operations in File Manager no longer incorrectly affect previously viewed webspaces. (PPPM-13268)
- The controls in âDNS Settingsâ no longer sometimes disappear when logged in to Plesk as a customer. (PPPM-13292)
Linux
- Added the ability for Outgoing Mail Control to count the number of individual recipients (TO, CC, and BCC) instead of messages. This closes an abusable loophole which allows users to send bulk email by specifying a large number of recipients (the current Outgoing Mail Control logic counts each individual email as just one message sent, no matter how many recipients the email is sent to). To switch Outgoing Mail Control from counting messages to counting recipients (and vice versa), run the
plesk bin mailserver --set-outgoing-messages-count-recipients <true|false>
command (the change is server wide). (PPM-7181) - Specifying custom values for both the
proxy_read_timeout
nginx directive andmax_execution_time
PHP setting for the same domain results in themax_execution_time
value being substituted for theproxy_read_timeout
value (e.g., addingproxy_read_timeout 1800;
to âApache&Nginx Settingsâ > âAdditional Nginx directivesâ and settingmax_execution_time
to 90 in âPHP Settingsâ will result inproxy_read_timeout
being set to 90 in the nginx configuration file for the domain in question). (PPPM-12599) - On Ubuntu 18.04 and Ubuntu 20.04 servers, re-reading and repairing IP addresses in Plesk no longer results in unnecessary duplicate lines sometimes being added to the
/etc/netplan/10-plesk.yaml
file. (PPP-53340) - Users can now manage the PHP-FPM version for domains after an incomplete systemd upgrade on the server. (PPPM-13248)
- Trying to remove a database registered in Plesk but hosted on an external database server no longer results in an error if the database user name includes one or more underscore (â_â) characters. (PPPM-13239)
- Removed the ampersand (â&â) character from the list of characters that cannot be used in passwords in Plesk included with the error message shown when the provided password does not meet the password strength requirements. (PPPM-13229)
- Cached memory is no longer included in the memory usage calculation in âTools&Settingsâ > âServer Informationâ.(PPPM-13264)
- Added a human readable error message for cases when Task Manager fails to show the list of current tasks due to the number of simultaneously running tasks being very high. (PPPM-13123)
- Running the
plesk bin pleskbackup
command with the â-zâ or âno-gzipâ options now correctly results in the backup file not being compressed. (PPPM-13254) - Trying to create a backup of a subscription no longer results in an error if the subscriptionâs name includes both uppercase and lowercase letters. (PPP-54691)
- It is now possible to move domains to subscriptions that were created on Plesk versions 11 or earlier and then migrated to a Plesk Obsidian server. (PPPM-12916)
- Mail messages forwarded from a Plesk server, or from one mail account to another on the same Plesk server no longer includes an unnecessary duplicate âFrom:â header. (PPPM-13296)
- Trying to enable SSLv3 (which is outdated and insecure) on a Plesk server by running the
plesk bin server_pref -u -ssl-protocols 'SSLv3'
command now correctly fails with the âProtocol âSSLv3â is not supportedâ error. (PPPM-13242) - Plesk Installer no longer reports errors if the locale used in Plesk is not configured correctly in Linux. (PI-331)
- Restoring a backup in Plesk no longer results in a warning if the
nginxCacheBypassLocations
nginx directive is configured in thepanel.ini
file. (PPPM-13300) - Mailbox size limits specified in a hosting plan settings are now correctly propagated to mailboxes of all domains that belong to subscriptions based on that plan. The mailbox size is now corectly shown as âDefaultâ instead of âAnother sizeâ in Plesk, and is changed accordingly for all mailboxes if the size limit is changed in the hosting plan. (PPPM-13274)
- The size of files smaller than 4 KB is now shown correctly in File Manager. (PPPM-13303)
- The âUpload fileâ command is no longer shown in File Manager when browsing a read-only directory. (PPPM-13285)
- Copying a database or exporting a database dump no longer fails if the name of the database starts with the dash (â-â) character. (PPPM-13267)
Windows
- Added the option to automatically remove emails forwarded from a mailbox in Plesk. The feature is disabled by default. To enable it, go to âMailâ, click the desired mailbox, open the âForwardingâ tab and select the âDo not deliver copies of forwarded emails to the Plesk mailboxâ checkbox.
- When selecting or clearing the âShow system files and directoriesâ checkbox in File Manager options, it is no longer necessary to refresh the browser window for the changes to take effect. (PPPM-13255)
- Outgoing Mail Control now works correctly on Plesk Obsidian servers with MailEnable Enterprise edition installed. (PPPM-13269)
- Running the
plesk repair web
command now correctly resolves issues with corrupted SSL certificate files that could result in users being unable to create domains. (PPP-54689) - The âCAS trust levelâ setting value for newly created subscriptions in Plesk in now correctly inherited from the one set on the global level in the IIS Manager. (PPPM-13276)
- Trying to unpack a .zip file in File Manager no longer fails with the âUnable to unpack archiveâ error under specific circumstances. (PPPM-13309)
Third-Party Component Updates
- Updated sw-engine PHP to version 7.4.26.
Linux
- Updated Dovecot and Pigeonhole to versions 2.3.17 and 0.5.17, respectively.
Windows
- Updated ASP.NET Core 5.0 to version 5.0.11.
- Updated ASP.NET Core 3.1 to version 3.1.20.
- ASP.NET Core 2.1 is no longer shipped with Plesk.
- Updated MariaDB 10.5 to version 10.5.13.
- Updated MariaDB 10.3 to version 10.3.32.
- The âWebDAV Publishingâ IIS role service is no longer added during Plesk installation.
- Updated Horde PHP to version 7.4.
Google Workspace 1.1.0
22 November 2021
- Changed the extension name from G Suite to Google Workspace according to the rebranding.
- Changed the product list. It now contains the following: Google Workspace Business Starter, Google Workspace Business Standard, and Google Workspace Plus.
- The extension now supports the Pay-As-You-Grow licensing model. For example, users can now choose the desired number of seats by themselves.
- Internal improvements.
Extension Catalog 1.14.3
22 November 2021
- Improved how the Extension Catalog shows the country of tax residence to private customers with VAT.
PHP Updates
19 November 2021
- Updated PHP 7.3 to version 7.3.33.
- Updated PHP 7.4 to version 7.4.26.
- Updated PHP 8.0 to version 8.0.13.
Linux
- Updated Imagick to version 3.6.0 for PHP 7.3, 7.4, and 8.0.
Plesk Obsidian 18.0.39 Update 2
18 November 2021
Linux
- Plesk Update Manager no longer fails with the ââNoneTypeâ object has no attribute ârun_sackââ error. We have spotted this issue in Plesk Obsidian 18.0.39 Update 1 on CentOS 8.5, AlmaLinux OS 8.5, RHEL 8.5, CloudLinux OS 8.5. (PPPM-13304)
Git 1.3.5
17 November 2021
- The extension now correctly shows directories in the âChange branch and pathâ menu. (EXTGIT-104)
Let's Encrypt 2.13.8
16 November 2021
- When it takes more than two minutes to issue an SSL/TLS certificate, the extension no longer fails with the âJWS has an invalid anti-replay nonceâ error. (EXTLETSENC-1084)
- The extension no longer supports the
cli.ini
legacy configuration file. To manage the extension settings, use thepanel.ini
file instead.
Node.js 2.0.3
15 November 2021
Linux
- The extension now automatically installs the Current version of Node.js and keeps it up to date.
Monitoring 2.0.2
12 November 2021
- Internal improvements.
- The
plesk ext monitoring --thresholds --set-from-json
command no longer overrides all the threshold values but only those that have been set. (EXTPLESK-3171)
PHP Updates
11 November 2021
Linux
- Updated ionCube Loader to version 10.4.5 for PHP 5.6 in Plesk on CentOS 7.
-
Fixed a security vulnerability in PHP versions 5.6, 7.0, 7.1, 7.2.
We strongly recommend that you update Plesk.
Note: The fix is for PHP in Plesk on the supported operating systems only.
DigitalOcean DNS 1.3.2
8 November 2021
- The extension icon is now consistent with all other Plesk icons. (EXTPLESK-2472)
Docker 1.4.9
3 November 2021
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk versions 17.0.17-18.0.21 and labeled it version 1.4.9. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.22 and later.
Sectigo SSL 1.3.7
1 November 2021
- The extension now validates wildcard certificates via email and not via file upload because of Sectigo policy changes.
Ruby 1.3.13
1 November 2021
- The extension no longer fails to promote Ruby into userâs environment on CloudLinux with enabled
fs.protected_symlinks_create
. (EXTRUBY-96)
Addendio - WordPress Plugins and Themes 1.3.2
1 November 2021
- The extension is now deprecated. It was a legacy one and caused numerous JavaScript errors. The extension will be disabled on all Plesk installations and removed from the Extension Catalog. Instead of the extension, use WordPress Toolkit, which is installed in Plesk by default.
Let's Encrypt 2.13.7
29 October 2021
- The extension now reissues a certificate that secures Plesk if the Plesk hostname was changed.
- During the installation or update of the Letâs Encrypt extension, it no longer tries to reissue a certificate that secures Plesk if this certificate was issued to a domain. (EXTLETSENC-1077)
SSL It! 1.9.7
28 October 2021
-
In Plesk for Linux, it is now possible to disable HTTPS access to webmail subdomains by adding the following lines to the
panel.ini
file:[mail] webmail.forceHttp = true
To have these webmail changes take effect, reconfigure all the existing domains by running the
plesk repair web -domains-only
command.
Monitoring 2.0.0
19 October 2021
-
Added integration with 360 Monitoring, a new tool present in the Plesk 360 cloud service.
360 Monitoring brings a couple of useful features, for example, monitoring of website availability, various notification channels, and more.
To try 360 Monitoring, connect your Plesk server to Plesk 360 and then activate 360 Monitoring. The extension wizard will guide you through these steps.
You can turn on and off the 360 Monitoring integration as many times as you need.
Note: 360 Monitoring works in Plesk Obsidian 18.0.36 and later.
Gave 360 Monitoring a try and it is not your current choice? Switch back to the old Monitoring you got used to over the last releases. We now call it the âBuilt-in Monitoringâ mode.
WordPress Toolkit 5.7.4
19 October 2021
- Updated translations.
- Plesk correctly redirects users to WordPress Toolkit after they install WordPress via APS for some weird reason. (EXTWPTOOLK-8263)
Microsoft Azure DNS 1.1.1
19 October 2021
- The main page of the extension now opens again. (EXTPLESK-3137)
Plesk Obsidian 18.0.39 Update 1
15 October 2021
-
It is now possible to hide the âWhat username and password to use?â link on the Plesk page or change the URL the link leads to.
To hide or change the link, add the lines of the following pattern to the
panel.ini
file:[login] howToLoginArticle = '' ; Hides the link. howToLoginArticle = 'https://example.com' ; Changes the default URL of the link to example.com.
Site Import 1.5.4
15 October 2021
- The extension installation no longer breaks Plesk Onyx 17.0 and 17.5. We have spotted this bug in Site Import version 1.5.3. (PMT-4984)
Monitoring 1.4.5
15 October 2021
- Internal improvements for the upcoming major release 2.0.0.
- Detected hardware changes no longer restore all the disabled thresholds to defaults. (EXTPLESK-2423)
Git 1.3.4
15 October 2021
- The extension now correctly adds a remote repository via SSH in Plesk Obsidian 18.0.39 and later. (EXTGIT-184)
WordPress Toolkit 5.7.3
14 October 2021
- Forced automatic updates are now properly working even if one of plugins or themes on a site cannot be updated by WordPress Toolkit for some reason. (EXTWPTOOLK-8301)
SSL It! 1.9.5
14 October 2021
- The extension now correctly processes orders paid via PayPal. (EXTSSLIT-1771)
Plesk Obsidian 18.0.39
13 October 2021
-
Improved the process of adding a domain by introducing a new screen that shows the following options:
- Create a blank site.
- Create a WordPress site.
- Upload content using File Manager after websiteâs creation.
- Connect a Git repository.
- Import website from another hosting.
The new screen is disabled by default. To enable it, add the following lines to the
panel.ini
file:[domainManagement] applicationWizard.enabled = true
We would love to hear your feedback about this improvement. Please send us your feedback to feedback@plesk.com.
- Livened up the âAdd Domainâ sidebar by adding images to it.
-
The Plesk administrator, customers, and resellers now have a more concise interface delivered by the right sidebar collapsed by default on the following screens:
- (Power User view) Websites & Domains
- (Service Provider view) Domains > domain
- (Service Provider view) Subscriptions > subscription
-
Plesk users can now configure the automatic deletion of files in the Recycle Bin by date and/or by time. By default, the automatic deletion is enabled.
The Plesk administrator can manage this feature and change its default settings by using the following
panel.ini
options:[fileManager] ; Shows and hides the automatic deletion feature in the interface. The default value is `true`. trash.rotation.enabled ; The file size limit in megabytes. When the limit is exceeded, Plesk will skip the Recycle Bin and automatically delete new files. The default value is 5 GB. trash.rotation.bySize.limit ; The number of days the Recycle Bin stores files. Plesk automatically deletes files older than the specified number. The default value is `30`. trash.rotation.byDate.limit
- The Plesk login and default pages now contain the link to the âHow to log in to Plesk?â KB article.
- Plesk on Cloud now automatically updates its public IP address if it was changed after the server reboot. This improvement works for Plesk on Alibaba Cloud, Amazon EC2, Amazon Lightsail, DigitalOcean, Google Cloud, and Microsoft Azure.
- Improved the loading speed of the âDatabasesâ, âDNS Settingsâ, âSubscriptionâ, and âDomainâ overview pages.
- Enhanced the Help menu for Plesk administrators by including links to KB articles, release notes, Plesk Facebook community, and so on.
- The Google Drive Backup extension now has different modes for configuring personal and shared drives. We made this improvement to comply with the updated Google policy of external applications that access Google usersâ data.
- Renamed the Advanced Monitoring extension and its notifications âMonitoringâ.
- The
plesk repair db
command can no longer suggest deleting resolvable domains by mistake. (PPPM-12162) - Sped up the website, subscription, and customer creation processes. (PPP-54306)
- Improved an error message shown when scheduled backups fail because a Plesk license has expired. (PPPM-11774)
- Sped up retrieving mailbox usage statistics via API RPC. (PPP-53647)
- A pop-up message that appears when a password of a password-protected directory user is too short no longer misses password length variables. (PPPM-12740)
- The main Plesk search field can now again handle search words with whitespace characters from one or both sides. (PPPM-13195)
- The Plesk administrator and resellers can now again customize the logo. (PPPM-13202)
- Plesk now completely cleans up leftover files after deleting a customer, reseller, or subscription that was backed up to remote storage. (PPPM-13173)
- If a customer linked a Plesk mailbox to their Plesk account and then changed the account password, Plesk now shows a message that this will change the password to the linked mailbox as well. (PPPM-13088)
- It is now possible to get information about an SSL/TLS certificate that secures mail via the CLI or REST API. (PPPM-13236)
- File Manager in Power User view now displays the content of the selected domain instead of the last created one. (PPPM-13194)
- It is no longer possible to save time for a scheduled task in an incorrect format, which broke the Scheduled Tasks page causing an HTTP error 500. (PPPM-13215)
- Plesk now stops sending automatic replies late in the evening the day before the end date. (PPPM-8995)
Linux
- Webmail clients now use PHP 7.4 shipped with Plesk by default.
- Improved stability and isolation of websites that use PHP-FPM handlers. It is now possible to choose the dedicated PHP-FPM handler for each website.
- Plesk now signs outgoing emails sent via WordPress with DKIM even WordPress uses an unauthenticated SMTP server.
- Plesk now performs a deferred Apache restart using the systemd timers.
- The
plesk-modsecurity
jail in Fail2Ban now works if a domain uses nginx-only hosting. - As a part of the GDPR compliance changes, made the statistics Webalizer and AWstats collect more accurate. (PPPM-10655)
- For security reasons, the default Roundcube spell checker is now disabled in Plesk by default. (PPPM-13183)
- The
plesk repair db
utility now deletes orphaned DNS records from DNS zones. This prevents occasional BIND crashes after the DNS records were synchronized with the server-wide DNS template. (PPM-2347) - It is now again possible to change the mailbox quota via API RPC. (PPPM-13197)
- The Users > Create User Account form no longer shows domains with turned off mail services in the
@
drop-down list next to the âEmail addressâ field. (PPPM-13205) - Uninstalling a webmail client no longer breaks Apache configuration files. (PPPM-12924)
- Plesk no longer duplicates forwarded emails if their initial emails failed to be delivered. (PPPM-12341)
- In Plesk on Ubuntu 20, File Manager no longer fails to open JSON files showing the âUnable to display the file
: Unsupported file format" error. (PPPM-13206) - Users can now open the
wp-config.php
file and other WordPress subscription files in Code Editor. Previously it was occasionally impossible under certain circumstances. (PPPM-12921) - An event handler triggered by the âMail account updatedâ event now executes the assigned script only once. (PPPM-13218)
- MySQL dump importing no longer fails with the âERROR 1227 (42000) at line
: Access denied" error. (PPPM-13086) - An extension that uses the guzzlehttp/promises 1.4.1 package no longer causes the âClass âGuzzleHttp\Promise<ClassName>â not foundâ error when users try configuring the following remote storage points: Google Drive, Amazon S3, DigitalOcean Spaces, or Microsoft OneDrive. (PAUX-3748)
- Plesk now automatically deletes pre-upgrade MySQL dumps older than one year. (PPPM-10488)
- It is now possible to install Plesk on a server running on CentOS 7 x64 with preinstalled MySQL. (PPP-47540)
- Plesk now updates PHP settings of a subscriptionâs main domain faster. (PPPM-12136)
- Changing an IP address of a subscription with multiple domains (30 or more) no longer breaks the Postfix service. (PPPM-9733)
- It is now possible to change a subscription password via REST API by sending a request without
hosting_type
. (EXTREST-136) - Custom buttons with enabled âOpen URL in Pleskâ now work in Power User view. (PPPM-13213)
- Plesk now correctly counts the number of a resellerâs subscriptions. (PPPM-13227)
- Plesk now correctly removes websitesâ historical data after their TTL period has expired. (PPPM-10655)
- Removing all custom service plan items via the CLI no longer causes the
Use of undefined constant nul - assumed 'nul'
PHP warning. (PPPM-13222) - The
plesk repair mail <domain|mail-address>
command now repairs the Outgoing Mail Control subsystem more reliably. (PPP-52477) - It is now possible to open websites and webmail in Safari when HTTP/2 is enabled in both nginx and Apache. (PPPM-12381)
- Improved logging to
/var/log/maillog
to make it easier to detect issues (if any) with outgoing mail headers. (PPP-54314) - Updated regular expressions used by Fail2ban to prevent it from occasionally blocking secure domains. (PPPM-12058)
- Disabling and then enabling a domainâs mail service no longer breaks mailboxes with the reserved mail names:
postfix
,anonymous
,drweb
,root
, and so on. (PPPM-7702)
Windows
- Plesk now supports Windows Server 2022.
- Dropped the possibility of downloading database backup files.
- Plesk reinstallation no longer breaks Task Manager. (PPPM-13208)
- It is now possible to rename a domain that uses a custom webmail client. (PPPM-13204)
- Plesk Installer no longer incorrectly detects MySQL Connector/ODBC 5.1 as installed instead of the actually installed MySQL Connector/ODBC 5.3. (PPPM-13237)
- It is now again possible to configure advanced permissions of files using File Manager. (PPPM-13228)
- It is now possible to install the âPlesk One Edition for Chinaâ license key on a clean Plesk server. (PPPM-13241)
Third-Party Component Updates
- Updated PHP used by Plesk to version 7.4.24.
Linux
- Updated ProFTPD to version 1.3.7c.
- Updated OpenSSL used by nginx to version 1.1.1l.
Windows
- Updated Node.js 12 to version 12.22.6.
- Updated Node.js 10 to version 10.24.1.
- Updated Git to version 2.33.0.2.
- Updated OpenSSL to version 1.1.1l.
WordPress Toolkit 5.7.2
12 October 2021
- Optimized log rotation configuration
- Cloning and Copy Data now should correctly process certain links generated by Elementor plugin. (EXTWPTOOLK-5896)
- Cloning now should properly process links generated by WPML plugin. (EXTWPTOOLK-2413)
- Screenshots of the clone used by Smart Updates are now properly removed if Smart Update check fails. (EXTWPTOOLK-8214)
- Log rotation now properly works if a server uses SELinux. (EXTWPTOOLK-8247)
- WooCommerce plugin can now be properly installed on Windows servers. (EXTWPTOOLK-8023)
SEO Toolkit 1.1.14
12 October 2021
- Fixed several performance issues.
- Fixed â500 TypeErrorâ on the start page.
Google Drive Backup 1.3.1
12 October 2021
- The extension now has no access to user data when a personal drive (My Drive) is used. Backup Manager can use only files and folders it has created.
- Fixed the âClass âGuzzleHttp\Promise' not foundâ error, which made it impossible to configure remote storage. (EXTPLESK-3068)
Domain Connect 1.4.2
8 October 2021
- Users can now automatically configure DNS records for domains without hosting. (EXTPLESK-2993)
- Updated supported DNS templates.
- The extension can now determine without authentication if it supports a particular DNS template.
- The extension can no longer crash while configuring DNS records. (EXTPLESK-2602)
WordPress Toolkit 5.7.1
6 October 2021
- WordPress Toolkit no longer spams confusing errors in the product log when removing WordPress sites. (EXTWPTOOLK)
- Sites using wildcard domains are no longer considered broken. (EXTWPTOOLK-8251)
- WordPress sites containing invalid characters in the installation data can no longer break WordPress Toolkit UI. (EXTWPTOOLK-8225)
Plesk Email Security 1.2.1
6 October 2021
Linux
- Added support for CloudLinux OS.
-
Updated virus signatures to better detect viruses.
Note: The virus signature update can take several minutes. Please wait until it is finished and do not interrupt the update.
Plesk Obsidian 18.0.38 Update 3
5 October 2021
Linux
- Updating Apache to the latest version in Plesk on Ubuntu that uses PHP-FPM served by Apache no longer breaks websites causing an HTTP error 500. (PPPM-13232)
- Plesk updates on Ubuntu and Debian no longer fail if system packages are marked as âholdâ in
apt
. (PI-726)
PHP Updates
5 October 2021
- Updated PHP 8.0 to version 8.0.11.
- Updated PHP 7.4 to version 7.4.24.
- Updated PHP 7.3 to version 7.3.31.
Monitoring 1.4.4
5 October 2021
- Renamed the extension âMonitoringâ. We have shortened the name but kept all the existing features of the extension and made internal improvements for the upcoming major release 2.0.0.
SSH Terminal 1.2.1
1 October 2021
- The extensionâs removal no longer fails if the systemd service drop-in directory is missing. (PPP-54437)
WordPress Toolkit 5.7.0
30 September 2021
-
WordPress Toolkit now supports configuring automatic updates for individual plugins and themes. This covers the following changes:
- Site-wide autoupdate policy now lets to choose between forcing all plugin or theme autoupdates (like before), or allowing every plugin and theme to use their own autoupdate settings.
- When
Defined individually
update policy is selected, site admins can also choose to enable autoupdates by default for all new plugins or themes installed via WordPress Tookit. - Autoupdates for individual plugins and themes can be toggled on the respective
Plugins
andThemes
tabs of the site card. - New
Autoupdate all plugins / themes
switch added to thePlugins
andThemes
tabs of the site card allows toggling autoupdates for all plugins or themes on a site at once.
- It is now possible to log in to WordPress when the site is in maintenance mode. This behavior can be turned off via
Restrict access to WordPress admin dashboard
option in Maintenance Mode settings. - Hotlink protection feature now allows site admins to configure which file extensions should be protected and which domains can be trusted.
-
Sets
and globalPlugins
tabs now fully support the plugin blocklist feature. - A new email notification about blocklisted plugins disabled by WordPress Toolkit is now available.
- Server admins can use the CLI command
--update-login-url-suffix
to change login URL suffix. - WordPress Toolkit now shows
Install WordPress
link on Websites & Domains site card if thereâs no WordPress detected. Once a WordPress site is present, the link is changed to WordPress Toolkit. - Updated lookânâfeel of several UI components.
- WordPress Toolkit log entries created after updating WordPress Toolkit to v5.7 are accessible only via the
Logs
screen for now. Old log entries created before the update are still accessible in their old place via File Manager. The ability to download logs and access them via File Manager will be re-added in the next WordPress Toolkit update. Sorry for the inconvenience! - Security improvements.
- Performance improvements (including faster site scanning process).
- Itâs no longer possible to trick WordPress Toolkit into cloning the site into itself under certain rare circumstances. (EXTWPTOOLK-4357)
- Cloning should no longer affect the clone source if it has
if
clauses in thewp-config.php
file. (EXTWPTOOLK-4213) - Cloning now works properly if clone target has common docroot with clone source. (EXTWPTOOLK-4673)
- Autoupdate tasks no longer fail when running on IDN domains. (EXTWPTOOLK-8092)
- WordPress sites no longer get stuck in permanent maintenance mode after site admin restores the default maintenance mode template soon after enabling maintenance mode. (EXTWPTOOLK-8047)
- Cloning and data copy procedures now update all URLs and permalinks even if thereâs more than a thousand of them. (EXTWPTOOLK-8117)
- You can delete WordPress sites that share database with other WordPress sites via the kebab menu. (EXTWPTOOLK-3067)
-
Customize
button on the maintenance mode settings screen now properly directs users to File Manager. (EXTWPTOOLK-7722)
Site Import 1.5.3
28 September 2021
- Removed the âImport websiteâ section shown by mistake at the bottom of domainsâ pages (for example, âPHP Settingsâ or âWeb Hosting Accessâ) after the extension update version 1.5.2. (PMT-4981)
Site Import 1.5.2
23 September 2021
- It is now possible to create a website by importing one from another hosting server.
DigiCert SSL 1.11.0
22 September 2021
- The productsâ names now align with the DigiCert certificatesâ names.
- The extension now provides more detailed information about the process of issuing certificates.
Plesk DNSSEC 1.2.4
21 September 2021
- Removed the banner with a format error the extension showed on the âWebsites & Domainsâ > domain > DNSSEC page. (EXTDNSSEC-73)
Google Drive Backup 1.3.0
17 September 2021
- Users now choose a drive type when configuring storage. From October 12, 2021, backing up to Google shared drives becomes unavailable because Google restricts access to user data. To keep your data backed up to shared drives after October 12, log out on the storage settings page, log in again, and then select âShared driveâ. Also, make sure your administrator has marked the Plesk Backup Corporate application as trusted.
Plesk Obsidian 18.0.38 Update 2
14 September 2021
Linux
- Apache restart works again if the restart interval is set. (PPPM-13186)
- Specifying custom
proxy_buffering
values in the nginx configuration file no longer breaks websites. (PPPM-13200)
WordPress Toolkit 5.6.2
14 September 2021
- Manual updates to minor WordPress versions are now installed properly regardless of WordPress core autoupdate settings. (EXTWPTOOLK-8168)
Plesk Email Security 1.2.0
13 September 2021
Linux
- Added support for AlmaLinux OS.
- Fixed mailbox location detection for the move action. (EXTCERT-3467)
Node.js 2.0.1
9 September 2021
- The extension can now automatically update Node.js handlers even if files of previously installed Node.js handlers are locked. (EXTNODEJS-166)
Dropbox Backup 4.2.0
9 September 2021
-
The extension now uses short-lived access tokens for authorization.
From September 30, 2021, backing up to Dropbox becomes unavailable because Dropbox changes its authorization method. To keep your data backed up to Dropbox after September, click âLog outâ and then configure the Dropbox storage again. We recommend that you do that before the end of September.
Plesk Obsidian 18.0.38 Update 1
8 September 2021
- Running
plesk repair db
no longer removes all aliases of a domain. (PPPM-13188)
Extension Catalog 1.14.0
6 September 2021
- The Extension Catalog is adapted for PAYG licensing model. After purchasing an extension with PAYG licensing, the Plesk administrator can adjust the limits with the âAdjustâ button.
- The most popular category no longer includes the installed extensions.
- Minor internal improvements.
- The Extension Catalog no longer shows the wrong price for the eCommerce Toolkit extension. (EXTCATALOG-525)
- HTTP error no longer occurs if an admin email is empty. (EXTCATALOG-541)
PHP Updates
31 August 2021
Linux
- In Plesk on CloudLinux with enabled CageFS and the latest PHP updates installed, PHP 7.4. and 8.0 no longer consume all the CPU. (PPPM-13184)
Plesk Obsidian 18.0.38
30 August 2021
- Improved the Plesk Dynamic List view to make it easier to navigate to and focus on individual domains.
- The WordPress tab in Dynamic List view offers shortcuts to the most useful/popular features for WordPress sites.
- When opening a domain in Service Provider view, Dynamic List view is now used instead of Active List view.
- When selecting a domain in search results in Power User view, the page automatically focuses on the required domain and the domain card is expanded.
- Plesk now redirects the customer to the created domainâs card after website creation.
- The Recycle Bin functionality in the File Manager is turned on by default for all Plesk installations.
- Updated the instructions in the DNS Helper with information about glue recordsâ configuration.
- Added the instructions for a number of popular registrars (CloudFlare, Freenom, Papaki, ps.kz, Exabytes, registro.br, and Porkbun) to the DNS Helper.
- After creating or uploading a WordPress website during onboarding, users can now click the âLog in to WordPressâ button for easy access to the WordPress admin panel.
- Improved the loading speed of File Manager.
- Transitions between pages when navigating the Plesk interface are now more fluid.
- When creating a domain in Plesk, the progress bar is now shown in the same drawer.
- Increased the transfer speed for the SFTP Backup extension.
- Improved the behavior of the top right toaster in Plesk to prevent notifications from overlapping.
- Updated the look and feel of drawers and dialogs in Plesk.
- Plesk on cloud (AWS, Google Cloud, Azure, Alibaba, Lightsail, and Digital Ocean) now automatically re-maps private IP addresses if they change after server restart.
- Domains can now be sorted by Traffic usage in Service Provider view.
- Changing a domainâs document root to an invalid path no longer results in the invalid path being written to the Plesk database. (PPPM-12648)
- Synchronizing a subscription with its service plan no longer fails if the planâs mailbox size value has been changed. (PPPM-12862)
- When Plesk fails to make a backup to an FTP storage, the correct error is now reported instead of âError: Unable to export backup: Transport error: Unable to create the directoryâ. (PPPM-12798)
- Plesk no longer shows the âDomain is not resolvableâ notification for domains with no hosting, domain aliases without web service, and domain aliases pointing to a domain with no hosting. (PPPM-12928)
- Restoring a subscription from backup no longer results in PHP handlers for all domains belonging to the subscription being set to âFPM application served by nginxâ. (PPPM-12496)
- When typing in the database userâs password when logging in to phpMyAdmin, the password is now correctly masked by the asterisk â*â characters instead of being shown in plaintext. (PPPM-12414)
- When searching for content in File Manager and finding multiple files, it is now possible to open each individual file without restarting the search. (PPPM-12389)
- Searching for domains when using the Classic list in Power User view via global search now opens the card for the correct domain. (PPPM-12948)
- Creating a backup to AWS S3 via the CLI no longer results in a misleading âUnable to save statistics. Error: DB query failedâ error. (PPPM-12703)
- Upgrading to the latest Plesk Obsidian version no longer sometimes fails with the âPHP Fatal error: Uncaught JMS\Serializer\Exception\RuntimeException: Could not decode JSON, syntax error - malformed JSON.â error. (PPPM-13114)
- Clicking âsee detailsâ for a failed scheduled task now correctly shows the error details. (PPPM-13073)
- Password reset email is now correctly sent when resetting the password for a user using the username. (PPPM-13047)
- Information necessary for troubleshooting issues with backups is now being written to the backup logs. (PPPM-13021)
- Clicking the âCheck for updatesâ link no longer results in a blank page. (PPPM-13044)
- Failed login attempts via REST API are now logged in the
panel.log
file. (PPPM-13144) - When migrating, warnings about non-secure FTP are no longer shown when both the source and the target servers are configured to use secure FTPS connections only. (PPP-51587)
- It is now possible to enable mail forwarding when logged in to Plesk under a mail user account. (PPPM-13166)
- Pasting a domain name in the global search bar now immediately produces results with no need for additional button presses. (PPPM-13157)
- Removing an IP address not used for hosting no longer fails with the âThe IP address is already used for hostingâ error. (PPPM-13160)
- The âSSL redirectâ checkbox is now cleared automatically if the âSSL supportâ checkbox is cleared. (PPPM-13169)
- The terminology for subscriptionsâ expiration/renewal dates has been cleaned up. Now, âExpiration dateâ is used wherever appropriate. (PPPM-13121)
- The Plesk database now stores the mailbox quota value correctly, which fixes multiple issues (for example, occasional failures to reduce the mailbox quota). (PPP-53672)
Linux
- The latest Node.js LTS versions installation and update are now available through the renewed Node.js extension. Versions 10, 12 and 14 are supported at the moment. To enable Node.JS application hosting, install the Node.JS extension.
- Mail sent via the
mail
command is now signed with DKIM/Domainkeys if the senderâs domain name is the same as the serverâs hostname and DKIM/Domainkeys are enabled for it. (PPPM-6690) - Improved mail logging to make troubleshooting mail-related issues easier.
- Starting from September 15th, 2021, the SSH Terminal will be enabled by default. With this feature, all admins gain root access to the server. Learn how to disable root access.
- Starting from September 15th, 2021, the Mail Log Browser will be enabled by default.
- Unchecking the âPHP Supportâ checkbox in a domainâs settings now correctly disables PHP for that domain instead of switching the PHP handler to the system PHP-FPM. (PPPM-12894)
- Plesk no longer tries to deliver mail sent to an alias of a mailbox if the mail service for the domain the mailbox belongs to is disabled. (PPPM-8110)
- Restoring a pre-upgrade database dump no longer fails with the âDuplicate entry for key âPrimaryââ error. (PPPM-12003)
- Browsing a domain without hosting or the Plesk serverâs hostname via HTTPS now correctly shows the default page instead of the Plesk login page. (PPPM-12289)
- Fail2Ban no longer writes a lot of irrelevant warnings to
fail2ban.log
.(PPPM-12887) - The issue with AWStats calculating HTTP 206 response traffic twice for files with the âdownloadâ MIME type was found to be a bug in AWStats, and will have to be fixed on the ASWtats side. (PPPM-12830)
- Scheduled tasks of the âFetch a URLâ type now have the âPlesk (fetch_url utility)â User-Agent HTTP request header. (PPPM-12363)
- Websites running on nginx + Apache can now work correctly over TLS 1.3. (PPPM-13038)
- The SSH Terminal extension now works correctly if a custom SSH port is used on the server. (PPP-53727)
- Plesk installation no longer fails with the âUnicodeEncodeError: âasciiâ codec canât encode character uâ\xdcâ in position 0: ordinal not in range(128)â on servers with âde_DE.UTF-8â set as the serverâs locale. (PPPM-10782)
- Upgrading from Plesk Onyx to Plesk Obsidian no longer results in misleading messages being written to the upgrade log. (PI-599)
- Fail2Ban is now started automatically after Plesk initialization. (PPPM-13151)
- Restoring a subscription with one or more wildcard subdomains no longer results in the âWrong syntax for commandâs ââdel-allâ parameterâ warning. (PPP-54025)
- On AlmaLinux 8 servers, using the Plesk firewall utility
/usr/local/psa/bin/modules/firewall/settings
no longer results in the âsafeact: /usr/local/psa/var/modules/firewall/safeact.confirm: Address already in useâ error. (PPPM-13120) - âsystemctl statusâ now correctly reports the actual status of Plesk firewall. (PPPM-13053)
- Plesk firewall no longer blocks IPv6 neighbor discovery without multicast listener query in some environments. (PPPM-13145)
- It is now possible to get an IPv6 address via DHCP on Plesk servers with Plesk Firewall enabled. (PPPM-13164)
- Web statistics for websites using nginx as proxy are now calculated correctly on Plesk servers with Apache piped logs enabled. (PPPM-8252)
- Opening the âSettingsâ tab of a domainâs DNS page no longer results in the âERROR: Error: Call to undefined method DomainAliasâ error if changes were made to the server-wide DNS template, but not applied to the domain in question. (PPPM-13176)
- Plesk servers deployed on AWS no longer lose IPv6 connectivity once Plesk Firewall if enabled. (PPPM-13164)
- Fail2Ban now works correctly after reloading. (PPPM-13096)
- Scheduled tasks with notify set to âErrors onlyâ now correctly stream stdout when running. (PPPM-13034)
Windows
- Running the
plesk repair web
command for a single domain no longer results in all domains with hosting being repaired. (PPP-53690)
Third-Party Component Updates
Linux
- Updated ModSecurity to version 3.0.5.
- Updated OWASP ModSecurity CRS to version 3.2.0.
- Updated sw-engine PHP to version 7.4.22.
Windows
- Updated MariaDB to version 10.3.31.
- Updated ASP.NET Core 5.0 to version 5.0.9.
- Updated ASP.NET Core 3.1 to version 3.1.18.
- Updated ASP.NET Core 2.1 to version 2.1.30.
PHP Updates
30 August 2021
- Updated PHP 8.0 to version 8.0.10.
- Updated PHP 7.4 to version 7.4.23.
- Updated PHP 7.3 to version 7.3.30.
Linux
-
Updated the following PHP components shipped with Plesk:
- PEAR to version 1.10.13.
- Imagick to version 3.5.1 for PHP 7.3.
-
Improved security of the systemd unit for PHP 7.4, 8.0.
Action Log 1.2.0
27 August 2021
- It has become easier to find an item in the log list. Now users can do the following:
- Use the search.
- Filter items by a range of IP addresses, by actions, and by changed fields.
- When a user enters an incorrect IP address, the error message now appears at the top of the page.
- Some UI elements could be missing if a user applied filters, and then went to the âSettingsâ tab and back. Fixed. (EXTPLESK-2825)
- The âPeriodâ filter now has the correct from date and to date prompts. (EXTPLESK-2692)
Node.js 2.0.0
23 August 2021
Linux
- The extension now automatically installs and updates supported LTS versions of Node.js. Versions 10, 12 and 14 are supported at the moment.
-
You can disable automatic version updates by adding the following lines to the
panel.ini
file:[ext-nodejs] updateVersionsAutomatically = false
Windows
- IIS rewrite rules for Node.js now have unique names and can no longer break a website causing an HTTP error 500. (EXTNODEJS-127)
WordPress Toolkit 5.6.0
18 August 2021
- Server admin now has access to server-wide plugin blocklist on the global Settings screen. Adding plugin slugs to this blocklist will prevent site admins from installing or activating these plugins via WordPress Toolkit. If these plugins are installed through other means, they will be found and deactivated by WordPress Toolkit with extreme prejudice.
- Site admins can verify checksums of WordPress core files if they suspect their site is infected by malware. They can also reinstall WordPress core without affecting site content.
- The
wp-cli
utility was updated to version 2.5. All WordPress Toolkit features, including cloning, should now work properly on PHP 8. Due to this change, the minimum PHP version supported by WordPress Toolkit is now PHP 5.6, so websites working on PHP 5.4 and PHP 5.5 cannot be managed by WordPress Toolkit anymore. -
wp-cli-bundle
is now shipped together withwp-cli
utility, providing access to many useful commands previously embedded inwp-cli
itself. - Cloning and Smart Updates now properly handle popular caching plugins.
- Users can see WordPress Toolkit log entries that happened before and after a filtered log entry by clicking the Show in context icon located to the right of the filtered entry.
- You can now delete WordPress sites through CLI using the
--remove
command. - WordPress-based sites in Dynamic List now have a WordPress tab with shortcuts to key WordPress Toolkit features.
- WordPress Toolkit now assigns the corresponding database to a site after installation or cloning.
- Update process for multiple items now works significantly faster due to skipping many unnecessary operations, most of which are too embarrassing to mention here.
- Smart Update procedure itself also works a bit faster in a number of cases.
- Smart Update procedure now provides detailed information about which
.htaccess
customizations prevent it from working properly. - Detection of PHP versions was improved for WordPress installations accessible via several different domains.
- The âHotlink protectionâ security measure wasnât really a security measure, so it was moved to a separate switch outside of the Check security window.
- Error handling and reporting related to PHP 8 was improved.
- Email notifications sent by WordPress Toolkit now include server hostname in message subject for easier identification.
- Domain management link is now named âManage domainâ to be less confusing.
- The âRefreshâ button in the âLogsâ window now properly works in all known cases (and probably in some unknown ones too). (EXTWPTOOLK-7996)
- WordPress Toolkit no longer insidiously puts sites in endless maintenance mode under certain harmless circumstances. (EXTWPTOOLK-7957)
- Smart Update procedure no longer fails with error if it isnât possible to check one of the site pages due to HTTP status code 500 error. (EXTWPTOOLK-7979)
- WordPress Toolkit no longer tries to update WordPress core if autoupdate is set to minor and thereâs no actual update available. (EXTWPTOOLK-7863)
- A long time ago, in a galaxy far, far away, WordPress Toolkit was showing installation IDs instead of installation names in error messages snown when a plugin couldnât be deleted. This no longer happens and weâre not sure if it was a conscious stealth fix, or this bug simply died of old age. (EXTWPTOOLK-3573)
Google Authenticator 1.5.0
18 August 2021
-
It is now possible to adjust the limit of attempts to provide code within the specified time interval (in seconds) by editing the
panel.ini
file. By default, the extension has the followingpanel.ini
settings:[ext-google-authenticator] allowedAttempts = 5 rateLimitSeconds = 600
Joomla! Toolkit 2.4.5
17 August 2021
- Added version checks to prevent unwanted major upgrades to Joomla! 4 and installation errors if the wrong package is downloaded. Joomla! 4 is not supported yet; we are adding full support for the new major version in the next update.
Slave DNS Manager 1.10.0
13 August 2021
- The extension now shows a warning if the custom backend script is not properly configured and offers to configure it if necessary.
- Added the extension tab to the left navigation pane in Power User and Service Provider views.
Plesk Obsidian 18.0.37 Update 2
10 August 2021
Linux
- Updating to Plesk 18.0.37 and later no longer enables email delivery for mail accounts with disabled mailboxes. (PPPM-13129)
- In Plesk 18.0.37 and later, Watchdog daily reports sent to the Plesk administrator by email no longer contain the âERR [panel] No entry is registered for key âtranslateââ errors. (PPPM-13128)
SSL It! 1.9.3
9 August 2021
- The extension now shows more details about pending orders of purchased certificates.
- It is now possible to turn OCSP stapling for domains on and off via the CLI.
- Revamped the look of the extensionâs screen with the list of certificates available for purchase.
- It is now again possible to issue wildcard Letâs Encrypt certificates via the CLI. (EXTSSLIT-1476)
Sectigo SSL 1.3.4
9 August 2021
- If a domain name contains a brand name (for example, example-plesk.com), the extension now skips issuing a temporary DV certificate while securing the domain with an OV/EV certificate. (EXTPLESK-2842)
Plesk eCommerce Toolkit 1.2.0
9 August 2021
- Added the possibility to activate the trial version without purchasing a license first. Users can now try out the store features without any limitations for 14 days.
Mail Log Browser 1.1.0
5 August 2021
- Translated the extension into 31 languages: Arabic, Catalan, Chinese Simplified, Chinese Traditional, Czech, Danish, Dutch, Filipino, Finnish, French, German, Greek, Hebrew, Hungarian, Indonesian, Italian, Japanese, Korean, Malay, Norwegian Bokmal, Polish, Portuguese, Portuguese, Brazilian, Romanian, Russian, Spanish, Swedish, Thai, Turkish, Ukrainian, and Vietnamese.
Plesk Obsidian 18.0.37 Update 1
3 August 2021
- Updating Plesk to version 18.0.37 no longer fails if Plesk has domains that belong to the service plan whose name contains spaces at the beginning and end. (PPPM-13114)
- Updating Plesk to version 18.0.37 can no longer rename server plans that have matching names but belong to different resellers. (PPPM-13118)
Linux
- The output of the executed
plesk repair all -y
command no longer shows the false positive âFile Not foundâ errors. (PPPM-13124) -
panel.log
no longer contains the âCannot start event handler: Could not decode JSONâ errors if Plesk has added event handlers whose actions produce a long output to be trimmed. (PPPM-13048)
SSH Terminal 1.2.0
3 August 2021
- Translated the extension into 31 languages: Arabic, Catalan, Chinese Simplified, Chinese Traditional, Czech, Danish, Dutch, Filipino, Finnish, French, German, Greek, Hebrew, Hungarian, Indonesian, Italian, Japanese, Korean, Malay, Norwegian Bokmal, Polish, Portuguese, Portuguese, Brazilian, Romanian, Russian, Spanish, Swedish, Thai, Turkish, Ukrainian, and Vietnamese.
PHP Updates
2 August 2021
- Updated PHP 8.0 to version 8.0.9.
- Updated PHP 7.4 to version 7.4.22.
Linux
-
Updated the following PHP components shipped with Plesk:
- Imagick to version 3.5.1.
- Archive_Tar to version 1.4.14
Site Import 1.5.1
27 July 2021
- When migrating mail via IMAP between Plesk for Windows servers, mail in subfolders is now being correctly copied over to the destination server. (PMT-4943)
Plesk Migrator 2.21.2
27 July 2021
- When migrating mail via IMAP between Plesk for Windows servers, mail in subfolders is now being correctly copied over to the destination server. (PMT-4943)
- Plesk Migrator no longer incorrectly reports errors during post-check after migrating one or more DNS records containing long text fields. (PMT-4952)
- Migrating a subscription with the mail service disabled no longer results in the mail service being enabled on the destination server. (PMT-4870)
- Migration no longer fails when migrating one or more plans with leading and/or trailing whitespace characters in the name. (PMT-2776)
- Migrating from Debian 10 servers no longer fails with the âSource server OS is not supportedâ error. (PMT-4974)
WordPress Toolkit 5.5.1
21 July 2021
- The size of WordPress Toolkit metadata in Plesk backup files was reduced to ensure that these backups can be restored on servers with huge amount of sites. (EXTWPTOOLK-7898)
- Smart Updates no longer fail to analyze the site due to incorrect shortcode detection. (EXTWPTOOLK-5569)
- Copy Data feature no longer copies the state of Search Engine Indexing option. (EXTWPTOOLK-7847)
- WordPress Toolkit now properly works with mysqldump 8.0 and MariaDB / MySQL 5.7. (EXTWPTOOLK-7794)
Plesk Obsidian 18.0.37
20 July 2021
- Added the âConnection Infoâ to the Dashboard in the Dynamic List. Clicking it opens a drawer where users can easily view and change access information for FTP accounts and databases.
- Clicking âAdd Customerâ now opens a drawer on the same page instead of going to a separate page. This should make the customer creation workflow faster and easier.
- The PHP version currently in use for a domain is now shown below the âPHP Settingsâ button to make it easier to read at a glance.
- Links to âBackup Managerâ and âScheduled Tasksâ can now be found on the domain card as well as in the right sidebar. This should make these features easier to locate and access.
- Mail Autodiscover is no longer supported for Microsoft Outlook 2019 and O365 versions. These mail clients use Microsoft proxy servers for autodiscover requests, and this configuration is not supported in Plesk.
- Added password validation to the
plesk bin database-server
CLI utility. It is no longer possible to set database server password containing non-printable characters which caused issues with web statistics generation. (PPPM-12972) - It is now possible to create a subdomain for an additional domain with hosting type set to âno hostingâ. (PPPM-12952)
- Changing the language on the Plesk login page and then clicking the âForgot password?â link no longer results in the password recovery page using the Plesk default language instead of the language chosen on the login page. (PPPM-12943)
- Setting the number of automatic replies Plesk can send to a unique email address per day to more than 100 no longer results in an error. (PPPM-12434)
- Trying to create a domain when the maximum number of domains allowed by the Plesk license or the reseller plan has already been reached no longer results in a blank screen. (PPPM-13030, PPPM-13043)
- The âUse DKIM spam protection system to sign outgoing email messagesâ checkbox can now be selected or cleared even if the mail service for the domain is not activated. (PPPM-13041)
Linux
- Added the ability to access the server from Plesk via a secure web-based SSH client. To use the SSH client, install the SSH Terminal extension.
- Added the ability to check the statuses of all emails sent to and from a Plesk server by reviewing the maillog and filtering by date, source, or any string pattern. It is also possible to check the maillog in real-time (âtail -fn0â analog). To use this feature, install the Mail Log Browser extension.
- Added the option to automatically remove emails forwarded from a mailbox in Plesk. The feature is disabled by default. To enable it, go to âMailâ, click the desired mailbox, open the âForwardingâ tab and select the âDo not deliver copies of forwarded emails to the Plesk mailboxâ checkbox.
-
systemd-cron
is now supported on Debian 9/10 and Ubuntu 18.04/20.04. Thecron
package can now be replaced withsystemd-cron
on servers with Plesk using the OS package manager.systemd-cron
is a wrapper that converts cron tasks to systemd âtimersâ, which solves the well-known issue with a lot of emails being sent after a failed cron job. - Dovecot now reloads the configuration files instead of restarting whenever a mail certificate is renewed. This should resolve the issue with IMAP/SMTP connections often being closed without warning on Plesk servers hosting many domains.
- The default chroot settings are no longer changed after updating Plesk to the latest version. (PPPM-12885)
- The
plesk repair
utility no longer fails on file system check if the virtual host directory has been changed. (PPPM-12602) - Running the
plesk repair
utility no longer results in a misleading suggestion to repair incorrect permissions if the virtual host directory has been changed. (PPPM-12325) - On Debian/Ubuntu servers with Plesk PHP session files are now cleaned up properly if PHP from the OS repository is not installed on the server. (PPPM-13022)
- Fai2ban no longer fails while processing the âplesk-panelâ jail if debug mode is enabled in Plesk. (PPPM-13051)
- Updating PHP packages from Remiâs RPM repository no longer resets permissions on
/var/lib/php/session
potentially causing PHP websites to malfunction. (PPPM-13068) - Converting a CentOS server with Plesk to AlmaLinux no longer fails if the EPEL repository is enabled on the server. (PPP-53540)
Windows
- MariaDB error logs no longer contain misleading âAborted connectionâ warnings related to the
plesksrv
service. (PPPM-12737 - Errors encountered during Plesk update are now correctly recorded in the installer log. (PPP-52706)
- Restoring a password-protected subscription backup created on another Plesk server no longer fails if the correct password is provided. (PPPM-13061)
Third-Party Component Updates
- Dropped support for MySQL versions earlier than 5.7.
Linux
- Updated sw-engine PHP to version 7.4.21.
- Updated ProFTPD to version 1.3.7b.
- Updated Courier-IMAP to version 5.1.3.
- Updated Updated Dovecot and Pigeonhole to versions 2.3.15 and 0.5.15 respectively.
- Updated phpMyAdmin to version 5.1.1.
Windows
- Updated plesk-engine PHP to version 7.4.21.
- Updated Node.js 12 to version 12.22.3.
- Updated Git for Windows to version 2.32.0.
- Updated MailEnable Standard to version 10.34.
- Updated ASP.NET Core 5.0 to version 5.0.7.
- Updated ASP.NET Core 3.1 to version 3.1.16.
SSH Terminal 1.0.0
19 July 2021
-
SSH Terminal is accessible via a button on website cards of all domains where the subscription system user has SSH access. This can be disabled by adding the following lines to the
panel.ini
file:[ext-ssh-terminal] domainAccessAllowed = false
-
SSH Terminal is accessible via a link from âTools & Settingsâ and âExtensionsâ for root user if root access is allowed in Plesk. This can be disabled by adding the following lines to the
panel.ini
file:[ext-ssh-terminal] rootAccessAllowed = false
-
A userâs SSH Terminal session is terminated after they navigate away from the terminal page.
Advisor 1.9.2
16 July 2021
- Added the recommendation to fix the IIS server vulnerabilities.
-
The Plesk administrator can now hide recommendations by adding their IDs to the extensionâs blacklist. For example, to hide the âUse the Sectigo SSL Extensionâ recommendation, add the following lines to the panel.ini file:
[ext-advisor] blacklist = 'SectigoSsl'
SSL It! 1.9.1
13 July 2021
-
Creating customers no longer fails without an error message if the Plesk administrator has added the following lines to the
panel.ini
file: (EXTSSLIT-1684)[ext-letsencrypt] secure-new-domain = true
SSL It! 1.9.0
7 July 2021
- Customers of certain countries can now buy certificates in Plesk itself without going to Plesk Online Store.
- The extension now shows more details about issuance of Sectigo certificates.
- The extensionâs email notifications of secured domains can no longer contain domains that were not actually secured. (EXTSSLIT-1426)
- If webmail was created as an individual domain, the automatic renewal of the certificates can no longer mistakenly reassign the certificate of the main domain to webmail. (EXTSSLIT-1666)
PHP Updates
7 July 2021
- Updated PHP 8.0 to version 8.0.8.
- Updated PHP 7.4 to version 7.4.21.
- Updated PHP 7.3 to version 7.3.29.
Linux
- Added support for Imagick for PHP 8.0.
- Updated Imagick to version 3.5.0 for PHP 7.3 and 7.4.
- In Plesk on CloudLinux, fixed an error due to which all domains on the server could become unavailable. The error occurred because the PHP-FPM master process was killed when one of its child processes exceeded the LVE limits. (PPP-53513)
WordPress Toolkit 5.5.0
30 June 2021
- WordPress Toolkit now logs every single action it performs.
- Separate Smart Updates details log is now saved in the logs directory. This log is overwritten every time a new Smart Update procedure is launched.
- Special interface for displaying WordPress Toolkit action logs is now accessible via âLogsâ button on site cards. The interface includes filtering, real-time updates, and log rotation settings.
- Database table prefix is now displayed on the âDatabaseâ tab of a site card.
- Users can now hover their mouse over the website screenshot to see the date and time when it was made. Clicking the circular âRefreshâ button in the top right corner will make a new screenshot.
- New CLI command for setting or resetting WordPress administrator password is available:
--site-admin-reset-password
. Setting a new password is possible via environment variable. - On a related note, email notifications are now sent to server administrators by default.
- Reduced the number of unnecessary screenshots made by the screenshotting service.
- Site list now loads faster, especially if you have multiple sites.
- Collapsed and expanded states of site cards are now saved per-user (technically, itâs per-browser, but letâs just pretend thatâs per-user).
- Mass operations on large number of sites now start much faster than before.
- Site card list has undergone selective cosmetic surgery. No major changes, just a bit of loving polish.
- Certain WordPress sites with
DEFINER
clause can now be properly cloned again. (EXTWPTOOLK-7744) - Errors are now properly displayed on the cloning and data copy screens, if they happen. (EXTWPTOOLK-7597)
- Logs no longer display empty plugin versions under certain circumstances. (EXTWPTOOLK-7532)
- Logs no longer display empty theme versions under certain circumstances (similar problem as above, but we have a separate bug for it, so why not a separate entry, eh) (EXTWPTOOLK-7533)
- WordPress Toolkit no longer states that âAll selected items were updatedâ even when it couldnât update a theme due to licensing issues. (EXTWPTOOLK-7223)
- Cloning to a subdomain with PHP8 no longer fails with âUncaught TypeError: unserialize(): Argument #1 ($data) must be of type stringâ error. (EXTWPTOOLK-7374)
- Cloning and data copying no longer panics when processing files with very long filenames or extensions. (EXTWPTOOLK-7745)
- Itâs now possible to update plugins and themes that have
rc
string in their version. (EXTWPTOOLK-7743) - WordPress Toolkit no longer drowns in the depths of infinite recursion under certain circumstances that involve parent and child plugins. (EXTWPTOOLK-7519)
- Copy data procedure no longer displays confusing message about not being able to find any matching tables when everything actually went right. (EXTWPTOOLK-7735)
- âPurchaseâ button no longer leads to â404 Not Foundâ page. (EXTWPTOOLK-7746)
Letâs Encrypt 2.13.4
23 June 2021
-
To not exclude the www and/or webmail SANs when the issuance of a SAN certificate failed, add the following lines to the
panel.ini
file:[ext-letsencrypt] require-www-webmail-sans = true
Docker 1.4.8
23 June 2021
- Closing error messages displayed by the Docker extension no longer takes the user to the Plesk home page. (EXTDOCKER-126)
Extension Catalog 1.13.10
21 June 2021
- The Extension Catalog no longer occasionally shows incorrect radio buttons with prices instead of the âGet if freeâ button next to the extension that is free and does not have the âMultiple offersâ licensing model. (EXTCATALOG-511)
- The search function in the Extension Catalog can now process search queries that contain spaces and special characters (
!
,@
,#
, and so on). (EXTCATALOG-493)
Advanced Monitoring 1.4.3
19 June 2021
- Installing Advanced Monitoring no longer automatically installs the Grafana extension because Grafana has changed its licenses. When you install Advanced Monitoring now, Plesk will prompt you to install the Grafana extension as well and show the button you need to click to automatically install the extension.
-
Updating Grafana to version 8.0 and later no longer breaks the extension. (EXTPLESK-2710)
Note: To use Advanced Monitoring 1.4.3 with Grafana 8.0, you need to have the Grafana extension version 1.2.3.
Site Import 1.5.0
18 June 2021
- Connection to a website via FTP on some modern operating systems and Plesk versions no longer fails. (PMT-4874)
- Now all valid secret keys are taken into account when importing websites. Previously, some valid secret keys could be considered corrupted or missing, which resulted in the âPleskAPIInvalidSecretKeyException : key is not foundâ error. (PMT-4903)
- Changed the way a WordPress websiteâs URL is updated when importing so that it no longer works incorrectly in some edge cases. (PMT-4869)
- Mail migration from a source server now tries to switch to a supported TLS protocol before failing in case of an âUNSUPPORTED_PROTOCOLâ or âWRONG_SSL_VERSION SSLâ error. (PMT-4873)
- The extension no longer corrupts the names of folders that contain non-ASCII characters during import. (PMT-4958)
Plesk Migrator 2.21.1
18 June 2021
- Migration post-check no longer reports an issue if the HTTP response code changed from 200 on the source server to 301 on the target server due to the âPermanent SEO-safe 301 redirect from HTTP to HTTPSâ option being enabled by default on Plesk Obsidian.
- Migrating From Plesk Obsidian for Linux 18.0.36 no longer results in the âFailed to create the remote configuration dump on the target server. Not all settings may be migrated.â error during pre-check, which could lead to some settings not being transferred during migration. (PMT-4957)
- Migrating from Confixx with a recent Perl version installed no longer fails with the âFailed to perform action: Fetch data from source Confixxâ error. (PMT-4960)
- The value of the âPermanent SEO-safe 301 redirect from HTTP to HTTPSâ option is now transferred over correctly when migrating from cPanel to Plesk Obsidian. (PMT-4611)
- Migrating a domain with an APS application installed on the domain root with the âHTTPSâ option enabled no longer results in misleading cautions during post-check. (PMT-4913)
- CLI migration to a Plesk for Linux server with MariaDB 10.5 installed no longer fails with the âService âmysqlâ is not started on target Plesk serverâ error. (PMT-4935)
- Plesk Migrator can now correctly decrypt passwords if the
PLESK_BACKUP_PASSWORD
environment variable is set on the source server. (PMT-4953) - The extension no longer corrupts the names of mail folders that contain non-ASCII characters during migration. (PMT-4958)
- Replaced the missing
warning.png
andok.png
icons. (PMT-4933)
Grafana 1.2.3
18 June 2021
-
Resolved compatibility issues with Grafana 8.0. (EXTPLESK-2710)
Note: To use the upcoming Advanced Monitoring version 1.4.3 with Grafana 8.0, you need to have the latest version of the Grafana extension.
PHP Composer 1.1.3
17 June 2021
- The extension now works correctly with package data if Composer version 2 is used. (EXTPHPCOMP-185)
Amazon Route 53 2.8.1
17 June 2021
- The extension now correctly syncs domains` DNS records if the total number of records exceeds 100. (EXTPLESK-2698)
- The extension now syncs a public zone instead of a private one for a domain with two hosted zones in AWS. (EXTPLESK-2359)
SSL It! 1.8.5
12 June 2021
- The extension no longer reassigns an already issued Letâs Encrypt certificate to a domain every hour if its mail component should not be secured. (EXTSSLIT-1645)
SSL It! 1.8.4
11 June 2021
- The extension no longer reassigns an already issued Letâs Encrypt certificate to a domain every hour if its mail component is secured. (EXTSSLIT-1630)
Advisor 1.9.1
11 June 2021
- The extension now correctly validates a certificate in the âSecure Websites With SSL/TLS Certificatesâ recommendation. (EXTADVISOR-882)
WordPress Toolkit 5.4.4
9 June 2021
- Restoring a Plesk backup no longer fails if it contains a WordPress site broken for reasons unknown to WordPress Toolkit. (EXTWPTOOLK-7699)
Plesk Obsidian 18.0.36
8 June 2021
- In File Manager, it is now possible to upload files from remote servers by specifying the file URL.
- It is now possible to install WordPress on CloudLinux used with the ALT-PHP handlers.
- It is now possible to add and manage DNS records (including TTL) in a DNS zone via REST API.
-
Revamped the âAdd Subscriptionâ and âAdd Domainâ pages to make them consistent with other Plesk UX elements:
- The âWebspace settingsâ section is now pre-filled and collapsed.
-
By default, Plesk now hides the Letâs Encrypt and Git sections when users create subscriptions, domains, and subdomains. To make the sections visible, add the following lines to the
panel.ini
file:[ext-sslit] enableSecuringNewDomain = true ; shows the "Secure with an SSL/TLS Certificate" section secure-new-domain = true ; makes the "Secure the domain with Let's Encrypt" checkbox selected by default [ext-git] enableOnSiteCreate = true ; shows the "Your Files to Copy to Hosting" section
- Added a progress screen shown when users create domains.
- Cleaned up the Plesk onboarding: removed distractions (for example, Plesk update notifications) that used to be shown once Plesk is installed.
- Improved protection against open redirect.
The
trustedRedirectHosts
setting now has the default âemptyâ value on all existing and new Plesk installations.trustedRedirectHosts
specified with the âemptyâ value forbids Plesk from redirecting to any hosts using thesuccess_redirect_url
andfailure_redirect_url
parameters because such redirecting poses a security risk. - Plesk no longer shows DNS Helper if either IPv4 or IPv6 address resolves to the Plesk server. (PPP-52686)
- Improved the message shown when a domain name is resolved to the IP address different from the Plesk server IP. The message no longer misleadingly states that the website is offline. (PPPM-12937)
- When file upload fails in File Manager, Plesk now shows a detailed error message instead of the
[[fileNotUploaded]]
locale key. (PPPM-12929) - Backing up to the Microsoft OneDrive Backup storage can no longer fail because of a failed request for a new OneDrive access token. (EXTPLESK-2654)
- The
--create-map
command of thepleskbackup
utility is now deprecated. (PPPM-12940) - File Manager now shows a confirmation dialog before replacing an already existing file with the uploaded one that has the same name. (PPPM-12966)
- Plesk now verifies that the number of simultaneously running backup processes to be set is more than zero. (PPPM-12927)
- It is now possible to remove the Plesk email address of a subscriptionâs additional users if an external email address is specified. (PPPM-12849)
- Restarting the Plesk server in Tools & Settings no longer causes the âFailed to fetchâ warning to be shown in the Plesk interface. (PPPM-12962)
- It is now possible to create a subdomain of an add-on domain that has the forwarding hosting type via API-RPC. (PPPM-10784)
- The
pleskbackup
utility used with the--domains-name
command no longer backs up the whole server instead of a subscription if the specified subscription does not exist. (PPPM-12797) - The
plesk repair
utility can now detect and fix the Plesk database inconsistency that leads to the âUnable to find row with id X in IP_Addresses tableâ error during migration or backup restoration. (PPPM-12843)
Linux
- It is now possible to create a subdomain of a disabled domain if the âForce daily log rotation for all domainsâ server setting is turned on. (PPPM-11930)
- Webmail is now turned on by default for domains created via API-RPC. (PPPM-12355)
- The
plesk repair
utility now fixes incorrect permissions in/usr/local/psa/PMM/rsessions
, which in turn fixes backup and restoration logs. (PPPM-12786) - If a domainâs IPv6 address is set to ânoneâ, running the
plesk repair db
utility no longer shows the false positive âThe following domains are assigned to already removed IP addresses.â error message. (PPPM-12988) - A system user that uses the âbash (chrooted)â shell can no longer lose the ability to connect via SFTP. (PPPM-12969)
- Plesk now daily rotates PHP-FPM error logs to prevent them from consuming all the server disk space and eventually causing issues on the server. (PPPM-11362)
- Fail2ban logs and database backups can no longer consume all the server disk space. (PPPM-12981)
- Suspending a subscription that has an add-on domain with the forwarding hosting type and a subdomain of the add-on domain no longer breaks the Apache configuration. (PPPM-12939)
- nginx now returns a 404 Not Found error when requesting a non-existent static file larger than 1023 bytes whose URL contains a trailing slash. (PPP-53248)
- Disabling a domain whose webmail service was uninstalled no longer generates an incorrect webmail configuration. (PPPM-12984)
- Removing the
/usr/local/psa/PMM/rsessions
directory and then going to Backup Manager no longer prevents further backup restoration and download of restoration logs. (PPPM-12785) - In Plesk on Ubuntu with libc6 version 2.31-0ubuntu9.3 or later, a subscriptionâs system user that uses the âbash (chrooted)â shell can now connect to the Plesk server. (PPPM-12954)
- Subscriptionsâ system users that use the
/bin/false
shell now log in to the Plesk server via FTP faster. (PPPM-12909) - In Plesk on a Debian-based system, rereading IP address to repair misconfigured ones no longer duplicates IP addresses in
/etc/network/interfaces
. (PPPM-12941) - If Plesk with Postfix that uses
milter_protocol=2
receives an email, this no longer kills thepc-remote
service. (PPP-53325) - Plesk Log Browser now displays logs compressed in the GZIP format. (PPPM-12976)
- Plesk now correctly applies locale keys of non-English Horde interface languages. (PPPM-12886)
- Generating a server report no longer fails in Plesk that has a large number of objects (for example, domains or mailboxes). (PPPM-12816)
- Apache now runs if it is configured with TLS 1.3 ciphers only. (PPPM-12964)
- Plesk now vacuums the Fail2ban database weekly to prevent it from growing large. (PPPM-12981)
Windows
- Plesk no longer fails to create mail for a subscription that belongs to the service plan that has a disabled webmail client selected. (PPPM-12968)
- Changes in the
%plesk_dir%MySQL\my.ini
file no longer prevent updating Plesk Onyx to Plesk Obsidian. (PPPM-12994) - Improved the error message shown when Plesk cannot restore a remote SFTP backup because one or more database server types (for example, Microsoft SQL Server) present on the remote storage server are not present on the Plesk server the backup is being restored on. (PPPM-12974)
- It is now possible to turn on the Atomic Standard rule set in ModSecurity. (PPPM-13001)
- The
plesk repair mail
utility no longer fails if the âDNS zones for DNSBL serviceâ server-wide mail setting field contains a long string. (PPPM-13002) - Plesk now changes a domainâs PHP version in the IIS configuration files even if the PHP handler was previously uninstalled. (PPPM-12911)
- The
%plesk_dir%MySQL\Data*.err
file can no longer contain errors and warnings related to the PleskWebSocket service. (PPPM-12737)
Third-Party Component Updates
- Updated PHP used by Plesk to version 7.4.18.
Linux
- Updated nginx and
sw-cp-server
to version 1.20.1. - Updated the
sw-cp-server
components:nginx-dev-kit
to version 0.3.1 andlua-nginx-module
to version 0.10.19. - Updated Phusion Passenger to version 6.0.8.
- Updated Dovecot and Pigeonhole to versions 2.3.14 and 0.5.14 respectively.
- Updated Xdebug to version 3.0.4.
Windows
- Updated BIND to version 9.16.15.
- Updated ASP.NET Core 5.0 to version 5.0.6.
- Updated ASP.NET Core 3.1 to version 3.1.15.
- Updated ASP.NET Core 2.1 to version 2.1.28.
- Updated Node.js 12 to version 12.22.1.
- Updated MariaDB 10.5 to version 10.5.10.
- Updated MariaDB 10.3 to version 10.3.29.
- Updated SQLite to version 3.35.4.
- Updated Microsoft ODBC Driver 17 for SQL Server to version 17.7.2.1.
PHP Updates
8 June 2021
- Updated PHP 8.0 to version 8.0.7.
- Updated PHP 7.4 to version 7.4.20.
Linux
- Updated Archive_Tar to version 1.4.13 for PHP 7.4, 8.0.
Advisor 1.9.0
8 June 2021
- The extension now correctly validates a certificate chain with more than one intermediate certificate. (EXTADVISOR-693)
- The extension now provides correct URLs to subscriptions in the âSwitch to Up-To-Date PHP Versionsâ recommendation. (EXTADVISOR-819)
- The extension no longer shows the âEnable HTTP/2â recommendation if LiteSpeed is used as a web server instead of nginx. (EXTADVISOR-821)
- The extension now applies the enabled HTTP/2 recommendation without an error message and changes the recommendation status to âconfiguredâ. (EXTADVISOR-745)
- It is no longer possible to apply the âSwitch to HTTPSâ recommendation to WordPress installations that do not support SSL. (EXTADVISOR-705)
Git 1.3.0
7 June 2021
- The extension interface improvements.
-
The extension form is no longer shown by default when users create subscriptions, customers, domains, and subdomains. To make the form visible, add the following lines to the panel.ini file:
[ext-git] enableOnSiteCreate = true
Git 1.2.4
7 June 2021
- We have created the current extensionâs âmaintenance onlyâ fork for Plesk versions 18.0.32-18.0.35 and labeled it version 1.2.4. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.36 and later.
DigitalOcean DNS 1.3.1
7 June 2021
- Expired OAuth2 access tokens are now automatically refreshed and no longer prevent the extension from syncing DNS records. (EXTPLESK-2693)
- The âInvalid authorization token. Unable to authenticate youâ error is no longer shown after successful OAuth2 authorization. (EXTPLESK-2687)
SSL It! 1.8.2
28 May 2021
-
By default, the ability to issue Letâs Encrypt certificates while creating new subscriptions, domains, or subdomains is turned off. To turn it on, add the following lines to the
panel.ini
file:[ext-sslit] enableSecuringNewDomain = true
You can also specify the following settings:
[ext-sslit] ;Opens the "Secure with an SSL/TLS Certificate" panel collapseSecuringNewDomain = false ;Enables the "Secure the domain with Let's Encrypt" option (works only if enableSecuringNewDomain = true) secure-new-domain = true
- A user can now cancel a pending certificate order if they created it but then removed the extension of the corresponding certificate authority (for example, Sectigo SSL). (EXTSSLIT-1588)
- If the âKeep securedâ feature is enabled and a domain is secured with a non-Letâs Encrypt certificate, the extension now shows the correct security status of the domain. (EXTSSLIT-1535)
- If the Qmail component is installed, the extension now applies Mozilla ciphers to all available services except Qmail without any issues (Qmail does not support the installation of TLS protocols). (EXTSSLIT-1567)
Plesk Obsidian 18.0.35 Update 2
27 May 2021
- Fixed an internal issue related to connection to Plesk additional services.
Letâs Encrypt 2.13.3
21 May 2021
- The extension now shows a human-readable error message if a user tries to secure a domain whose name is longer than 64 characters. (EXTLETSENC-724)
Keychain for API Secret Keys 1.1.1
12 May 2021
- The extension interface now shows key IDs instead of key values. To reflect this change, we also renamed the âKeyâ tab to âKey IDâ. (EXTPLESK-2334)
PHP Updates
5 May 2021
- Updated PHP 8.0 to version 8.0.5.
- Updated PHP 7.4 to version 7.4.18.
- Updated PHP 7.3 to version 7.3.28.
Linux
- Updated Redis to version 5.3.4 for PHP 7.3, 7.4, 8.0.
- Updated Xdebug to version 3.0.4 for PHP 7.3, 7.4, 8.0.
Plesk Obsidian 18.0.35 Update 1
4 May 2021
- In Plesk with enabled âDNS Helperâ, the âDNS Settingsâ page of domains created under subscriptions without hosting no longer shows the âInternal Errorâ message. (PPP-52966)
Linux
- It is now again possible to enable ModSecurity with the âComodo (free)â rule set in the Plesk interface. (PPP-52965)
WordPress Toolkit 5.4.1
29 April 2021
- Scan no longer sends WordPress Toolkit into the infinite recursion spiral under certain rare circumstances. (EXTWPTOOLK-7518)
- Icons on certain buttons are now visible again in Safari browser. (EXTWPTOOLK-7510)
- Issues related to lack of HTTP to HTTPS redirection are now properly displayed in the list of SSL/TLS issues in the site card header, if they are found. (EXTWPTOOLK-7478)
- Background task progress is now properly displayed on the Updates screen after page reload. (EXTWPTOOLK-7475)
- Action links for SSL/TLS issues are now leading to correct domains in all cases. (EXTWPTOOLK-7474)
SSL It! 1.8.1
28 April 2021
- The extension can now secure a domain alias with a certificate issued for the alias alone (without the main domain name).
- The extension now reissues a certificate that secures a cloned Plesk instance after the Plesk hostname was changed during cloning. (EXTSSLIT-1511)
- The âKeep securedâ task now renews certificates on domains with the forwarding hosting type and disabled SSL support. (EXTSSLIT-1509)
- The extension can now renew certificates issued for domain aliases with mixed-case names. (EXTSSLIT-1545)
Letâs Encrypt 2.13.2
28 April 2021
- The extension now reissues a certificate that secures a cloned Plesk instance after the Plesk hostname was changed during cloning. (EXTLETSENC-888)
WordPress Toolkit 5.4.0
26 April 2021
- WordPress Toolkit now saves a log of important actions it performs on managed websites. Logs are written in plain text and stored on each domain in the following format:
/logs/wpt_action_logs/action_log_#SITE_UUID#.log
. - Cloning backend was fully redesigned for improved security and performance.
-
Workflow related to wp-cron management was redesigned:
- The option was renamed to âTake over wp-cron.phpâ to avoid the classic âenable to disableâ confusion.
- It is now possible to explicitly choose if a replacement cronjob should be created or not via âCreate a replacement task when takeover is initiatedâ switch.
- Replacement cronjobs are now way less strict in regards to user modifications. If WordPress Toolkit cannot find its cronjob, it will not try to recreate the cronjob, concluding that it was knowingly modified or removed by user.
- If user has butchered or removed the replacement cronjob by mistake, it can be recreated by switching off and on the corresponding âCreate a replacementâŠâ switch.
- WordPress Toolkit now displays actual status of SSL/TLS support and certificate on a site card. If any issues are found, WordPress Toolkit provides a suggestion on how to fix them.
- Added installation state as a separate column to the CLI site list output.
- WordPress Toolkit now supports AlmaLinux OS on both Plesk and cPanel.
- Improved pagination on website list.
- Progress display in windows was standardized and unified for better experience.
- Various warnings and notifications related to problematic PHP versions were improved and made more consistent.
- Minimal WordPress version that can be installed via WordPress Toolkit was increased to WP v4.9.
- Cloning can now properly handle URLs with encoded forward slash in database tables. (EXTWPTOOLK-6292)
- Cloning no longer fails if WordPress directories do not have proper access permissions. (EXTWPTOOLK-3089)
- WordPress Toolkit no longer confuses users by telling them they have no sites installed when the site list is empty due to applied filters. (EXTWPTOOLK-6155)
- The list of themes is now properly refreshed after a theme is manually uploaded and activated from the global âThemesâ tab. (EXTWPTOOLK-4372)
- It is now possible again to use Log in functionality in Safari running on iOS devices. (EXTWPTOOLK-6412)
- Thanks to the new ghostbusting algorithm, orphaned tasks left by killed processes or rebooted server no longer haunt users in the interface. (EXTWPTOOLK-6326)
- Default autoupdate options for minor WordPress releases starting with WordPress 5.6 are now set correctly. (EXTWPTOOLK-6579)
- WordPress Toolkit auto-updates management permission in Plesk now works properly again. (EXTWPTOOLK-6039)
- WordPress Toolkit no longer sends email notifications about available updates after automatically installing these updates. Opinions vary on whether this was a user trolling algorithm or a split personality algorithm. (EXTWPTOOLK-6077)
Plesk Obsidian 18.0.35
20 April 2021
-
In File Manager, it is now possible to do the following:
- Upload directories.
- (Plesk for Linux) Change file permissions recursively. Plesk for Windows has always supported that.
- File Manager can now display SVG files.
- Improved the interface of Dynamic List view. It is now easier to distinguish one domain card from another because we made the separating lines more distinct.
- Reduced the domain creation time by four seconds. To achieve this, we split the mail service creation into a separate task.
- Improved the âAdd Domainâ page. Plesk now automatically fills in the system user name and password boxes. We have also removed the password confirmation box.
- The âMail Settingsâ page of domains now shows a hint how to enable DKIM signing for an external DNS server. The hint shows the exact DNS records users need to add to the DNS server.
- It is now possible to get information about subdomains via the CLI or REST API. (PPPM-12825)
- Enabling the mail service via the CLI for a subdomain no longer creates the Plesk database inconsistency. (PPPM-12836)
- Disabling the domain resolution check in
panel.ini
now hides the âDomain is not resolvableâ message under âDNS Settingsâ of domains. (PPPM-12891) - The window shown after closing the Change View item in the left navigation pane now contains a correct text instead of placeholders. (PPPM-12863)
- It is no longer possible to cause the Plesk database inconsistency by deleting an IP address assigned to a subscription without hosing. (PPPM-12876)
-
Introduced a new CLI command
--assign-database
, which assigns a database created via the API to a domain. (PPP-52056) The command has the following pattern:plesk bin subscription_settings --assign-database <domain_name> -database-id <database-id>
- The âDNS settingsâ page of a subscription no longer fails to be opened with HTTP Error 500 if the Plesk database inconsistency occurs. (PPPM-12877)
- Plesk can now restore backups of subdomains that belong to a domain with the forwarding hosting type. (PPPM-12903)
- Improved a hint for creating temporary domains. The previous hint was incorrect and could mislead users into specifying a temporary domain name that did not work. (PPPM-12883)
- Updating to Plesk Obsidian no longer fails if the
/var/www/vhosts/
permissions are not sufficient. (PPPM-12872) - Removing an APS application can no longer cause the Plesk database inconsistency. (PPPM-12902)
- The âDNS Settingsâ page of a non-resolvable domain can no longer show the âUnable to find subscriptionâ error instead of a warning that the domain name does not resolve to the server IP address. (PPPM-12871)
- The Plesk interface can no longer occasionally show the âCannot read property âquerySelectorâ of nullâ error. (PPPM-12884)
- If a service plan has the âSwitch on the mail serviceâ and âEnable mail autodiscoverâ mail settings disabled, subscriptions created on the basis of the service plan now inherit these disabled mail settings. (PPPM-12879)
- Improved a confusing error message. When users try to remove an IP address used by the mail server, Plesk no longer incorrectly notifies that the IP address is used for hosting. (PPPM-7984)
- If âDNS Helperâ is enabled and an add-on domain has an alias,
panel.log
no longer contains confusing error messages. (PPPM-12906) - The
plesk repair
utility now detects issues with domains assigned to already removed IP addresses and suggests reassigning the domains to existing IP addresses. (PPPM-12865) - Improved a message shown after a Plesk password reset. (PPPM-12677)
- File Manager can now display the content of files whose names contain Cyrillic characters. (PPPM-12897)
- The
pmmcli
utility now ignores Error 152 and shows the path to the imported backup dump because the error does not actually affect the backup dump import. (PPP-52707) - The
pmm-ras
utility no longer creates archives andmigration.log
in the current working directory. The utility now createsmigration.log
inPMM_LOGS_D
if the--session-path
is not specified. The utility operation before the bugfix could occasionally cause server backups to fail. (PPPM-11752) - Sped up loading of lists with a large number of domains (more than 1000). (PPPM-12689)
Linux
-
Plesk can now be installed on AlmaLinux OS.
Note: You can now in-place convert your Plesk server on CentOS 8 to AlmaLinux OS. To do so, run the script prepared by the AlmaLinux team on your CentOS 8 server.
- Dropped support for Ubuntu 16.04.
- Improved an error message shown when IP addresses registered in Plesk do not match those set up on the server and this mismatch caused an issue with the web server. The message now contains the link to the KB article with the steps on how to fix the issue.
- Updating Plesk 18.0.33 and earlier to the latest Plesk version no longer causes Plesk Premium Antivirus to start sending false notifications that a Plesk Premium Antivirus license will expire soon. (PPP-52338)
- Mail delivery to IDN emails no longer fails. (PPPM-12866)
- Removed an unnecessary test run during Plesk installation. The failed test created a log warning message with a recommendation to check the network configuration. The test result affected neither Plesk installation nor performance. (PPP-41762)
- Plesk now preserves the following custom settings of the
[php-fpm-pool-settings]
section in additionalphp.ini
directives:chroot
,clear_env
,decorate_workers_output
. (PPPM-12666) - phpMyAdmin can no longer show strange users without passwords (for example, the user âAnyâ). (PPPM-12793)
- An IP address change can no longer fail because of unfinished MySQL initialization. (PPPM-12464)
- A Plesk daily maintenance task can no longer replace Dr.Web Antivirus packages with those from Plesk Premium Antivirus. (PPPM-12850)
- The official configuration of WordPress permalinks now works if nginx and PHP-FPM are used in tandem. (PPPM-12817)
- If PHP-FPM is served by nginx in Apache+nginx hosting, custom error documents for PHP scripts now work. (PPPM-12815)
- An add-on plan with disabled PHP settings can no longer affect the PHP settings of a subscription created based on the plan. (PPPM-12864)
- The Fail2ban configuration issues can no longer prevent users from creating subscriptions. (PPPM-12045)
- Scheduled tasks with the
Null
attribute no longer prevent Plesk from restoring server backups. (PPPM-12912) - When installing or updating Plesk, Plesk Installer can now detect and warn about unsupported Debian and Ubuntu repositories present on the server. (PPPM-12834)
- Plesk Installer no longer occasionally shows that the MySQL server component can be updated instead of actually updating the component. (PPPM-12658)
- Plesk can now check incoming mail by processing SPF TXT records that contain up to 1024 mechanisms. (PPPM-8103)
- In Plesk on CloudLinux, the âServer Informationâ page in Tools & Settings can no longer show the Internal Server Error 500. (PPPM-11898)
- Plesk now correctly counts statistics for an add-on domain not including statistics for the domain with the same name as the add-on domain (if any). (PPPM-12577)
Windows
- For an external SMTP server used with Plesk, it is now possible to use a non-email username instead of a full email address (for example, just âmailâ instead of âmail@example.comâ). (PPPM-12896)
- The Plesk Installer output now shows all characters of a package version. (PPPM-12842)
- Removed a warning message about a 900-second delay after a PHP version change. (PPPM-12831)
- If SmarterMail 100 is used, Plesk no longer backs up emails of domains whose mail service is disabled and warns about it. (PPPM-12522)
- If the Windows system locale language is not English, Plesk no longer skips a subscriptionâs mail when backing up the subscription. (PPPM-12874)
- It is now again possible to train SpamAssassin because SpamAssassin
Imap.php
no longer tries to connect to the localhost using TLS. (PPPM-12086) - Improved error reporting if backup creation fails with the âFailed to create archive: Repository errorâ. (PPPM-12697)
Third-Party Component Updates
- Updated PHP used by Plesk to version 7.4.16.
Linux
- Updated phpMyAdmin to version 5.1.0.
- Updated Fail2ban to version 0.11.2.
- Updated ProFTPD to version 1.3.7a.
Windows
- Microsoft Drivers for PHP for SQL Server are now installed with PHP 8.0.
- Updated Microsoft ODBC Driver 17 for SQL Server to version 17.7.1.1.
- Updated Node.js 12 to version 12.21.0.
- Updated Node.js 10 to version 10.24.0.
- Updated Git to version 2.30.2.
- Updated ASP.NET Core 5.0 to version 5.0.4.
- Updated ASP.NET Core 3.1 to version 3.1.13.
- Updated ASP.NET Core 2.1 to version 2.1.26.
- Updated BIND to version 9.16.13.
- Updated OpenSSL to version 1.1.1k.
- Updated SpamAssassin to version 3.4.5.
Letâs Encrypt 2.13.1
20 April 2021
- The extension can no longer secure new domains during their creation. This feature is now available in the SSL It! extension only.
Plesk Migrator 2.21.0
13 April 2021
- It is now possible to migrate Plesk servers with remote databases.
- It is now possible to migrate Plesk 12.5 servers that have WordPress websites. (PMT-4921)
- The extension can no longer migrate additional users to a wrong subscription that belongs to the same owner. (PMT-4759)
- Migration via the CLI no longer fails if a service or add-on plan to be migrated has no subscriptions. (PMT-4888)
- It is now again possible to migrate subscriptions that belong to one hosting plan. (PMT-4915)
- Migration no longer fails if the dump import was finished with the error code 152. (PMT-4909)
Linux
- It is now possible to migrate servers on AlmaLinux OS.
- It is now again possible to migrate cPanel servers with Perl version 5.21.3 and later installed. (PMT-4911)
- The extension no longer migrates settings specified on the âPerformanceâ tab of a hosting plan. Such migration caused an error because the âPerformanceâ tab of hosting plans was removed in Plesk Obsidian. (PMT-4827)
- If nginx is turned off on the source server, migration no longer resets PHP handlers. (PMT-4861)
- The extension no longer limits the user name length of password-protected directories to 20 characters. (PMT-4893)
- The extension now correctly detects the
remoteip
Apache module. (PMT-4914)
Git 1.2.3
13 April 2021
- Creating a repository no longer fails in Plesk with Git version 2.29.2 and later. (EXTGIT-126)
Windows
- In Plesk for Windows, creating a repository for a domain no longer fails if the system user password of the subscription the domain belongs to contains special characters. (EXTGIT-131)
Microsoft Azure DNS 1.1.0
7 April 2021
- The extension now shows a warning if a custom backend script is not properly configured and offers to configure it if necessary.
- Added a link to the extension to the left navigation pane in Power User mode.
- Updated links to the documentation.
- Improved an error message shown in the
panel.log
if the extension has incorrect credentials specified. (EXTPLESK-543) - The extension now correctly syncs DNS records of domains whose names contain uppercase characters. (EXTPLESK-1317)
- The extension now correctly syncs TXT records that have the same hostname. (EXTPLESK-1319)
Plesk Email Security 1.1.12
6 April 2021
Linux
- Renamed the terms âblacklistâ and âwhitelistâ to blocklist and allowlist.
- Added the hostname value to an error message shown if an invalid hostname is detected.
- Improved the description hint for allowlist/blocklist. (EXTCERT-3349)
- Improved the custom SpamAssassin configuration to make sure that the auto-whitelist plugin is loaded. (EXTCERT-3293)
Sectigo SSL 1.3.0
5 April 2021
- Customers now receive more detailed information about Sectigo organization validation process.
Git 1.2.2
5 April 2021
- If a customerâs subscription has the Git management permission denied, the customer no longer sees the âPermission denied: the user does not have the manage permissionâ error instead of Plesk pages. We spotted this bug in the extension version 1.2.1. (EXTGIT-133)
Letâs Encrypt 2.13.0
1 April 2021
-
New domains can now be automatically secured during their creation in one of the following cases:
- The SSL It! extension is installed and enabled.
-
The
panel.ini
settingenable-securing-new-domain
is turned on. By default, the setting is turned off. To turn it on, add the following lines topanel.ini
:[ext-letsencrypt] enable-securing-new-domain = true
-
Starting with its next release, the extension will not be able to secure new domains during their creation. This feature will be available in the SSL It! extension only.
DigiCert SSL 1.10.0
1 April 2021
- The extension now shows a link to the page with a detailed explanation of how DigiCert validates organizations.(EXTPLESK-2548)
Git 1.2.1
30 March 2021
- Added a detailed error message shown if the extension cannot perform git push because git-auto-push was configured for an add-on domain moved to another subscription. (EXTGIT-123)
G Suite 1.0.4
26 March 2021
- Temporarily disabled creating new and transferring external G Suite subscriptions due to maintenance work.
Plesk Obsidian 18.0.34 Update 2
25 March 2021
-
Plesk Obsidian 18.0.34 and later behind Cloudflare with Rocket Loader enabled for a domain no longer shows empty customersâ and resellersâ pages. (PPPM-12844)
Note: Although the issue was fixed, we recommend that you disable Rocket Loader. It does not benefit Plesk in any way.
Linux
- Updating the Plesk server OS using dist-upgrade and updating Plesk Obsidian with Postfix installed to version 18.0.34 no longer breaks the Postfix configuration. (PPPM-12846)
- In Plesk Obsidian 18.0.34 and later, the Plesk administrator no longer receives daily emails from the Plesk cron task notifying that âls: cannot open directory /usr/lib64/httpd/modulesâ. (PPPM-12853)
- In Plesk Obsidian 18.0.34 and later, updating SpamAssassin rules no longer fails with the âchannel: no âmirrors.sought.rules.yerp.orgâ record foundâ error. (PPPM-12848)
- Updating Plesk Obsidian to version 18.0.34 no longer fails with the âPlesk database scheme was not upgraded completelyâ error if the Plesk server has the specific time zone set. (PPPM-12837)
Letâs Encrypt 2.12.7
24 March 2021
- The extension now shows the âRenewâ button instead of âInstallâ if a domain is already secured with a Letâs Encrypt certificate. (EXTLETSENC-971)
Grafana 1.2.2
19 March 2021
Windows
- Security improvements.
- Updating Grafana to version 7.4 and later no longer breaks the extension. (EXTPLESK-2499)
- During its installation, the extension now downloads the latest stable Grafana version. (EXTPLESK-2509)
SSL It! 1.7.9
17 March 2021
- The extension now correctly processes certificates with more than one domain name in CN. (EXTSSLIT-1396)
- The extension no longer incorrectly automatically resets the wildcard certificate assigned to a subdomain to âNoneâ. (EXTSSLIT-1084)
- Paid certificate orders will no longer disappear if users try to issue another certificate in a second browser tab opened before. (EXTSSLIT-1419)
Sectigo SSL 1.2.1
17 March 2021
- Wildcard certificates from Sectigo now secure webmail on domains. This improvement comes into effect as soon as the SSL It! extension version 1.7.9 is released.
DigiCert SSL 1.9.6
17 March 2021
- Wildcard certificates from Digicert now secure webmail on domains. This improvement comes into effect as soon as the SSL It! extension version 1.7.9 is released.
Transfer of DNS Records 1.0.1
12 March 2021
- The extension has been localized into 31 languages: Arabic, Catalan, Chinese Simplified, Chinese Traditional, Czech, Danish, Dutch, Filipino, Finnish, French, German, Greek, Hebrew, Hungarian, Indonesian, Italian, Japanese, Korean, Malay, Norwegian Bokmal, Polish, Portuguese, Portuguese, Brazilian, Romanian, Russian, Spanish, Swedish, Thai, Turkish, Ukrainian and Vietnamese.
- Administrator and resellers can now import DNS zones for all domains they have permissions for, not just domains they own.
- Improved the UI text.
DigitalOcean DNS 1.3.0
12 March 2021
- The extension now shows a warning if a custom backend script is not properly configured and offers to configure it if necessary.
- A link to the extension was added to the left menu in Power User mode.
- Updated links to the documentation.
Grafana 1.2.1
11 March 2021
- Clicking the âFix installationâ button on the extensionâs main page now correctly reinstalls Grafana packages if they were removed for some reason. (EXTPLESK-1999)
DigiCert SSL 1.9.5
11 March 2021
- The extension now shows correct statuses of www and wildcard components when wildcard certificate is installed. (EXTPLESK-2097)
- The extension now validates domain correctly while a certificate is being issued. (EXTPLESK-2361)
Plesk Obsidian 18.0.34
9 March 2021
-
Added the Recycle Bin to File Manager. Users can now restore files deleted by mistake from the Recycle Bin.
The Recycle Bin is turned off by default. To turn it on, add the following lines to the panel.ini file:[fileManager] trash.enabled = true trash.folder = .trash ; the name of the the Recycle Bin folder
The Recycle Bin appears when a user deletes a file and chooses not to delete it permanently.
-
The âDNS Helperâ and âPublicly resolvable temporary domain nameâ features introduced in Plesk Obsidian 18.0.32 will be enabled by default strating with Plesk Obsidian 18.0.34. To disable the features, add the following lines to the panel.ini file:
[dns] enableResolveChecking = false ; disables resolve checking showDnsHelper = false ; hides DNS Helper [techDomain] subdomain.enabled = false ; removes the ability to create technical domains
- Even if no DNS server is installed, Plesk will now show the information about configuring DNS for domains that could not be resolved.
- Significantly sped up Plesk initialization and post-install configuration.
- Revamped file editing in File Manager. Users now edit files in a drawer instead of going to a new page.
- The image preview feature in File Manager works again in Plesk and the feature no longer needs the Image Preview extension. If the Image Preview extension is installed, updating Plesk to version 18.0.34 will remove the extension.
- Plesk UI notifications on ModSecurity rule set updates are no longer enabled by default. The Plesk administrator now explicitly turns on the notifications if necessary.
- If the Comodo rule set is not available for download because of an issue on the waf.comodo.com side, Plesk now shows an error message that describes what users can do.
- Tools & Settings > Active Plesk Sessions (under âSecurityâ) now differentiates sessions of the Plesk administrator and additional administrators. Additionally, Plesk now shows the âAnother user with the same username (admin) is already logged in to Pleskâ warning only if a user of the same type is logged in. (PPPM-6227)
- It is now possible to add a description to a domain when creating the domain via REST API. (EXTREST-127)
- The
plesk repair db
command can now fix the default certificate inconsistencies in the Plesk database. (PPPM-12795) - Plesk additional administrators can now change their passwords in Power User view. (PPPM-12316)
- After logging in to Plesk updated to the latest version, the âToo few arguments to function Plesk_Base_Utils_Http::getUserIp()âŠâ error is no longer occasionally shown. (PPPM-12696)
- It is now again possible to create backups stored in FTP storage. This feature was broken since Plesk 18.0.33. (PPPM-12699)
- Plesk sw-engine now correctly uses the system time zone defined in Tools & Settings > System time (under âGeneral Settingsâ) As a result, after the system time zone was changed, sw-engine now operates in the correct time zone and writes log entries that have the correct time. (PPPM-12543)
- In the output of the
secret_key
CLI utility, changed the âKeyâ field name to âKey IDâ to avoid user confusion. (PPP-52085) - The âUnable to extract
: To extract RAR archives, install UnRAR" error message now contains the correct link to the "How to install UnRAR" KB article. (PPPM-12550) - The Amazon S3 Backup extension now works with the S3-compatible storage Backblaze.
To ensure compatibility, the extension no longer sends the
RequestPayer
option by default. (EXTPLESK-2107) - Removed the bandwidth value validation from Plesk API RPC. (PPPM-12708)
- In Fail2Ban, a custom jail no longer disappears if it was saved with errors. We spotted this bug in Plesk 18.0.32 Update 2. (PPPM-12362)
- Installing an invalid Plesk license no longer makes the âLicense Managementâ page reload continuously. (PPP-51903)
- Getting a response to an XML API request sent to a Plesk server with a large number (100+) of secret keys or creating a new secret key on such a server no longer takes a disproportionately long time. (PPPM-12800)
Linux
- It is now possible to extract RAR archives in File Manager on RHEL-based Plesk servers with unar installed and unrar not installed.
- Apache graceful restart is now more stable and less likely to break Apache during log rotation.
- Plesk now shows only actually installed Apache module versions in Tools & Settings > Apache Web Server (under âGeneral Settingsâ).
- The
plesk repair mail <domain>
command can now repair a mailbox even if the mailbox automatic reply contains non-ASCII characters. -
Clean installations of Plesk 18.0.33 and later no longer have database inconsistencies. (PPPM-12806)
Note: If you got a new Plesk 18.0.33 or later, run the
plesk repair db
command to fix the inconsistencies. Updating Plesk to version 18.0.34 will not automatically fix them. - After a domain was deleted or its hosting type was changed to forwarding, the Plesk database no longer has
nginx.conf
records left. (PPPM-12758) - Users can no longer get Dr.Web notifications on the upcoming expiration of their Dr.Web license even though the license has already been updated in Plesk. (PPPM-12761)
- Applying the DNS template to all DNS zones no longer changes empty TTL values of the affected DNS records to
0
. (PPPM-12752) - If the âEnable email subaddressingâ option is disabled, it is not possible to create email addresses that contain special characters. If Plesk already has mailboxes whose email addresses contain special characters, it is not possible to enable the option. (PPPM-12781)
- In Plesk on Debian 10 with non-standard packages installed, the Plesk DNSSEC extension no longer fails to sign the domain DNS zone. (PPPM-12589)
- Plesk can now import MySQL dumps that have the
DEFINER
clause set. (PPP-52224) - After a subscription was suspended, the webmail page of the subscription no longer shows a confusing SSL warning. (PPPM-12580)
- Website preview now works if âTLS versions and ciphers by Mozillaâ of the SSL It! extension was enabled with the âModernâ option. (PPPM-12641)
- After Plesk Premium Antivirus was uninstalled, entries in
/var/log/maillog
can no longer contain thedrweb
handler. (PPPM-12719) - Making changes on the Tools & Settings > Mail Server Settings page no longer enables all inactive mailboxes. (PPPM-12753)
- In Plesk on Ubuntu, backup restoration no longer fails with the âUnrecognized option: â-dumps-root-dirââ error. (PPPM-12820)
- If the Plesk administrator password is too long, the Plesk mail service no longer occasionally stops working. (PPPM-12503)
- After updating Plesk Onyx 17.8 on Ubuntu with Postfix installed to Plesk Obsidian, the Postfix logs no longer contain compatibility warnings. (PPP-46809)
- DHE ciphers are now again available for sw-cp-server and nginx. (PPPM-11435)
- Plesk now regards PHP 8 as a secure handler. A change of the service plan PHP version from 7.4 to 8.0 no longer causes the âConflicts with the server-wide security policyâ message to be shown. (PPPM-12731)
- In Plesk on CentOS 7, updating Plesk licences can no longer occasionally fail with the âfloatFractionPart: Assertion value < 1.0â failedâ error. (PPPM-12445)
- Update of Plesk Obsidian that has a large number of created secret keys (more than 20000) to version 18.0.34 now takes less time. (PPPM-12722)
Windows
- Microsoft IIS Compression is now shipped with Plesk.
- It is now possible to connect to a Plesk server connected to Active Directory via FTP using just the login and password of an FTP user
(for example,
john_doe
as an FTP login instead ofPlesk_server_hostname\john_doe
previously). - If âMaximum CPU usageâ for the IIS dedicated pool (in service plan or domain settings) has a set value, turning off the pool no longer resets the maximum CPU usage value to âUnlimitedâ. (PPPM-10314)
- Plesk now propagates TTL values of DNS records to Simple DNS Plus. (PPPM-12766)
- After the website PHP handler was changed to another version, the website FastCGI application of the previous PHP handler version is now removed. (PPP-51988)
- Restoring a subscription no longer occasionally causes the âCall to a member function getType() on nullâ warning. (PPPM-12712)
- Backups are now longer occasionally restored with the âUnable to restore the configuration of the error documents.â warning shown. (PPPM-12710)
- Sped up how fast Plesk loads the mailbox setting page. (PPPM-12693)
- Configured mail autodiscover no longer occasionally blocks access to Plesk. (PPPM-12767)
- Plesk Reconfigurator that failed to change virtual host locations can no longer stop IIS, misconfigure all websites in Plesk, and make them unavailable. (PPPM-12707)
- Plesk Reconfigurator now correctly changes the server IP address: the DNS server zones contain records with the new IP and the DNS server can resolve the new IP. (PPPM-12718)
Third-Party Component Updates
Linux
- Updated PHP used by Plesk to version 7.3.27.
- Updated Roundcube to version 1.4.11.
- Updated Postfix to version 3.5.9.
- Updated Horde to fix a security issue. We strongly recommend that you update Plesk.
- Updated IMP to version 6.2.27.
Windows
- Updated ASP.NET Core 5.0 to version 5.0.3.
- Updated ASP.NET Core 3.1 to version 3.1.12.
- Updated ASP.NET Core 2.1 to version 2.1.25.
- Updated Horde PHP to version 7.3.
- Updated Horde IMP to version 6.2.27.
- Updated the Horde_Text_Filter library to version 2.3.7.
- Updated Git to version 2.30.0.2.
- Updated PHP used by Plesk to version 7.4.15.
OneAll Social Login 1.2.2
9 March 2021
- The extension now makes it possible to log in to Plesk via social network accounts. (EXTPLESK-2457)
Advanced Monitoring 1.4.2
9 March 2021
- Improved the fidelity of the displayed graphs by showing undefined values as 0 instead of not showing them at all.
- Clicking âFix installationâ in Advanced Monitoring now properly fixes the installation if Grafana was removed from the server. (EXTPLESK-1949)
- CPU usage data is now shown in percentages instead of microseconds. (EXTPLESK-2337)
Linux
- Plesk administrator can now enable comparison between subscriptions without enabling integration with customersâ subscriptions. (EXTPLESK-2377)
DigitalOcean DNS 1.2.4
26 February 2021
- Exceeding 200 domains no longer blocks the extension functioning and does not lead to the API rate limit issue. (EXTPLESK-2450)
Amazon RDS 1.0.3
26 February 2021
- All Amazon regions are now present in the extension. (EXTPLESK-2446)
- Changing the Plesk administratorâs interface language can no longer break the extension interface. (EXTPLESK-990)
Plesk Obsidian 18.0.33 Update 1
25 February 2021
- Security improvements.
- The âChange Viewâ button in the bottom left corner of the screen is now again available for resellers. The button was absent from the reseller interface starting with Plesk Obsidian 18.0.32. (PPP-52256)
SSL It! 1.7.8
20 February 2021
- Security improvements
- The extension can now secure the www subdomains of domain aliases with wildcard SSL/TLS certificates. (EXTSSLIT-1370)
- The extension now saves issued valid SSL/TLS certificates in the extension storage even if the certificate installation failed for some reason. The extension can try installing the SSL/TLS certificates from the storage later. (EXTSSLIT-1378)
- The âKeep securedâ task now writes entries with correct domain names to
panel.log
. (EXTSSLIT-1373)
Sectigo SSL 1.2.0
20 February 2021
- Domains are now secured with temporary DV certificates while ordered OV/EV certificates are being issued.
- Users can now change their domain control validation (DCV) method via the Sectigo web interface.
WordPress Toolkit 5.3.3
18 February 2021
- Autoupdate task no longer fails with PHP fatal error under certain circumstances. (EXTWPTOOLK-6454)
WordPress Toolkit 5.3.2
17 February 2021
- Updates no longer fail to be installed on sites with more than 30 plugins and themes. (EXTWPTOOLK-6445)
Transfer of DNS Records 1.0.0
17 February 2021
- Initial release. The extension works in Plesk Obsidian 18.0.33 and later.
G Suite 1.0.3
17 February 2021
- If the extension does not support a userâs G Suite subscription plan, the transfer of the subscription now changes the user plan to the the most suitable supported plan (G Suite Basic, G Suite Business, or G Suite Enterprise).
WordPress Toolkit 5.3.1
16 February 2021
- When copying data between sites, âRemove missing filesâ and âReplace files modified on targetâ options are now working correctly again. (EXTWPTOOLK-6426)
WordPress Toolkit 5.3.0
15 February 2021
- The
wp-cli
utility was updated to the latest version, so WordPress Toolkit now works on PHP 8. Yay! On the other hand, minimum PHP version supported by WordPress Toolkit is now PHP 5.4, so websites working on PHP 5.2 and PHP 5.3 cannot be managed by WordPress Toolkit anymore. - WordPress Toolkit now supports new autoupdate defaults introduced in WordPress 5.6. Autoupdate settings on new WP 5.6 installations are now set to âmajor and minor updatesâ by default. Existing WordPress installations updated to version 5.6 will keep their previous autoupdate settings.
- New WordPress 5.6 installations managed by WordPress Toolkit are not using the
WP_AUTO_UPDATE_CORE
constant for configuring autoupdate settings anymore. Existing WordPress installations updated to 5.6 will keep the constant inwp-config.php
file until autoupdate settings are changed. The only exception to both these cases is complete disabling of all autoupdates, which will still require WordPress Toolkit to add the constant towp-config.php
. - WordPress Toolkit now identifies and visually marks websites using unsupported version of WordPress, outdated (EOLed) version of PHP, or unsupported version of PHP.
- It is now possible to clone websites with defined
DEFINER
clause in the database dump. If you were ever given issue ID EXTWPTOOLK-946 by our support team for tracking purposes, itâs time to rejoice. - WordPress Toolkit no longer adds
WP_AUTO_UPDATE_CORE
constant towp-config.php
file during operations not initiated by the customer (like checks for availability of updates, and so on). This constant will be added only after site admin has explicitly modified WordPress autoupdate settings. - WordPress Toolkit now tries its best to create site screenshots for quarantined and otherwise unsupported sites.
- Site list loading speed was increased.
- WordPress sites with very long rows in the database can now be properly cloned. (EXTWPTOOLK-939)
- Plugins are now installed with locale matching current WordPress site locale, if possible. (EXTWPTOOLK-5167)
- WordPress Toolkit can now properly work with sites that have filters and closing PHP tags in
wp-config.php
. (EXTWPTOOLK-4104) - It is now possible to clone sites with large database tables without encountering the âGot packet bigger than âmax_allowed_packetâ when dumping tableâ error. (EXTWPTOOLK-5778)
- It should now be possible to clone sites with huge (>10 GB) database tables without encountering the 504 error when opening the cloning screen. (EXTWPTOOLK-5154)
- The field formerly known as Login URL had its name and hint text updated to clarify that you donât need to specify the full URL here, only the suffix. (EXTWPTOOLK-6107)
- It is now possible to copy data from a site if it has files containing spaces in their names. (EXTWPTOOLK-6360)
- WordPress Toolkit now displays a nicer error message when it cannot install the remote management plugin on a site due to
upload_max_filesize
restrictions on a remote server. (EXTWPTOOLK-6157) - Maintenance log no longer contains exceptions if thereâs at least one remote site connected via plugin on the server. (EXTWPTOOLK-6083)
- Advisor measure âTurn on security autoupdatesâ can now be applied even if certain sites in the list are broken. (EXTWPTOOLK-6208)
PHP Updates
8 February 2021
- Updated PHP 8.0 to version 8.0.2.
- Updated PHP 7.4 to version 7.4.15.
- Updated PHP 7.3 to version 7.3.27.
Linux
- Updated PHP used by Plesk to version 7.3.27.
- Updated Redis to version 5.3.3 for PHP 7.3, 7.4, 8.0.
- Updated Archive_Tar to version 1.4.12 for PHP 7.3, 7.4, 8.0.
DigitalOcean DNS 1.2.3
8 February 2021
- The extension again correctly syncs Plesk NS records for vanity and branded nameservers with the DigitalOcean DNS service. (EXTPLESK-2403)
Letâs Encrypt 2.12.5
3 February 2021
- It is now possible to secure the www subdomains of domain aliases with wildcard SSL/TLS certificates. The fix works for the standalone Letâs Encrypt extension only. For Letâs Encrypt in the SSL It! extension, the issue still remains and will be fixed later. (EXTLETSENC-568)
- It is now possible to secure the Plesk login page with an SSL/TLS certificate if the server hostname is set up as the custom Plesk login URL, while another domain is set up as the default one for the server IP address. (EXTLETSENC-980)
- The extension now shows a clear error message if an SSL/TLS certificate cannot be issued because of misconfigured IPv6 addresses. (EXTLETSENC-752)
Site Import 1.4.7
1 February 2021
- Migration can no longer fail with the âPleskAPIInvalidSecretKeyExceptionâ error. (PMT-4890)
SEO Toolkit 1.1.13
1 February 2021
- Log Analyzer can no longer get stuck in an infinite loop being constantly loaded. (XOVI-3738)
- Resolved Side Audit issues that happened during the quick check. (XOVI-3049)
- Fixed value formatting in Rank Tracker on the Position Trend chart.
- Fixed PHP notifications in log files. (XOVI-3635)
Sectigo SSL 1.1.0
1 February 2021
-
Extended the list of certificates available for purchase by adding the following ones:
- PositiveSSL EV (EV certificate)
- InstantSSL (OV certificate)
- InstantSSL Wildcard (wildcard OV certificate)
SSL It! 1.7.7
29 January 2021
- Added the certificate products coming in the next Sectigo SSL release to the default list.
- Resetting the list of certificate products to the default value via the CLI no longer fails. (EXTSSLIT-1369)
Repair Kit 1.2.3
27 January 2021
- If iotop is absent from the server on which Plesk is being installed, this no longer stops installation of Repair Kit and correspondingly installation of Plesk. (EXTPLESK-1827)
- Fixed the output of the
plesk ext repair-kit --help
command. (EXTPLESK-1703) - Repair Kit now actually fixes the database inconsistencies. (EXTPLESK-1570)
- Fixed the incorrect use of the term. Repair Kit in Power User view now shows the term âwebspaceâ instead of âsubscriptionâ. (EXTPLESK-816)
Advanced Monitoring 1.4.1
27 January 2021
Windows
- The extension no longer writes the errors about the missing
resctrl
service tophp_error.log
. (EXTPLESK-2341)
Plesk Email Security 1.1.11
27 January 2021
Linux
-
Added an option to change the number of concurrent Amavis processes to the server settings. The default number is 10. Adjust it according to the server activity, available resources, and your MySQL configuration. If the number is too low, then not all emails can be processed directly on a busy server. If the number is too high, then a high load may occur on the MySQL database.
Note: A change of the number restarts Amavis and Postfix.
- Added the forced expiry check call (the
--force-expire
option) to the daily Bayes train cron. The call forces the database sync and the expiry run. - Added a check for Sieve rules containing the âX-Spam-Flagâ keyword to avoid conflicts with the rule necessary for the extension.
Plesk Obsidian 18.0.33
26 January 2021
- Plesk now supports MySQL 8 as the local (Plesk for Linux) and the remote database server. To learn how to switch the Plesk local database server to MySQL 8 or to perform a clean installation of Plesk on a server with MySQL 8, refer to this KB article.
-
It is now possible to hide the controls related to Plesk updates (âCheck for updatesâ and the âUpdate Pleskâ buttons/links) on the Home page (in Service Provider view) and on the Websites & Domains screen (in Power User view).
To hide the controls, add the following lines to the panel.ini file:
[updates] showControls = false
-
It is now possible to hide plesk.com in the Plesk page footer. To do so, add the following lines to the panel.ini file:
[promos] pleskFooter = false
- Added the âDatabase managementâ checkbox to Restricted Mode. Selecting the checkbox hides the âDatabase managementâ controls in the Plesk interface and prohibits the database management.
- Manual setup of email clients now shows the information about the required mail ports and their differences.
- Starting with this update, the Plesk database stores hashes of secret keys used to authenticate API requests rather than ciphertexts. This way, even if a threat actor were to read the Plesk database, they would no longer be able to retrieve any information that would allow them to authenticate via API.
-
Security improvements.
Note: Special thanks to Tarek Bouali (@iambouali) for reporting a security issue.
- Improved the Plesk interface and texts on the âDNS Settingsâ (domains) and DNS Template > Zone Settings Template (the Plesk server) screens. It should more clear now which field manages the default TTL value for the zone.
- If the reseller login consists of 10 digits (
1234567890
), the resellerâs incremental backups no longer have the size of the full backup. (PPPM-12533) - XML API requests now return the correct number of subdomains in a subscription. (PPPM-12592)
- It is now possible to upload a logo file in the SVG format in Tools & Settings > Branding (under âPlesk Appearanceâ). (PPPM-12339)
- The âUpdate Domain Statusâ event is no longer run daily when the domain status does not change (for example, when the subscription the domain belongs to is suspended). (PPPM-12644)
- Backing up to Dropbox no longer shows the checksum warning message. (PPPM-12583)
- It is now possible to set the Plesk language and the description for a customer via REST API. (PPPM-12596)
- Plesk now preserves custom mailbox size and units of measurements and does not reset them each time the mailbox page is opened. (PPPM-12647)
- The mail autodiscover feature disabled on the Plesk server can no longer cause issues for resellersâ subscriptions (previously resellersâ subscriptions could be locked and could not be synced again). (PPPM-12661)
- The additional user with the single âManage DNS settingsâ permission can no longer see logs. (PPPM-12630)
- File Manager is now opened faster when displaying a large number of files whose extensions are not hardcoded (for example, .exe or .pdf). (PPPM-12635)
- File Manager is now opened significantly faster when displaying a large number of DLL files (more than 300). (PPPM-12634)
- It is now possible to create DNS records that contain placeholders in the middle. (PPPM-12521)
- If a Plesk license was terminated on a server, the customers no longer receive daily repetitive notifications of resource overuse. (PPPM-12636)
- It is now possible to use the Amazon RDS Integration with MariaDB engine. (PPPM-12645)
- The Contact Support button in Tools & Settings > Support (under âAssistance and Troubleshootingâ) > âContact support without generating a technical report.â now redirects to the correct Plesk Support URL. PPP-51824)
Linux
-
Added Brotli support to nginx.
Brotli compression is enabled by default.
To disable Brotli on a single domain, specify
brotli off;
in additional nginx directives.To disable Brotli globally, either specify
brotli off;
in/etc/nginx/conf.d/yy000_brotli_tweaks.conf
or run theplesk bin nginx -d brotli
command. - Dropped support for Red Hat Enterprise Linux 6.
- Dropped support for Apache 2.2 and Apache mod_rpaf module (as a part of the change mentioned above).
- It is now possible to add a CNAME record pointing to another CNAME record. (PPP-49117)
- If PHP support was disabled in an add-on plan, the add-on PHP settings can no longer be applied to a subscription in any way. For example, assigning the add-on plan to the subscription will not change the subscription PHP settings. (PPP-49098)
- After installation of or upgrade to Plesk Obsidian, the
plesk repair fs
command no longer mistakenly detects files with the incorrect permissions in/var/log/plesk
. (PPPM-12584) - In Plesk on CentOS 7 with PHP from the OS vendor, the Apache module php5 can now be enabled or disabled. (PPPM-12628)
- IMAP and POP3 mail accounts configured in Outlook now correctly show emails with UTF-8 characters. The related âYour E-mail reader did not enable Unicode supportâ error message is no longer shown. (PPPM-12639)
- If Plesk Obsidian was upgraded from Plesk Obsidian 18.0.30 and earlier, the nginx cache size equal to
0
can no longer break the nginx configuration. (PPPM-12605) - The login name length of password-protected directory users can now be up to 32 characters. Backup restoration no longer throws an error if the password-protected directory login name contains more than 20 characters. (PPPM-12409)
- Improved an error message shown in an attempt to enable Fail2Ban when Plesk does not have Fail2Ban installed. (PPP-51635)
- If web statistics are not generated properly, customers can now understand why because AWStats errors are now logged
and customers can see them in the
panel.log
file (if theshow.util_exec_io
setting is set totrue
in the panel.ini file). (PPPM-9832) - Plesk administrators can no longer set a rule in the Plesk Firewall that blocks themselves and, as a result, can no longer lose access to the Plesk interface. (PPPM-12469)
- The server shutdown in Tools & Settings > Shut Down Server (under âServer Managementâ) is now executed immediately on the same page after confirmation. The server can no longer be shut down twice if the Plesk administrator kept the shutdown link in the browser and refreshed it after the first shutdown. (PPPM-12091)
- In ModSecurity, the switch from the Atomic Standard to the Comodo rule set no longer causes false-positive bans. (PPPM-12291)
- Plesk Reconfigurator no longer fails if msmtp is installed. (PPPM-12662)
- Migration or backup restoration now preserves the mailbox antivirus settings. (PPPM-12378, PPP-50311)
- Upgrade to Plesk Obsidian from Plesk Onyx on a Debian-based OS can no longer make phpMyAdmin inaccessible. (PPPM-12509)
Windows
- In Plesk 17.8 on Windows Server 2012 R2, the Tools & Settings > Updates (under âPleskâ) page no longer hinders customers from upgrading to Plesk Obsidian. The page occasionally got stuck in an infinite loop and was constantly refreshed. (PI-603)
- Absence of the Plesk
\etc\plesk-release
file now throws an error and stops the non-interactive upgrade because such upgrade could make Plesk inaccessible. (PPPM-12581) - SpamAssassin no longer fails to learn if the autogenerated password for the
sa_bayes
database contains the hash character (#
). (PPPM-12579) - It is now possible to change the
\vhosts
folder location using Plesk Reconfigurator. (PPPM-12649) - It is now possible to create a mailbox via the CLI if Auth Policy Status is enabled in MailEnable. (PPPM-12595)
- In Plesk on Windows Server 2012 R2, the Plesk login page can no longer open the default Plesk page after the login to Plesk because the login page does not redirect to HTTP instead of HTTPS. (PPPM-12660)
- File Manager now opens files using links in domain log entries without any issues. (PPPM-12675)
Third-Party Component Updates
- Marked PHP 7.2 as outdated because it reached end of life.
- Dropped support for Internet Explorer 11, which reached end of life.
Linux
- Updated Dovecot to version 2.3.11.3.
- Updated PHP used by Plesk to version 7.3.26.
- Updated Roundcube to version 1.4.10.
Windows
- Updated the Plesk Perl package to version 5.30.3.
- Updated OpenSSL to version 1.1.1i.
- Updated Git to version 2.29.2.3.
- Updated ASP.NET Core 5.0 to version 5.0.2.
- Updated ASP.NET Core 3.1 to version 3.1.11.
- Updated ASP.NET Core 2.1 to version 2.1.24.
- Updated Node.js 12 to version 12.20.1.
- Updated Node.js 10 to version 10.23.1.
- Updated PHP used by Plesk to version 7.4.14.
DigiCert SSL 1.9.4
21 January 2021
- The extension now shows correct statuses of the organization validation steps. (EXTPLESK-2343)
Amazon S3 Backup 1.4.3
20 January 2021
- After configuring the Amazon S3 Backup extension via the CLI, it is no longer shown as not configured in the Plesk interface. (PPPM-13332)
SSL It! 1.7.6
18 January 2021
- Temporarily disabled the session resumption option. (EXTSSLIT-1351)
- If a domain is without hosting and the mail service is disabled, the extension interface now shows the link to configure the mail settings to secure webmail with a certificate. (EXTSSLIT-1232)
DigitalOcean DNS 1.2.2
18 January 2021
- DNS records of Plesk domains can now be resynced with DigitalOcean DNS.
- Significantly improved the extensionâs performance.
- The DigitalOcean DNS extension now shows a warning if some DNS records were not synced. (EXTPLESK-1852)
Sectigo SSL 1.0.0
15 January 2021
-
Initial release. The extension gives the ability to buy SSL/TLS certificates from Sectigo in the SSL It! extension. At the moment, the following certificates are available for purchase:
- PositiveSSL (DV certificate)
- PositiveSSL Wildcard (wildcard DV certificate)
PHP Updates
12 January 2021
- Updated PHP 8.0 to version 8.0.1.
- Updated PHP 7.4 to version 7.4.14.
- Updated PHP 7.3 to version 7.3.26.
Linux
- Updated Xdebug to version 3.0.2.
Plesk Migrator 2.20.2
30 December 2020
- Improved processing of encrypted data in backups.
- Plesk Migrator no longer tries to migrate content of disabled mail accounts. (PMT-4756)
- Plesk Migrator no longer tries to migrate hidden Plesk extensions. (PMT-4790)
- Customersâ and resellersâ login names that contain digits are now shown in the Plesk Migrator interface. (PMT-4791)
- Improved mail migration stability. (PMT-4865)
Linux
- Plesk Migrator can now migrate databases whose tables have the ROW_FORMAT=FIXED option. (PMT-4814)
- Migration no longer fails when the HTTPD_VHOSTS_D variable contains capital letters. (PMT-4863)
Windows
- ODBC DSN connections are no longer false positively marked as âfailedâ after migration. (PMT-4824)
Advisor 1.8.3
24 December 2020
- The extension now suggests NTP time synchronization only on those OSes that support it. (EXTADVISOR-858)
WordPress Toolkit 5.2.4
23 December 2020
- WordPress Toolkit no longer adds
WP_AUTO_UPDATE_CORE
constant towp-config.php
file right after scanning process adds a WordPress installation. This constant will be added only after site admin has explicitly modified WordPress autoupdate settings. - WordPress Toolkit no longer adds irrelevant comment to
WP_AUTO_UPDATE_CORE
constant if itâs added towp-config.php
file. (EXTWPTOOLK-6060) - Notifications about quarantined WordPress sites are no longer sent for suspended or disabled domains. (EXTWPTOOLK-5398)
- Customized login URLs can now be properly opened in case of certain plugins. (EXTWPTOOLK-5555)
- Searching on the tabs Plugins or Themes will no longer affect displaying a list of sites. (EXTWPTOOLK-6112)
- While searching the list of sites, the irrelevant message âYou donât have WordPress sites connected yetâ will not be shown anymore if nothing was found. (EXTWPTOOLK-6111)
Advanced Monitoring 1.4.0
22 December 2020
-
Introduced the new âEnable integration with the Cgroups Managerâ feature available for Plesk installations where the Plesk Cgroups Manager license is installed.
With this feature, Plesk users can see how much resources their subscriptions consume. The Plesk administrator, in turn, can see and compare load between multiple subscriptions (up to 10).
The feature will be gradually turned on: first on Plesk servers that have fewer than 10 subscriptions. However, the Plesk administrator can turn on the feature for servers with a larger number of subscriptions by adding the following lines to the
panel.ini
file:[ext-monitoring] allowCgroupsManagerIntegration = true
- It is now possible to specify the default time range for all graphs in Advanced Monitoring (Settings > Parameters).
- Plesk UI âcriticalâ notifications related to Advanced Monitoring now contain recommendations on how to fix the reported issues.
- Clicking the âCheck server healthâ button in Plesk UI âOKâ notifications now leads to the correct Advanced Monitoring tab. (EXTPLESK-1990)
Plesk Obsidian 18.0.32 Update 2
22 December 2020
- Added the missing translations for certain UI messages. (PPP-51477)
Linux
- Installation or update of Plesk Obsidian 18.0.32 and later no longer fails on CentOS 8.3. (PPPM-12582)
- In Plesk Obsidian 18.0.32 and later, customers can now again manage per-site PHP performance and security settings of their subscriptions. (PPPM-12604)
Repair Kit 1.2.2
18 December 2020
- After the password of the Plesk database server was changed via the API, opening Tools & Settings > MySQL Process List (Beta) no longer shows an HTTP error 500. (EXTPLESK-1331)
- The interface of âDiagnose & Repairâ in âTools & Settingsâ can now show check results that contain a large number of detected issues. (EXTPLESK-1707)
- Sorting by columns now works in âMySQL Process List (Beta)â in âTools & Settingsâ. (EXTPLESK-1702)
- Improved the tooltip text shown for âProcess Listâ in the left navigation pane. (EXTPLESK-1871)
Linux
- âMySQL Process List (Beta)â in âTools & Settingsâ now correctly calculates the total RAM usage. (EXTPLESK-1854)
Windows
- If Plesk on Windows Server 2016 is opened with Internet Explorer 11, âMySQL Process List (Beta)â in âTools & Settingsâ no longer shows an empty screen. (EXTPLESK-1657)
Grafana 1.2.0
18 December 2020
-
Extended the Grafana extension API. The extension now provides the ability to do the following:
- Describe organization entities.
- Connect all previously implemented entities in the extension to user entities in Grafana.
Any changes made to the entities via the Grafana extension will be synced with Grafana as software.
Note: To enjoy new features of Advanced Monitoring version 1.4.0, which will be presented soon, you need to have the latest version of the Grafana extension.
- Internal and performance improvements.
- The extension no longer occasionally shows the âOAuthLoginâ error instead of Grafana graphs. (EXTPLESK-1236)
Diskspace Usage Viewer 2.0.9
17 December 2020
Linux
- Tightened restrictions for deleting files from the Plesk system directories.
Docker 1.4.7
15 December 2020
Linux
- After the extensionâs installation on CloudLinux 8, Red Hat Enterprise Linux 7, and Red Hat Enterprise Linux 8, the extensionâs interface is now available. (EXTDOCKER-114)
Plesk Obsidian 18.0.32 Update 1
14 December 2020
- Databases of applications installed on additional domains are now again backed up. (PPPM-12593)
- âWeb Statistics SSL/TLSâ and âWeb Statisticsâ now work again for subscriptions with several domains. (PPPM-12594)
Linux
- The
plesk repair fs
command now works again and does not fail reporting the issue with incorrect permissions in/var/log/plesk
. (PPPM-12584) - In Plesk Obsidian 18.0.32 and later, ModSecurity enabled with any rule set and in any mode no longer occasionally hangs
if Plesk was accessed via
https://<server-IP-or-hostname>
. (PPPM-12591) - In Plesk Obsidian 18.0.32 and later, switching to ModSecurity3 on nginx no longer shows false positive results when domains are actually incompatible with nginx settings and the web server configuration files can be broken. (PPP-51432)
- In Plesk Obsidian 18.0.32 and later, Apache configuration can no longer cause the
webAppFirewallSettings
variable error being shown in the Plesk interface. (PPPM-12586)
Plesk Obsidian 18.0.31 Update 3
9 December 2020
Linux
- Issued REST API secret keys now work again in Plesk Obsidian 18.0.31 and later. (PPPM-12569)
- Installation or update of Plesk Obsidian 18.0.31 no longer fails in non-interactive mode if the server OS is CentOS 8.2 or 8.3. (PPPM-12582)
Letâs Encrypt 2.12.4
8 December 2020
-
The extension can now automatically issue SSL/TLS certificates only for those domains that Plesk verified to be resolvable. Users will no longer see an error from Letâs Encrypt occurred when the extension failed to secure non-resolvable domains.
This improvement will be gradually turned on by default for all Plesk Obsidian installations.
Note: For this feature to work, add the following lines to the panel.ini file:
[dns] enableResolveChecking = true
SSL It! 1.7.5
8 December 2020
-
The extension can now automatically issue Letâs Encrypt SSL/TLS certificates only for those domains that Plesk verified to be resolvable. Users will no longer see an error from Letâs Encrypt that occurred when the extension failed to secure non-resolvable domains.
This improvement will be gradually turned on by default for all Plesk Obsidian installations.
Note: For this feature to work, add the following lines to the panel.ini file:
[dns] enableResolveChecking = true
Plesk Obsidian 18.0.32
8 December 2020
-
PHP 8.0 is now supported.
Note: PHP 8 is still very recent (it came out on November 26) and includes significant changes, including the removal of deprecated functions and changes to how code works.
Because of this, many PHP applications that were written for PHP 5 and PHP 7 may not work correctly with PHP 8. This includes WordPress, which will fix most (but not all) PHP 8 compatibility issues in version 5.6 that will be released on December 8.
PHP 8 will not be included into the âRecommendedâ installation set and wonât be installed on new servers or when updating to Plesk Obsidian 18.0.32.
-
DNS Helper - a new feature meant to help users understand that their domain does not resolve to the serverâs IP address and is inaccessible over the internet, and also to make it easier for them to make their domain resolve correctly. The feature will be rolled out to Plesk servers in waves. To enable it manually, add the following lines to the panel.ini file:
[dns] enableResolveChecking = true showDnsHelper = true
- Added a new CLI command
plesk checkupgrade
in both Plesk for Linux and Plesk for Windows. Running the command before updating Plesk checks for issues that may prevent the server from updating safely. - Added the support for ModSecurity 3 to nginx. ModSecurity 2.9 + Apache remains for now the recommended option. To switch to ModSecurity 3 + nginx, go to âTools&Settingsâ > âWeb Application firewallâ.
- Switching to ModSecurity 3 may hinder your existing applications. We strongly recommend trying ModSecurity 3 out on a test server before switching your production environment to that version.
- At the moment you can only choose the OWASP ruleset in the Plesk UI for ModSecurity 3. You can download the Comodo ruleset and upload it to Plesk as a custom ruleset. We plan to make it possible to enable the Comodo ruleset for ModSecurity 3 directly from the Plesk UI in Plesk Obsidian 18.0.33.
-
You can disable switching to ModSecurity 3 by adding the following lines to the panel.ini file:
[modSecurity] webServer.nginx = Off
-
This version introduces a guided onboarding workflow to help new users create their first website right after the new server initialization stage. Users can choose to start with a WordPress website, a PHP application, or a static HTML/CSS website. They can upload a website they already have or choose a sample website provided with Plesk. To disable this function, add the following lines to the panel.ini file:
[ext-onboarding] enabled = 0
- As of Plesk Obsidian 18.0.32, Internet Explorer 11 support has been deprecated and will be removed in Plesk Obsidian 18.0.33. Learn more.
- Red Hat Enterprise Linux 6 has entered the vendor end of support phase. Plesk Obsidian 18.0.32 is the last Plesk Obsidian version that supports that OS. Learn more.
- The File Sharing and Bandwidth Limiting (mod_bw) component has been removed. Learn more.
- The UX of renaming websites in Plesk has been improved.
-
A publicly resolvable temporary domain name can now be chosen during a websiteâs creation. The temporary domain name allows you to start working on a new project even if you have no registered domain name. The feature will be rolled out to Plesk servers in waves. To enable it manually, add the following lines to the panel.ini file:
[techDomain] subdomain.enabled = true
- The
<your_domain>
option is no longer marked as recommended in domainsâ hosting settings because selecting it can result in an infinite redirection loop under specific conditions. (PPP-50944) - Cloning a database from a local MySQL server to an external one no longer fails if a database with the same name as the one chosen for the cloned database exists on the local database server. (PPPM-12499)
- When creating a mail account, the âPasswordâ and âConfirm passwordâ fields are now correctly marked as required. (PPPM-12515)
- Updating a MySQL database userâs password via XML-RPC no longer returns a malformed response if the specified password does not meet the requirements of the server password strength policy. (PPPM-12393)
- Updating a subscriptionâs system user password via XML-RPC now correctly updates the password used to access web statistics for that subscription to the same value. (PPPM-12463)
- Running the
plesk bin domain -i
command for a domain now correctly shows the log rotation status (on or off) for that domain. (PPPM-12544) - Full backups are no longer created instead of incremental ones when backing up a subscription with an APS application installed if that applicationâs database is owned by a different subscription. (PPPM-12537)
- When viewing logs for a subscription, entries from custom logs added via âLogsâ > âManage Log Filesâ > âAdd Custom Logâ are no longer incorrectly filtered out. (PPPM-12554)
- Usable error message is now shown if the MySQL writer process is terminated during database cloning. (PPPM-12450)
- Restoring a subscription with the âDrupal-8.9.5-171â APS application installed from a backup no longer results in an error. (PPPM-12477)
- After renaming a PHP handler via the
plesk bin php_handler
command, the custom name is now shown in Plesk instead of the original name. (PPPM-12556) - Restoring a backup created on a Plesk server with a large (1000+) number of customers and/or subscriptions no longer fails with the âThe specified backup file is corrupted, modified, created on another server or in an earlier Plesk versionâ error. (PPPM-12461)
Linux
- Creating a domain for a subscription while simultaneously changing PHP settings for an existing domain belonging to the same subscription no longer results in both processes hanging endlessly. (PPPM-12447)
- When creating a subscription on a Plesk Obsidian server that was updated from an earlier Plesk version, the value of the âRestrict following symbolic linksâ parameter is now correctly passed from the service plan to the subscription. (PPPM-12532)
- Plesk no longer specifies excessively large
smtpd_proxy_timeout
andsmtpd_timeout
values in Postfix configuration files during Plesk installation or whenever theplesk repair mail
command is run. (PPPM-12236) - Running the
plesk repair mail -y
command for a domain no longer removes Postfix SSL configuration for that domainâs aliases. (PPPM-12103) - Opening âPHP Settingsâ for a domain no longer results in the âERROR: Method Smb_Form_Final_Web_PhpSettings::__toString() must not throw an exceptionâ error under specific circumstances. (PPPM-12456)
- Firewall rules can now be managed via the âFirewallâ extension on Plesk Obsidian servers running in VZ containers created from the
ubuntu-20.04-x86_64
OS template. (PPPM-12390) - On Debian 10 servers with the âmsmtpâ component installed, sending mail via an external SMTP server no longer results in an error. (PPPM-12540)
- On Debian 10 servers with the âmsmtpâ component installed, sending mail via an external SMTP server is now correctly logged to the
mail.log
file. (PPPM-12540) - On Plesk servers with Courier IMAP installed, all incoming emails are no longer duplicated for mail accounts that were disabled and then re-enabled. (PPPM-12530)
- Plesk now correctly reports CPU and memory usage for the MySQL (MariaDB) service. (PPP-50838)
- The
sw-cp-server
service no longer fails to reload or restart under specific circumstances. (PPPM-12525) - On Plesk servers with the âPlesk Web Server Configuration Troubleshooterâ component installed, running the
plesk repair web -n
command no longer results in the misleading âProblem with nginx default limit for open files is possibleâ error. (PPPM-12453) - SDK and internal Plesk utilities no longer treat directories with special bits as files instead of directories. (PPPM-12573)
- On Plesk servers with the âFix incorrectly set sender for outgoing mailâ option enabled in âTools & Settingsâ > âMail Server settingsâ and outgoing mail control enabled and set to unlimited, sending mail no longer results in the âError during âlimit-outâ handler handlers_stderr: ERROR:main:list index out of rangeâ error being written to the mail log. (PPPM-12448)
- It is no longer necessary to reload the page after Plesk initialization to log in if the WebSocket service is stopped on the server. (PPPM-12377)
- Autoresponder now sends replies correctly to messages with national characters in the mail header. (PPPM-11553)
- The âTools&Settingsâ > âServices Managementâ page no longer becomes unresponsive for a long time when starting or stopping certain services (for example, nginx). (PPPM-12252)
- Plesk Installer logs are now rotated correctly if the
/root/.autoinstallerrc
file contains the line âSEPARATE_LOGS=âyesââ. (PPP-47902) - Changing an IP address on a Plesk server no longer causes issues with sending mail if the old IP address was selected in âTools&Settingsâ > âMail Serverâ > âOutgoing mail modeâ > âSend from the specified IP addressesâ. (PPPM-12466)
Windows
- Security improvements.
- Plesk no longer assigns the system privilege âReplace a process level tokenâ to IIS users created by Plesk. We believe this to be a more secure configuration, despite it being recommended by Microsoft.
- Plesk also explicitly removes the privilege âImpersonate a client after authenticationâ from IIS_IUSRS group. We believe this to be a more secure configuration, despite it being recommended by Microsoft.
- On Plesk servers with SmarterMail version 100.0.7593 or later installed, creating a backup including one or more subscriptions with mailboxes no longer fails with the âUnable to back up mail messages. Error: Failed to list mail messagesâ error. (PPPM-12454)
- Creating scheduled backups in FTP storage no longer intermittently fails with the âUnable to validate the remote backup. It may not be restored.â error. (PPPM-12482)
- Runnig the
repair fs -y
command using the name of an add-on domain as the argument now shows a recommendation to use the name of its parent domain instead. (PPPM-12505) - During the cloning procedure, the MySQL root user password is now correctly changed. (PPPM-12320)
- Changing ASP.NET settings for a domain no longer results in the âassembliesâ node in the domainâs
web.config
file getting removed. (PPPM-12561) - Changing ASP.NET settings for a domain no longer results in the âauthenticationâ node in the domainâs
web.config
file getting duplicated.(PPPM-12568) - Changed ASP.NET settings for a domain no longer reset to the default value the âconfigurationâ element in the domainâs
web.config
file has the âxmlnsâ attribute. (PPPM-12555) - Folders named âtmpâ can now be created, copied, moved, or deleted in File Manager. (PPPM-12443)
- Plesk migration no longer gets stuck for a long time on the âFetch configuration data from Plesk serversâ step. (PPPM-12552)
- Running
plesk repair ftp
on a server behind NAT no longer results in an unnecessary warning. (PPPM-12520)
Third-Party Component Updates
Linux
- Updated PHP used by sw-engine to version 7.3.25.
- Updated ionCube loader for PHP 7.2, 7.3, 7.4, and also for PHP used by Plesk to version 10.4.5.
Windows
- ASP.NET Core 5.0 is now supported.
- Updated ASP.NET Core 3.1 to version 3.1.10.
- Updated ASP.NET Core 2.1 to version 2.1.23.
- Updated PHP used by plesk-engine to version 7.4.13.
- Updated MariaDB 10.5 to version 10.5.8.
- Updated MariaDB 10.3 to version 10.3.27.
- Updated Node.js 12 to version 12.19.1.
- Updated Git to version 2.29.2.2.
Google PageSpeed Insights 2.1.6
4 December 2020
- Improved statistics handling to avoid too many log entries.
- Updated the
cacert.pem
file to the latest version provided by Mozilla. - Fixed handling of the response from the new API version in the scheduled task.
WordPress Toolkit 5.2.2
2 December 2020
- Log In link on domain overview page in Active List now works properly. (EXTWPTOOLK-6049)
WordPress Toolkit 5.2.1
1 December 2020
- Website screenshots no longer have to be regenerated after the update to WPT 5.2. (EXTWPTOOLK-6048)
SSL It! 1.7.4
1 December 2020
- Accessing the SSL It! page for a domain no longer results in a 500 error if the product that was used to secure the domain has since been disabled in the SSL It! product list. (EXTSSLIT-1287)
Plesk Obsidian 18.0.31 Update 2
30 November 2020
- Security improvements.
- Creating a mail account as a customer when the âAll subscriptionsâ option is selected in the subscription selection menu no longer fails with the âThe specified limit is invalidâ error. (PPP-50987, PPP-51161)
WordPress Toolkit 5.2.0
30 November 2020
- Resellers now have their own plugin and theme sets.
- It is now possible to choose which theme should be activated upon the installation of a set. This functionality is available both in UI and CLI. As a bonus, similar functionality is now also available for plugins in sets.
- Users will now see a visual indication next to âCheck Updatesâ link if thereâs a Smart Update test run that was completed and is now waiting for user review.
- WordPress Toolkit now fully supports plugins and themes with underscore symbol in their name. Users of
js_composer
plugin, rejoice! - CentOS 8 support was added.
- CloudLinux 8 support was added.
- Rules added by WordPress Toolkit to web server config files now have short descriptions explaining what they do.
- (cPanel) A simple dashboard that lists all WordPress Toolkit Deluxe accounts was added. This dashboard can be opened from the âSettingsâ screen.
- WordPress site management interface is now expanded by default after a site is installed or cloned.
- (cPanel) Multiple performance improvements.
- Checkbox for selecting all sites in the list no longer looks always selected if WordPress Toolkit license is not available. (EXTWPTOOLK-5654)
- Ugly placeholder is no longer displayed in place of WordPress site title if the site was installed with empty âWebsite titleâ field. Now users will see a better-looking placeholder! (EXTWPTOOLK-5793)
- âAutoupdate settingsâ screen no longer works in a weird way if there is more than one site in the list. (EXTWPTOOLK-5983)
- Backup task no longer blows up the interface if current disk space quota is not enough to finish the backup. (EXTWPTOOLK-5784)
- Smart Updates had their optimism reduced and no longer provide false negative prognosis under certain circumstances. (EXTWPTOOLK-6024)
- Smart Updates no longer confuse what exactly needs to be updated during mass updates if âUpdatesâ screen was refreshed after item selection. (EXTWPTOOLK-5761)
- Unclear error sometimes shown during a failed installation of a WordPress site finally became a pretty clear error after all. (EXTWPTOOLK-5133)
- (cPanel) WordPress Toolkit now properly uses session locale settings, displaying the interface in the expected language. (EXTWPTOOLK-5818)
- (cPanel) Renaming user account via âRename prefixed databases and database usersâ option now properly updates database prefix of WordPress sites installed in subdirectories. (EXTWPTOOLK-5632)
- (cPanel) WordPress Toolkit Deluxe is no longer incorrectly disabled in the default feature list during WordPress Toolkit update, if it was enabled before. (EXTWPTOOLK-5893)
- (cPanel) It is now possible to create a new domain in cPanel with WordPress Toolkit on CloudLinux 7 if there are more than, uhh, 1280 domains on the server. (EXTWPTOOLK-5989)
- (cPanel) Site administrator email is now generated using parent domain name during WordPress installation on a wildcard domain via CLI. (EXTWPTOOLK-5618)
- (cPanel) Server administrators will no longer be annoyed by the âno packages marked for updateâ email message on a daily basis. (EXTWPTOOLK-6009)
- (cPanel) WordPress Toolkit now can be installed if
tty
is required in/etc/sudoers
defaults. (EXTWPTOOLK-5876) - (Plesk) Infinite redirection no longer occurs when opening website if preferred domain was changed after WordPress installation. (EXTWPTOOLK-478)
PHP Updates
30 November 2020
- Updated PHP 7.4 to version 7.4.13.
- Updated PHP 7.3 to version 7.3.25.
Linux
- Updated Xdebug to version 3.0.0 for PHP 7.4, 7.3, and 7.2.
- Updated Archive_Tar to version 1.4.11 for PHP 7.4, 7.3, and 7.2.
- Updated ioncube loaders to version 10.4.5 for PHP 7.4, 7.3, and 7.2.
- Updated Redis to version 5.3.2 for PHP 7.2.
DigiCert SSL 1.9.3
27 November 2020
- Customers can now choose methods of domain control validation (DCV).
- Customers now receive more detailed information about DigiCert organization validation process.
- Customers now see a suggestion to turn off a 301 redirect from HTTP to HTTPS to pass DCV while a certificate is being issued.
Letâs Encrypt 2.12.3
24 November 2020
- The extension no longer sends repetitive email notifications about usage of the deprecated API protocol. (EXTLETSENC-945, EXTLETSENC-946)
Plesk Email Security 1.1.10
24 November 2020
Linux
- Limited socket bind to the loopback interface (local IPv4 address). (EXTCERT-3226)
SSL It! 1.7.3
23 November 2020
- The extension no longer sends repetitive email notifications about usage of the deprecated API protocol. (EXTSSLIT-1263)
- The extension can no longer incorrectly treat DigiCert Wildcard OV certificates as DV ones. (EXTSSLIT-1173)
Diskspace Usage Viewer 2.0.8
19 November 2020
Linux
- The extension now calculates the block size instead of the apparent size. (EXTCERT-3206).
Node.js 1.4.0
16 November 2020
- Removed a non-existent Plesk class from the extension. The extension is no longer occasionally broken with the âClass âCommonPanel_Validate_FileSharing_FolderNameâ not foundâ error. (EXTNODEJS-128)
My Start Page 1.1.1
12 November 2020
- The absolute URL is now used for redirect to avoid redirect errors.
Plesk Obsidian 18.0.31 Update 1
10 November 2020
- Security improvements.
- Updates of WordPress Toolkit installations in Plesk Obsidian 18.0.31 no longer cause the âArgumentCountError: Too few arguments to function CommonPanel_Aps_Model::logAction()â errors in the Plesk log. (PPP-50964)
Plesk Email Security 1.1.9
9 November 2020
Linux
- Completely revised the statistics functionality to speed up the calculation to avoid timeouts or blank pages. (EXTCERT-3157)
- Reverted the hostname in the Amavis configuration file to localhost and
enabled httpd_can_network_connect_db
policy for SELinux. If you still encounter database connection issues, then disable enforcing mode in SELinux. (EXTCERT-3178) - Fixed the saving process of custom settings if an email address contains the & (ampersand) character. (EXTCERT-3177)
WordPress Toolkit 5.1.1
5 November 2020
- WordPress sites installed via APS no longer experience errors during the update. (EXTWPTOOLK-5903)
PHP Updates
2 November 2020
- Updated PHP 7.4 to version 7.4.12.
- Updated PHP 7.3 to version 7.3.24.
Linux
- Updated Redis to version 5.3.2 for PHP 7.3, 7.4.
Plesk Email Security 1.1.8
2 November 2020
Linux
- Improved an error message for the config checker. (EXTCERT-3138)
- Score entries in exponential notation are now handled properly. (EXTCERT-3147)
- To avoid false-positive spam detection, 0 spam score is now forced for the deprecated
DNS_FROM_AHBL_RHSBL
check. (EXTCERT-3168) - Fixed a database connection issue with SELinux in enforcing mode. (EXTCERT-3139)
- Fixed the symbolic link creation in the SpamAssassin installation process. (EXTCERT-3157)
WordPress Toolkit 5.1.0
28 October 2020
- Product changelog is now accessible through the WordPress Toolkit Settings window.
- Service plans now have the option to limit the number of backups allowed for each WordPress site.
- Website autoupdate tasks will no longer be accidentally skipped in certain rare cases. (EXTWPTOOLK-5825)
- Popup window about automatic updates on the installation drawer was visited by Captain Obvious, so it can now be closed by the X (Close) button. (EXTWPTOOLK-5783)
- Backup creation date is now shown with a proper timezone. (EXTWPTOOLK-5777)
- Backup creation date is no longer displayed as one month in the past under certain circumstances. (EXTWPTOOLK-5776)
- When Update Settings window is closed, Available Updates window no longer opens if it wasnât opened before. (EXTWPTOOLK-5673)
- Smart Updates are no longer confused about what to update in certain cases when previous Smart Update run has detected issues, but update was not applied. (EXTWPTOOLK-5129)
- WordPress sites on a subscription are no longer displayed as broken if access permissions of wordpress-backups directory are set to 000. On a side note, why would somebody do this?! (EXTWPTOOLK-5739)
- Sites connected via remote plugin no longer become broken after debug is enabled. (EXTWPTOOLK-5716)
- Purchase prompts in WordPress Toolkit Lite no longer lead users to 404 Not Found page. (EXTWPTOOLK-5682)
- WordPress Toolkit data should now be properly restored or migrated by Plesk Migrator without the embarassing Unable to restore Plesk extension âwp-toolkitâ for subscription error. (EXTWPTOOLK-5142)
- It is now possible to install a manually uploaded plugin or theme if the archive size is more than 12288 kB. (EXTWPTOOLK-5122)
- Login to WordPress as admin now works after migrating WordPress site to Plesk. (EXTWPTOOLK-1581)
Plesk Migrator 2.20.1
28 October 2020
- Migration from DirectAdmin no longer occasionally fails to be started. (PMT-4848)
- Migration from cPanel to Plesk on CentOS 8 now preserves group and other permissions. (PMT-4840)
- Migration to a remote Microsoft SQL server no longer fails with the âAttributeError: âNoneTypeâ error. (PMT-4852)
- Improved the interface error reporting when
config.ini
does not contain mandatory parameters. (PMT-4856, PMT-4857)
Plesk Mobile Center 1.3.0
27 October 2020
Install the latest version of the Plesk Mobile application in Apple Store and Google Play.
- Added iOS 14 support.
- Added Android 11 support.
- Added FaceID support.
- Domains can now be sorted by name.
- Push notifications are now enabled by default.
Plesk Obsidian 18.0.31
27 October 2020
- A custom TTL value can now be configured for individual DNS records.
-
The âX-Powered-Byâ header can now be removed from pages served by Plesk servers by adding the following lines to the panel.ini file:
[webserver] xPoweredByHeader = off
and then rebuilding the web server configuration. Go to âTools & Settingsâ > âDiagnose & Repairâ (under âAssistance and Troubleshootingâ) and click the âRepairâ button corresponding to âWeb & FTP Serversâ.
- Mailman links are now served via HTTPS.
- Added the option to validate newly created backups via the checksum to the Dropbox Backup and Amazon S3 Backup extensions.
- Sending a request to a Plesk Obsidian server using an XML-RPC API protocol version earlier than 1.6.9.1 (latest) now results in a warning being logged to the
panel.log
file. Note: we do not recommend using XML-RPC API protocol versions earlier than 1.6.9.1 with Plesk Obsidian. - Security improvements. (PPPM-12231)
- A custom domain name for mail autodiscover can now be specified via the
plesk bin mailserver --set-mail-autodiscover-domain-name <domain name> reconfigure-dns true
CLI command. The command works for both new and existing domains. (PPPM-12370) - Removing a subscription with WordPress installed as an APS app no longer results in misleading errors in the Plesk interface and the
panel.log
file. (PPP-50310) - It is no longer possible to create mail accounts without a password by clearing the âAccess to the Customer Panelâ checkbox during mail account creation. (PPPM-8076)
- Mailbox quota for domains based on a service plan with mailbox quota specified is no longer set to âunlimitedâ in the Plesk database. (PPPM-12417)
- Specifying an external email address and an internal email address for a customer no longer results in the internal email address being shown as the customerâs email address to the Plesk administrator. (PPPM-12433)
- Plesk Premium Antivirus no longer fails to start on Plesk servers that have no Plesk Premium Antivirus license key, have TLSv1 disabled for
sw-cp-server
, have IPv6 disabled, and do not have the/etc/sw-cp-server/conf.d/ipv6_ports.inc
file on the file system.(PPPM-12368)
Linux
- CloudLinux 8 is now partially supported. Some of the features may not yet work properly. The choice of PHP selector and the CageFS mode are not currently supported.
- Sending an email from a â*@gmail.comâ mail address to a mailbox in Plesk no longer results in SPF handler failure if the domain in Plesk has IPv6 configured and the Plesk server has âinclude:spf.antispamcloud.comâ SPF local rule configured. (PPPM-12075)
- Re-reading IP addresses on the server no longer results in the same IP address being displayed twice (with and without the âMain IP addressâ flag in Plesk under specific circumstances. (PPPM-11484)
- The
plesk sbin statistics
utility now reports directoriesâ stat type as well as size when run with the â-vâ option. (PPP-50555) - Setting âOutgoing mail modeâ to âSend from the specified IP addressesâ and then to âSend from domain IP addressesâ or âSend from domain IP addresses and use domain names in SMTP greetingâ in âTools & Settingsâ > âMail Server Settingsâ no longer results in multiple issues with mail in Plesk due to the Plesk database getting corrupted. (PPPM-12375)
- Running the
plesk bin repair --db
command after updating to Plesk Obsidian 18.0.30 no longer results in a misleading error message. (PPPM-12392) - The DMARC handler now logs specific details about DMARC failures to
/var/log/maillog
. (PPP-50754) - The DMARC handler no longer fails when processing mail with one or more double quotation mark (â) characters in the sender mail address. (PPPM-12331)
- Moving the main domain of a subscription to a different subscription now sets the correct ownership of the domainâs document root directory. (PPPM-12251)
- Running the
plesk repair fs
command on a Debian-based OS with rpm installed no longer results in an error. (PPPM-12274) - Sending an email from a mail account with auto-reply enabled to itself no longer results in the account sending an auto-reply message to itself. (PPPM-12343)
- Plesk now correctly detects Lenovo cloud as as KVM virtualization allowing for the use of VPS license keys. (PPPM-12420)
- Browsing websites hosted on Plesk servers with nginx installed and enabled no longer sometimes opens the Plesk login page instead. (PPP-50362)
- Plesk now validates custom nginx configuration before applying it. It is no longer possible to misconfigure nginx in a way that is impossible to undo via the Plesk interface. (PPPM-12101)
- Running the
plesk repair dns
command with umask set to â077â no longer breaks the permissions for named configuration files and all zones by setting incorrect permissions on them. (PPPM-12437) - Sending an email from a mailbox associated with domain A to a mailbox associated with domain B that is hosted in Plesk with âFix incorrectly set sender for outgoing mailâ enabled in âTools & Settingsâ > âMail Server Settingsâ and forwards mail to a mailbox associated with domain C no longer changes the âFromâ header as if the email originated from domain B and not domain A. (PPPM-12293)
- Running CLI commands managing the Fail2Ban utility on a Plesk server with inconsistent package system no longer results in a misleading error message. (PPPM-12079)
- Disabling chrooted shell for a system user now correctly results in the
/etc/passwd
and/etc/group
files being deleted. (PPPM-10750,PPPM-10149) - Improved the nginx cache size validation. (PPPM-12428)
Windows
- The
plesk repair installation
command is now available in Plesk Obsidian for Windows. - The path to the ASP.NET dynamic compilation temporary file storage location can now be specified on the âWebsites & Domainsâ > âASP.NET Settingsâ page. By default the path is set to â%plesk_vhosts%<domain name>\tmpâ.
- Updated PHP used by plesk-engine to version 7.4.11.
- Adding an IP address without a subnet mask or with the /32 mask in âDNS Settingsâ > âZone Transfersâ for a domain no longer results in all DNS records for the domain being silently removed from the Microsoft DNS Server. (PPPM-12373)
- ModSecurity is now updated correctly during Plesk update. (PPPM-11793)
- Updating a Plesk Onyx server with a custom logo uploaded to Plesk Obsidian no longer results in the â{body}â tag being shown on the bottom of the login page. (PPPM-12412)
- Plesk now puts the
tag in its proper place in the `web.config` file. (PPPM-11031) - phpMyAdmin no longer hangs on LOCK TABLES statements on Plesk servers with MySQL 5.7 installed under specific circumstances. (PPPM-10413)
- Database migration no longer fails on Plesk servers with a secondary MySQL server installed on localhost as default using a different port. (PPPM-12435)
Third-Party Component Updates
- Updated phpMyAdmin to version 5.0.3.
Linux
- Updated Phusion Passenger to version 6.0.6.
Windows
- Updated ModSecurity to version 2.9.3.
- Updated MariaDB 10.5 to version 10.5.6.
- Updated MariaDB 10.3 to version 10.3.25.
- Updated Node.js 12 to versions 12.18.4.
- Updated Node.js 10 to versions 10.22.1.
SSL It! 1.7.2
27 October 2020
- The âKeep securedâ feature enabled for the www subdomain (
www.example.com
) now actually secures the subdomain and the message shown next to it informs that a valid certificate will be later automatically issued and installed. (EXTSSLIT-1222) - Improved detection of the website security status shown in Websites & Domains. The status now reflects the fact that the www subdomain can be or can be not secured depending on the actual configuration (enabled âKeep securedâ, âHSTSâ, and so on). (EXTSSLIT-1192)
SSL It! 1.7.1
20 October 2020
- After a certificate purchase in Plesk Online Store, the certificate order is now automatically reloaded in SSL It!.
- If the DigiCert SSL extension is installed, the SSL It! extension can now be installed without any errors. (EXTSSLIT-1211)
- SSL It! now generates the list of the recommended extensions dynamically based on the extensions actually available in the Extensions Catalog. If SSL It! cannot show any recommended extensions (for example, they are blocked), SSL It! will show the corresponding message. (EXTSSLIT-1205)
- Improved an error message shown when the âKeep Plesk securedâ feature ran earlier than Plesk was initialized. (EXTSSLIT-1209)
Letâs Encrypt 2.12.2
16 October 2020
- Translated the Letâs Encrypt description shown in the SSL It! extension. (EXTLETSENC-932)
DigiCert SSL 1.9.1
16 October 2020
- SSL/TLS certificates from DigiCert issued for a domain (for example,
example.com
) now also secure the www subdomain (www.example.com
) automatically. - The extension no longer supports the legacy DigiCert API. To issue SSL/TLS certificates from DigiCert, users need to install the SSL It! extension.
- Translated the DigiCert description shown in the SSL It! extension. (EXTPLESK-2094)
- SSL/TLS certificates from DigiCert do not support SAN. Fixed the incorrect description that said otherwise. (EXTPLESK-2047)
Plesk Migrator 2.20.0
14 October 2020
- External IDs of customers, resellers, and subscriptions can now be migrated in the extensionâs interface. Previously, it was possible to migrate external IDs only via the CLI.
- It is now possible to install the extension in Plesk on CloudLinux that has LVE Manager installed. (PMT-3777, PMT-4832)
- Migration of WordPress applications from Plesk 12.5 to Plesk Obsidian no longer fails with the âElement âwordpress-instanceâ: This element is not expected.â error. (PMT-4712)
- If the source DirectAdmin server has MySQL 5.7 or later, the extension now migrates database users without any errors. (PMT-4746)
- Mail migration from DirectAdmin now works for accounts not owned by the administrator. (PMT-4816)
- Migration of Microsoft SQL 2019 databases no longer fails with the âAccess is deniedâ error. (PMT-4817)
- Email messages migrated twice are no longer displayed as source code. (PMT-4820)
- In Plesk for Windows, permissions of FTP users are now completely migrated. (PMT-4821)
SSL It! 1.7.0
13 October 2020
- Added the âKeep Securedâ feature for Plesk (Tools & Settings > SSL/TLS Certificates (under âSecurityâ)). The feature is enabled by default and automatically secures Plesk with an SSL/TLS certificate from Letâs Encrypt.
- Users that purchased SSL/TLS certificates are now automatically redirected from Plesk Online Store back to the SSL It! page.
- Added the ability to cherry pick the exact components (mail, webmail, and/or the âwwwâ subdomain) for which users can enable âKeep Securedâ.
- If a website is not secured with a valid SSL/TLS, Plesk UI notifications inform the website owner about it and suggest securing the website with a valid certificate on the SSL It! page.
Repair Kit 1.2.1
12 October 2020
-
Introduced timeouts for the plesk repair operations. If an operation takes longer than expected, the extensionâs interface is unlocked and ready for new tasks. This improvement solves the issue when the extensionâs interface hung because of a failed operation.
By default, the extension has preconfigured timeout values. They are specified by the
aspectTimeout
settings inpanel.ini
, for example:[ext-repair-kit] aspectTimeoutMail = 30 minutes
- The âMySQL Process List (Beta)â button in Tools & Settings > Process List (under âAssistance and Troubleshootingâ) now opens the MySQL process list instead of showing the âRequest failed with status code 500â error. (EXTPLESK-2075)
- If the extension does not work because the
/var/log/plesk
directory has the incorrect permissions, the extension now shows a clear error message, which may help users to fix the issue. (EXTPLESK-2082) - The extension now correctly runs the
plesk repair
utility with custom parameters instead of showing the ât.map is not a functionâ error. (EXTPLESK-1298) - The extension now shows the overall CPU usage correctly. (EXTPLESK-2076)
Letâs Encrypt 2.12.1
8 October 2020
- The Letâs Encrypt extension installed without the SSL It! extension cannot automatically renew SSL/TLS certificates that secure mail. The extension now shows the corresponding message and suggests installing SSL It!. (EXTLETSENC-884)
PHP Updates
6 October 2020
- Updated PHP 7.4 to version 7.4.11.
- Updated PHP 7.3 to version 7.3.23.
- Updated PHP 7.2 to version 7.2.34.
Extension Catalog 1.13.1
5 October 2020
- If the Extensions Catalog does not show prices for certain items for any reason, users will be redirected to Plesk Online Store to buy these items.
Plesk Obsidian 18.0.30 Update 2
5 October 2020
- After update to Plesk Obsidian 18.0.30, Plesk no longer stops Apache instead of restarting it on certain Debian and Ubuntu servers. (PPPM-12387)
- After update to Plesk Obsidian 18.0.30 Update 1, scheduled backups no longer fail with the âThe following files were not found or were corruptedâ error if backed up add-on domains have DKIM enabled. (PPPM-12384)
Plesk Email Security 1.1.7
2 October 2020
Linux
- Fixed and improved the statistics calculation. (EXTCERT-3099)
- Optimised the update task for the statistics calculation to avoid database timeout locks on servers with high mail traffic. (EXTCERT-3065)
- Resolved conflicts of user-specific spam rules with webmail filters. (EXTCERT-3095)
- The custom folder list is now loaded correctly for email addresses with capital letters. (EXTCERT-3128)
- Removed a PHP notice from the config checker. (EXTCERT-3122)
WordPress Toolkit 5.0.0
30 September 2020
- Two words: interface update! No need to worry, though, as the new UI for managing WordPress sites is a logical evolution of the old UI based on newer technologies. Site administrators will find themselves in a fresh-yet-familiar interface with increased focus on site updates, better UX, improved performance and responsiveness.
- WordPress Toolkit Lite experience (applicable for owners of Plesk Web Admin edition) has been redesigned to prettify it and make it more uniform across different screens.
- The list of features available in WPT Lite was updated to make it more consistent and logical:
- Management of Search Engine Indexing is now available for free in WPT Lite
- Debugging management is now available for free in WPT Lite
- Password Protection is now available for free in WPT Lite
- Update settings for individual sites are now available for free in WPT Lite
- Upload of plugins & themes in the plugins / themes management is now available for free in WPT Lite
- Mass update operations (including modification of update settings for multiple sites at once) are now available only in the full (paid) version of WPT
- Starting with version 5.0, WordPress Toolkit requires Plesk Obsidian to work. Existing WordPress Toolkit installations on Plesk Onyx 17.8 will continue to function, but will no longer receive feature updates. Critical security fixes for WordPress Toolkit on Plesk Onyx 17.8 will continue to be delivered until Plesk Onyx 17.8 reaches end-of-life. We strongly recommend updating to Plesk Obsidian for the best Plesk and WordPress Toolkit experience.
- Branding of default maintenance mode template was updated. It now mentions being powered by WordPress Toolkit instead of Plesk.
- Restoration of backup files no longer fails if they contain some files with read-only permissions. (EXTWPTOOLK-5561)
- Websites are no longer getting stuck in maintenance mode under certain mysterious circumstances after being updated. (EXTWPTOOLK-5531)
- Checkboxes are no longer missing on Security and Updates screens on Safari. (EXTWPTOOLK-5396)
- Other checkboxes were not missing on Safari, but they were not aligned properly, so this was fixed as well. (EXTWPTOOLK-5367)
- WordPres Toolkit now properly updates site URL when a WordPress site is hosted on a subdomain and the main domain is renamed. (EXTWPTOOLK-2268)
- Smart Updates no longer compare shortcode values, avoiding certain false positives during the analysis. Shortcode names are still compared. (EXTWPTOOLK-4618)
- Backup / Restore functionality is no longer displayed as available for sites connected via remote management plugin (because it was never actually available, mind you, not because we removed the feature). (EXTWPTOOLK-5446)
- WordPress Toolkit now displays a helpful hint for Firefox users with enabled pop-up blockers trying to log in to WordPress via WPT. Unsurprisingly, the hint is: turn off pop-up blocker on this page if you want to log in to WordPress via WPT. (EXTWPTOOLK-5634)
Extension Catalog 1.13.0
29 September 2020
- The Plesk administrator and additional administrators can now purchase extensions without leaving the Extensions Catalog.
- A purchased extension is now automatically installed and the extensionâs license key is now automatically received.
Plesk Obsidian 18.0.30 Update 1
21 September 2020
- Fixed the note about SSL warnings on the Plesk login screen. (PPP-50397)
Windows
- Plesk Onyx 17.8.11 that has add-on domains can now be upgraded to Plesk Obsidian 18.0.30 without any issues. (PPP-50357)
Letâs Encrypt 2.12.0
17 September 2020
-
The extension now supports a new chain of trust based on ISRG Root. Before January 11, 2021, the old IdenTrust root remains the default one, while the new ISRG Root is an alternative one. After January 11, 2021, the extension will issue SSL/TLS certificates based on the new ISRG Root, while the old IdenTrust root will become an alternative one.
To have the extension issue SSL/TLS certificates based on the alternative root (which is ISRG Root before January 11, 2021, and IdenTrust after this date), add the following lines to
panel.ini
:[ext-letsencrypt] use-alternate-root = true
-
Improved an error message shown when the âKeep securedâ task fails if the email address of a domain owner is missing. (EXTLETSENC-887)
Plesk Email Security 1.1.6
17 September 2020
Linux
- Added the âInstallâ button to the Amavis service infobox. Users can now trigger the installation manually from the interface.
- A new Amavis package is installed automatically on CentOS servers in an update from version 1.1.5.
- Improved how custom email folders are loaded for the user-specific selection list. (EXTCERT-3092)
- Improved ClamAV installation handling required for Ubuntu 20.04.
WordPress Toolkit 4.10.2
16 September 2020
- WordPress installations accessible via several domains with the same docroot can now be updated properly. (EXTWPTOOLK-5566)
Plesk Obsidian 18.0.30
15 September 2020
- The Plesk login page can now show a notification what hostname to use for logging in to avoid the warning about an untrusted connection. The notification is shown when a user logs in to Plesk using the server IP address, while the server is secured with a valid SSL/TLS certificate from Letâs Encrypt.
- To enhance security, Plesk now generates a random prefix for a temporary server hostname.
- Dropped support for the File Sharing feature. File Sharing is no longer available in Plesk Obsidian by default.
- G Suite can now be set up with the Plesk DNS service because it is now possible to set an MX priority value to 1 in the Plesk interface.
- Dynamic List view now shows a number of subdomains and domain aliases (if any) and a number of pages they occupy.
- Increased the load speed of Dynamic List view.
- Improved the look of the empty list of Plesk UI notifications.
- If IP mapping to a public IP address is configured,
plesk bin dns --reset
no longer mistakenly resets DNS zones. (PPPM-12186) - Improved error reporting when UTF-8 characters are malformed (it may happen, for example, during backup restoration). (PPP-50033)
- The statistics (Tools & Settings > Summary Report (under âStatisticsâ)) no longer contain obsolete mail redirect fields. (PPPM-12336)
- A correct database is now shown on the left side of the screen in phpMyAdmin when one database user exists for multiple databases and the âUser has access to all databases within the selected subscriptionâ option is enabled. (PPPM-4734)
- Backup creation no longer occasionally fails with the âUnable to create backups: Unable to create remote backup. Error: Unable to export backup: Transport error: unable to list directory: Curl error: (28)â error. (PPPM-12215)
- A subdomain is no longer created with the mail account tab if the subdomainâs subscription belongs to the service plan that has the âAbility to change mail settingsâ option disabled. (PPPM-12314)
- The server-wide certificates page (Tools & Settings > SSL/TLS Certificates (under âSecurityâ)) no longer fails to be opened if the server has a large number of subdomains (more than 500) secured with SSL/TLS certificates. (PPPM-12350)
- It is now possible to configure and use FTP storage on the vsftpd 3 servers. (PPPM-12277)
- The
plesk repair db
utility can now fix the mail service records in theIpAddressesCollections
table. (PPPM-4845) - Improved error reporting of Backup Manager. Backup Manager now considers content errors to be warnings and proceeds with backup restoration. (PPPM-12334)
- Improved error reporting of Backup Manager. Backup Manager now sends the information about all occurred issues to the email address configured in the scheduled backup task. Failures to dump subscription databases are now regarded as important issues because they prevent subscriptions from being fully restored. (PPPM-12097)
- Fixed the path to the Plesk favicon. Previously it could be occasionally incorrect. (PPP-49932)
Linux
- Plesk now supports VERP-style email addresses. The corresponding setting (âEnable email subaddressingâ) is enabled by default in Tools & Settings > Mail Server Settings (under âMailâ) on new Plesk Obsidian installations.
- The
plesk repair web -php-fpm-configuration
command can now detect PHP-FPM misconfigurations and fix them by removing obsolete PHP-FPM configuration files. - To mitigate the Apache and nginx symlinks vulnerability, the âRestrict the ability to follow symbolic linksâ option is now enabled by default for new service plans and new custom subscriptions. Learn more about mitigating the symlinks vulnerability.
-
Made integration with phpMyAdmin more robust.
Note: phpMyAdmin files are now located in
/usr/local/psa/phpMyAdmin
. - Updated sw-engine to version 2.30.1.
- Updated sw-engine PHP to version 7.3.22.
- Watchdog can now be activated on CentOS 8 in VZ containers.
- Under specific circumstances, Plesk no longer fails to detect the main IP address on the server. (PPPM-11484)
- If, in Restricted Mode Settings, Firewall (under âTools & Resourcesâ) is selected, while Extensions management (under âExtensionsâ) is not, going to Tools & Settings > Firewall no longer shows the âpermission deniedâ error when Power User view and Restricted Mode are enabled. (PPPM-8847)
- The
dk_sign
mail handler no longer throws segmentation faults if an email contains DKIM-Signature as the last header. (PPPM-12221) - Users can no longer lose access to phpMyAdmin via Plesk after updating to Plesk Obsidian or after Plesk Obsidian updates. (PPPM-11253)
- AWStats TXT files are now completely removed after the corresponding TTL has expired. (PPPM-10655)
- Plesk now detects and shows the warning if a new PostgreSQL database name and user name are the same. (PPPM-12224)
- Auto-replies can now be delivered via a relay host to email addresses whose names contain non-ASCII characters. (PPPM-11553)
- Made the âIP address ban periodâ field of Fail2Ban longer. The field now completely displays large values. (PPPM-12349)
- Improved a confirmation message shown when
plesk repair ftp
can remove an orphaned system user. Additionally,plesk repair ftp
no longer removes the userâs home directory. (PPPM-11058) - A domain alias can no longer point to a subdomain instead of the main domain. (PPP-49923)
- It is no longer possible to create a subdomain with the
webmail
prefix (for example,webmail.example.com
) if the main domain already has webmail enabled. (PPPM-12356) - If a domainâs
access_ssl_log
contains lines with the malformed URI sequence, the log browser no longer shows the blank page instead of the actual log. (PPPM-12345) - In Plesk on CentOS 8, a mailing list can now be restored from a backup. (PPPM-12347)
- Fixed specific cases when a Plesk license for virtual machines could not be installed on KVM virtualization. (PPPM-12317)
- After some domains were deleted from a server and PHP-FPM was reloaded, php-fpm.sock of some domains is no longer lost and the domains no longer become unavailable. (PPPM-12280)
Windows
- Updated PHP used by Plesk to version 7.4.10.
- Customers can no longer log in to mail using Horde IMP with an incorrect case password. (PPPM-8584)
- An LDAP query no longer throws the âLDAP local: No Memoryâ error because libcurl was updated to version 7.71.1. (PPPM-10971)
- A mail account can now be updated via the CLI without any issues after the limit of a subscriptionâs mailboxes was reached. (PPPM-11679)
- It is now possible to switch to the latest version of SmarterMail without any issues. (PPPM-12295)
- ModSecurity no longer conflicts with SmarterMail API: SmarterMail sites no longer contain ModSecurity modules. (PPPM-12296)
- After Plesk 11.0 was upgraded to Plesk Obsidian, it is now possible to remove subscriptions. (PPPM-12177)
- Fixed error reporting when the SMTP server refuses connection. (PPPM-12267)
- Mail forwarding now works in SmarterMail. (PPPM-12246)
- Plesk updates no longer change an installed myLittleAdmin additional license key to the default myLittleAdmin license. (PPPM-12244)
- MySQL ODBC 3.51 DNS can now be configured with the required settings. (PPPM-12233)
- The
plesk bin repair --reconfigure-ftp-sites
command can now fix anonymous FTP users. (PPP-46657) - Plesk now correctly logs issues when ODBC DSN resources are lost after backup import. (PPP-50196)
Third-Party Component Updates
Linux
- Added support for MariaDB versions 10.4 and 10.5. See more details in this KB article.
- Updated Roundcube to version 1.4.8.
- Updated Postfix to version 3.5.6.
Windows
- ionCube Loader 10.4.1 is now shipped with PHP 7.4.
- Updated BIND to version 9.16.6.
- Updated ASP.NET Core 3.1 to version 3.1.8.
- Updated ASP.NET Core 2.1 to version 2.1.22.
- Updated MariaDB to version 10.5 (both for the Plesk database and for customersâ websites).
- Updated libcurl to version 7.71.1.
DigiCert SSL 1.9.0
11 September 2020
- The DigiCert SSL extension now supports DigiCert APIv2.
- The DigiCert SSL extension UI has been integrated with the SSL It! extension. From now on, please issue SSL/TLS certificates via SSL It! The DigiCert standalone UI can be used to finish orders placed via the legacy DigiCert API. The DigiCert standalone UI does not support DigiCert APIv2 and will be removed in the future.
- By default, SSL It! only shows a small subset of all available SSL/TLS certificates. To see more certificates, go to âExtensionsâ > âMy Extensionsâ > âSSL It!â and click âConfigureâ.
- Ordering a secure site wildcard certificate from Symantec for a wildcard subdomain (for example, â*.example.comâ) no longer fails. (EXTPLESK-1600)
- Ordering a RapidSSL certificate no longer fails when the certificateâs owner country is set to âUnited Kingdom of Great Britain and Northern Irelandâ. (EXTPLESK-1695)
- Starting to order a certificate for a subscription and then renaming it before finishing the order will no longer result in failures. (EXTPLESK-1634)
- Fixed several translation issues.
WordPress Toolkit 4.10.0
10 September 2020
- Site administrators can now back up and restore individual WordPress sites using the brand new âBack Up / Restoreâ functionality exclusive to WordPress Toolkit. Site backup files are included in subscription backups by default, so site administrators can use Plesk Backup Manager functionality like scheduled backups or backing up to cloud for further processing. Note: this feature isnât available on Plesk 17.8 Onyx for Windows.
- Updated and improved multiple text messages shown in the product.
- Security improvements.
- Updating WordPress to version 5.5.1 does not trigger wp-cli errors anymore. (EXTWPTOOLK-5490)
- Additional user accounts no longer blow up WordPress Toolkit (figuratively speaking), when accessing Plugins or Themes tabs. (EXTWPTOOLK-5219)
- Server administrators now can access default plugin and theme sets on cloned Plesk installations. (EXTWPTOOLK-3132)
- âChange default database table prefixâ security measure does not fail anymore if database table has a period in its name. (EXTWPTOOLK-5376)
- WordPress Toolkit no longer fails to remove one of several WordPress sites if another site under the same user account was broken in a quite specific way that weâd better not explain here for brevityâs sake. (EXTWPTOOLK-5486)
- âUpdate Site URLâ control now works properly in List view. (EXTWPTOOLK-5037)
SSL It! 1.6.0
9 September 2020
- In Plesk for Windows, domains with the âForwardingâ hosting type can now be secured via SSL It!.
-
The extension now supports the latest Mozilla preset in Plesk Obsidian. Also improved the UX and fixed a number of issues that the new preset can cause. (EXTSSLIT-541)
Note: The âmodernâ preset is not supported on CentOS 8.
- Added the new âSession resumptionâ settings: session_timeout and session_cache improve the security and also increase the load speed of a website by speeding up the TLS handshake.
- Improved the SSL It! interface when the website status is âSecurity can be improvedâ. Now it should be easier for users to understand which settings to turn on to get the the âSafe and sound!â status.
- The âKeep websites securedâ feature no longer substitutes a custom email in an SSL/TLS certificate with one that belongs to the website owner. (EXTSSLIT-531)
- Checkboxes are now again shown in the extensionâs interface opened in Safari. (EXTSSLIT-1080)
- If an issue occurred, the executed âKeep websites securedâ task no longer substitutes the error message that explains the cause of the issue with an unrelated error message. (EXTSSLIT-1052)
- The extensionâs interface now works for a domain when the list of SSL/TLS certificates offered by SSL It! is empty and the domain has an alias. (EXTSSLIT-1047)
- A subdomain secured with a wildcard SSL/TLS certificate is no longer wrongly shown as âNot securedâ if the certificate was assigned to the main domain. (EXTSSLIT-669)
PHP Updates
8 September 2020
- Updated PHP 7.4 to version 7.4.10.
- Updated PHP 7.3 to version 7.3.22.
Linux
- Updated PHP 7.4 to version 7.4.10.
- Updated PHP 7.3 to version 7.3.22.
- Updated ionCube loader for PHP 7.3 and PHP 7.4 to version 1.4.2.
Plesk Email Security 1.1.5
7 September 2020
Linux
- Fixed Amavis installation issues on newer CentOS systems. (EXTCERT-3078)
DigiCert SSL 1.8.4
7 September 2020
- Fixed the issue where icons for DigiCert products were not shown in âSSL\TLS Certificatesâ. (EXTPLESK-2034)
Plesk Obsidian 18.0.29 Update 3
31 August 2020
- The headers of notifications in the Notification Center are no longer malformed. (PPP-50118)
- Outgoing Mail Control now works correctly if the time zone on the server is set to one of the USA time zones (e.g. New York, NY, USA GMT-4). (PPPM-12321)
Linux
- ModSecurity security rules no longer stop working after an unsuccessful attempt to update rules. (PPPM-12324)
PHP Composer 1.1.1
31 August 2020
- Removing a domain with the
composer.json
file present no longer results in errors being logged to thepanel.log
file, potentially breaking integrations. (EXTPHPCOMP-129)
WordPress Toolkit 4.9.2
25 August 2020
- It is now possible again to change database setting via the CLI for existing WordPress sites. (EXTWPTOOLK-5384)
Plesk Obsidian 18.0.29 Update 2
19 August 2020
- Checkboxes are now again shown in the interfaces of the WordPress Toolkit and SSL It! extensions opened in Safari. (PPP-50041)
Linux
- After update to Plesk Obsidian 18.0.29, custom Comodo rule sets are no longer removed after daily task execution. (PPP-50022)
Plesk Email Security 1.1.4
18 August 2020
Linux
- Now the component will not be configured during update if the componentsâs installation has not been completed by a user. (EXTCERT-3048)
PHP Updates
17 August 2020
- Updated PHP 7.4 to version 7.4.9.
- Updated PHP 7.3 to version 7.3.21.
- Updated PHP 7.2 to version 7.2.33.
Linux
- Updated Redis to version 5.3.1 for PHP 7.2, 7.3, 7.4.
- Updated libwebp to version 1.1.0 for PHP 7.2, 7.3, 7.4.
Plesk Email Security 1.1.3
14 August 2020
Linux
- Changed the ordering of the ClamAV removal call in the installation process. (EXTCERT-3031)
- Fixed the wrong spam filter behaviour when the server-wide action was set to âMove spam to the Spam folderâ, while the individual mailbox action was set to âMark spam messagesâŠâ. (EXTCERT-3044)
DigiCert SSL 1.8.3
12 August 2020
- Improved the overall performance of the Digicert SSL extension as a plugin of the SSL It! extension. (EXTPLESK-2017)
SSL It! 1.5.3
11 August 2020
- Sped up the load time of Plesk pages if the extension is installed. (EXTSSLIT-1068)
Joomla! Toolkit 2.4.3
11 August 2020
- Added the administrator login button to the domain overview page - the button is only displayed if the credentials are provided.
- Improved the bulk process result message if errors occur during the long task process.
- Batch Update (Core&Extensions) - The update process does not stop if an extension update fails. (EXTCERT-3034)
- Fixed the backup limit set to 0 (not unlimited) and the error message if the limit is reached. (EXTCERT-3026)
- Fixed the backend link in the row view - if auto-login is possible, the direct administrator link is displayed.
Plesk Obsidian 18.0.29 Update 1
10 August 2020
- It is now again possible to set the Plesk administratorâs email address using subaddressing. (PPPM-12260)
Windows
- Update to Plesk Obsidian no longer fails because of certain unnecessary Horde files, which Microsoft Security falsely detected as malware. (PPPM-12266)
- Forwarding to a domain without SSL support can now be set up again. (PPP-49922)
WordPress Toolkit 4.9.1
5 August 2020
- WordPress Toolkit version and build number is now displayed on top of the âWordPress Toolkit Settingsâ screen.
- CLI utility for the Update Site URL feature was added. It can be accessed through the
plesk ext wp-toolkit --update-site-url
command. - CLI utility for managing various
wp-config.php
settings was added. It can be accessed through theplesk ext wp-toolkit --wp-config
command. - Security measure âBlock access to potentially sensitive filesâ now also blocks public access to
.ini
files. This change is not applied automatically: to enforce it, reapply the measure on required websites. - Installing a WordPress site via WPT CLI will no longer display unnecessary and overwhelming information in a background task window inside Plesk UI. (EXTWPTOOLK-5217)
- Jetpack plugin is now installed without PHP errors on Plesk for Windows. (EXTWPTOOLK-5259)
SSL It! 1.5.2
5 August 2020
- Email notifications about failed renewal of wildcard certificates on domains with the external DNS service are now sent according to the notification settings. (EXTSSLIT-1056)
Plesk Obsidian 18.0.29
4 August 2020
- The list of domains in Dynamic List view now has indents for domain aliases and subdomains.
- Increased the load speed of Dynamic List view.
- The backup process now correctly calculates server space necessary for a backup by ignoring files configured to be skipped during backing up.
- Repair Kit can now detect and fix the database inconsistency: missing entries in
IpAddressesCollections
. - When a user changes a websiteâs PHP handler, Plesk now informs that this change will make the website unavailable for a number of seconds.
- Increased
SecResponseBodyLimit
of ModSecurity: certain websites in Plesk can no longer become unavailable because of the âModSecurity: Output filter: Response body too largeâ error. - It is now possible to hide âSkins and Color Schemesâ and âInterface managementâ in Restricted Mode.
- Improved the picture and text shown when the Plesk UI notification pane is empty.
- The âView Certificatesâ button (Websites & Domains > domain > SSL/TLS Certificates > Advanced Settings) is no longer shown if the Plesk administrator did not configure the buttonâs link to a website where customers can buy SSL/TLS certificates. (PPP-49711)
- If a database user has the âUser has access to all databases within the selected subscriptionâ option enabled, it is now possible to get information about the database user via XML API. (PPPM-12202)
- Changed the resellerâs permission name âSubscription creation in Server Administration Panel and domain creation in Customer Panelâ to âDomains Managementâ. The new name now matches the same permission in resellersâ plans and does not confuse customers and resellers. (PPPM-12184)
- Add-on domains can now be restored from backups created on another Plesk server. (PPPM-12122)
- The âManagement of access to the server over SSHâ permission in resellersâ service plans now works correctly: a resellerâs subscription system user can no longer receive SSH access that conflicts with the permission. (PPPM-12124)
- A websiteâs
sitemap.xml
generated by Web Presence Builder now includes the www and HTTPS prefixes of the website URLs when âPermanent SEO-safe 301 redirect from HTTP to HTTPSâ is selected and the www domain is preferred. (PPPM-6867) - File Manager breadcrumbs now show the correct location. (PPP-49542)
- Custom buttons can now be created in Additional Services. (PPPM-12171)
- Backing up to FTP storage no longer occasionally fails with the âUnable to find archive metadataâ error. (PPPM-12213)
- When trying to open domainsâ logs, users no longer occasionally see an HTTP error 500. (PPP-37350)
- If an additional Plesk administrator is logged in to Plesk in Power User view, âLogged in asâ no longer shows the username of the main Plesk administrator. (PPPM-12135)
- An additional userâs email address can no longer be created based on a subscription that has the mail service disabled. (PPPM-12188)
- If a Plesk serverâs public IP address was set an then removed from the IP addresses, the Plesk Home page (âSystem Overviewâ) no longer shows empty brackets next to the Plesk IP address. (PPPM-12117)
- Customersâ
external_id
can now be updated via REST API. (EXTREST-97) - A REST API request to retrieve the Plesk administratorâs details now returns the correct
type
value. (EXTREST-103) - A REST API request to change a customerâs name now needs only the
name
field value to be submitted. (PPPM-12198)
Linux
- Ubuntu 20 is now supported. Plesk Migrator supports migration from Ubuntu 16 and 18 to Ubuntu 20.
- Introduced the new option âFix incorrectly set sender for outgoing mailâ that significantly reduces the likelihood of outgoing emails landing in spam (if DKIM and SPF are also enabled and properly set up). If the option is enabled, Plesk fixes incorrect sender headers and the envelope-sender address for outgoing mail.
- Security improvements.
- Update to Plesk Obsidian 18.0.29 will reconfigure Apache and nginx websites.
- Updated PHP used by Plesk to version 7.3.20.
- In Plesk on CentOS 8.1 and Debian 10 with IPv4 and IPv6 addresses, fixed unnecessary steps in the generated firewall script. (PPPM-11795)
- Nginx configs are now removed after nginx support was disabled. (PPPM-11197)
- If a large number of websites use the same PHP handler, the PHP handler change of one website no longer makes websites that use the target PHP handler temporarily unavailable. (PPPM-12241)
- Premium Antivirus by Dr.Web now works without a license key installed when TLSv1 is disabled for
sw-cp-server
. (PPPM-5740) - Itâs possible to customize MySQL variables used by database export and import via the server-wide
my.cnf
. (PPPM-10773) - The âWebsite Copyingâ feature can no longer exceed the hard disk quota. (PPPM-11523)
- Plesk Repair can no longer break the Apache configuration and cause websitesâ downtime if an SSL/TLS certificate
that secures one of the websites has the empty
cert_file
value in the Plesk database. (PPPM-10522) - If the free Comodo rule set is selected and WordPress is installed on a website, Fail2Ban can no longer block the Plesk serverâs IP address after customers spend some time working in WordPress. (PPPM-11961)
- The list of static files served directly by nginx now contains the
webp
extension. (PPPM-12109) - Plesk Repair now checks the
ulimit
value before showing a warning about it. (PPP-47989) - If the submitted text of the mailbox quota warning is too long, Plesk now informs that this text cannot be longer than 2000 characters. (PPPM-12089)
- Removed excessive debug messages âERR [panel] ADDâ from the Plesk log. (PPPM-12156)
- Emails sent from a Plesk server with Horde and SpamAssassin enabled are no longer wrongly labeled as spam. (PPPM-12120)
- Site Preview now opens a website even if the website URL does not have a trailing slash. (PPPM-12149)
- The Watchdog (System Monitoring) component can now be enabled in Plesk on CentOS 8 in Virtuozzo containers. (PPPM-12247)
- Update to Plesk Obsidian 18.0.28 no longer fails if Plesk has two protected directory users who have the same names but the letter cases are different. (PPPM-12107)
- If a user scheduled backups to be stored in FTP storage and the FTP timeout is low, the user no longer receives the repetitive warning message âExport error: Size of volume ⊠does not match expected one ⊠. The remote backup may not be restored.â (PPPM-12084)
Windows
- After checking web & FTP servers, âDiagnose & Repairâ no longer mistakenly informs that a domainâs temporary file folder is missing. (PPPM-12196)
- If the Plesk administratorâs profile is broken, Plesk Migrator now shows a more detailed error message instead of the general âUnable to set backup sign certificateâ error. (PPPM-12105)
- Migration of Microsoft SQL database servers no longer occasionally fails with the âLogin failed for user âadminââ error. (PPPM-12169)
- When fixing FTP users, Plesk Repair no longer occasionally fails with the âFailed to recreate the junction: ftpmng failed: C structured exception: 0xc0000005â error. (PPPM-12174)
- Mass email messages can now be sent if no template is used and only selected customers are chosen. (PPP-49645)
-
plesk_fopen
errors are now correctly processed: if a customer does not have the permission to view a certain file, the customers will now see the correct error message. (PPP-49766) - When trying to open domainsâ logs, users no longer occasionally see the âClass âPlesk_Log_Timestampâ not foundâ error. (PPPM-12165)
- If Plesk installation was interrupted, Plesk is no longer broken and does not show the âImpersonationCache.db uninitialized/corruptedâ error. (PPPM-11384)
- MySQL databases that contain non-ASCII characters can now be again exported without any issues. (PPPM-12116)
Third-Party Component Updates
Linux
- Updated nginx and the
sw-cp-server
service to version 1.18.0. - Updated Kronolith to version 4.2.29.
- Updated Roundcube to version 1.4.7.
Windows
- Updated ASP.NET Core 3.1 to version 3.1.6.
- Updated ASP.NET Core 2.1 to version 2.1.20.
- Updated Horde to version 5.2.23.
- Updated BIND to version 9.16.4.
PHP Updates
27 July 2020
Linux
- Argon2 usage in PHP 7.2 and 7.3 no longer causes errors in PHP applications (for example, 503 HTTP errors during attempts to log in to TYPO3 and Nextcloud). (PPP-49780)
WordPress Toolkit 4.9.0
23 July 2020
- Server Administrators can now use Service Plans to limit the number of WordPress sites that customers can install and manage in WordPress Toolkit.
- âGlobal Settingsâ screen now has the option to define the default database table name prefix for new WordPress installations.
- Itâs now possible again to log in to WordPress installations after changing the access password in WordPress Toolkit and not refreshing the installation info via âRefreshâ button or other means. (EXTWPTOOLK-5156)
- Security measures are no longer applied to detached websites. (EXTWPTOOLK-5107)
- Redundant backslashes in non-English email notifications from bug EXTWPTOOLK-4699 have returned from the dead and were quickly sent back packing. (EXTWPTOOLK-5042)
- Websites can now be properly cloned if their scheduled task created to replace native wp-cron has no description. (EXTWPTOOLK-5033)
- Update version of manually uploaded plugins and themes is now detected correctly. (EXTWPTOOLK-4966)
- WordPress Toolkit working in Lite mode now correctly accepts update settings specified by users in
wp-config.php
file. (EXTWPTOOLK-682)
Plesk Migrator 2.19.6
23 July 2020
- The extension can now be installed in Plesk on Debian 10.
- The extension can now migrate large mailboxes (more than 2 GB) to SmarterMail at a time.
- Fixed the following issues that could occasionally happen if the target mail server uses IMAP to restore mail (for example, SmarterMail 100 or later):
- Texts of email messages were not migrated completely.
- Errors occurred when the emails were restored on the target mail server. (PMT-4768)
- Migration now works if the source server has freshly installed cPanel of the latest version. (PMT-4795)
SSL It! 1.5.1
21 July 2020
- No error now occurs when the âkeep-securedâ scheduled task tries to renew a certificate uploaded manually to a domain. (EXTSSLIT-1036)
Plesk Obsidian 18.0.28 Update 3
20 July 2020
- Security improvements.
- Error messages related to an incorrect
AUTO_INCREMENT
value in the Plesk database now show a suggestion to fix the error using the Repair utility (either in the Plesk interface or in the CLI).
Linux
- Fixed the following issues previously occurred when the Plesk mail server is secured with an SSL/TLS certificate from Comodo
whose certificate chain points to the expired Sectigo root:
- Connections from webmail and mail clients to the mail server no longer fail. The improvement does not work in Plesk on CentOS 6/RHEL 6/CloudLinux 6.
- The rule set from Comodo can now be activated.
-
Changes of a websiteâs PHP handler cause the websiteâs downtime if the Apache restart interval has a non-zero value. To prevent the websiteâs downtime, it is now possible to ignore the Apache restart interval and to force the web server restart on each change of PHP handler settings. To do so, the Plesk administrator needs to add the following lines to
panel.ini
:[webserver] restartApacheWhenChangingFpmHandler=1
SSL It! 1.5.0
17 July 2020
- The list of secured components on a domainâs SSL It! page was rearranged. Absence of a non-wildcard certificate and a certificate that secures mail is no longer displayed as an error at the top of âSecured Componentsâ.
- If
panel.ini
contains invalid values of SSL It! settings, a domainâs SSL It! page no longer fails to be opened with a 500 HTTP error. (EXTSSLIT-959) - A certificate can now be issued for a domain that is used to access Plesk (the âCustomizing Plesk URLâ feature). (EXTSSLIT-962)
- IDN domain aliases can now be automatically renewed. (EXTSSLIT-978)
Linux
- Domains with the âForwardingâ hosting type can now be secured via SSL It! with certificates from Letâs Encrypt. The feature works in Plesk Obsidian for Linux with the Letâs Encrypt extension version 2.11 and later.
Windows
- If SmarterMail is selected as a webmail client, webmail can now be secured.
- When SmarterMail is selected as a webmail client, renewal of a Letâs Encrypt certificate that secures webmail no longer resets the webmail status to âNot securedâ. (EXTSSLIT-886)
DigiCert SSL 1.8.2
17 July 2020
- Users can specify âThe United Kingdom (UK)â in contact information while issuing a certificate. (EXTPLESK-1695)
PHP Updates
14 July 2020
- Updated PHP 7.4 to version 7.4.8.
- Updated PHP 7.3 to version 7.3.20.
- Updated PHP 7.2 to version 7.2.32.
- Introduced PHP updates are the last ones for Debian 8 âJessieâ. See Plesk EOL Policy for details.
Linux
- ionCube Loader is now shipped with PHP 7.4.
- Updated the following PHP components shipped with Plesk:
- ionCube to version 10.4.0.
- Redis to version 5.3.0.
- xdebug to version 2.9.6.
- Imagick to version 3.4.4.
- PEAR components: Pear to version 1.10.12, Archive_Tar to version 1.4.9, Console_Getopt to version 1.4.3, and XML_Util to version 1.4.5.
- Argon2 is now shipped with both FastCGI and FPM. (PPP-49652)
Plesk Mobile Center 1.14
14 July 2020
- The extension now uses a new Apple Push Notification service certificate.
Letâs Encrypt 2.11.0
9 July 2020
- Sped up the
remove-expired-tokens.php
task. Expired tokens are now removed faster from theacme-challenge
directory on servers with a large number of domains. (EXTLETSENC-845) - A certificate can now be issued for a domain that is used to access Plesk (the âCustomizing Plesk URLâ feature). (EXTLETSENC-874)
- The
server
setting ofpanel.ini
is now removed as deprecated. (EXTLETSENC-879)
Plesk Obsidian 18.0.28 Update 2
6 July 2020
- After updating to Plesk Obsidian 18.0.28, users that have custom web server templates no longer occasionally have web server reconfigurations errors. (PPPM-12119)
- After updating to Plesk Obsidian 18.0.28, Backup Manager no longer occasionally shows false positive errors that a backup is invalid. If the backup is indeed invalid, an error message is shown and the corresponding entry is written to a log. (PPPM-12110)
- After updating to Plesk Obsidian 18.0.28, a full server backup is no longer erroneously created instead of an incremental one when the base backup exists and it is valid. (PPPM-12112)
Plesk Obsidian 18.0.28 Update 1
2 July 2020
-
Debian 10 âBusterâ is now supported. Plesk on Debian 10 âBusterâ has the following limitations:
- PHP versions 5.2-5.6 and 7.0 are not distributed with Plesk.
- The time synchronization settings are not available.
- Connection to the server might be interrupted the first time the Plesk Firewall rules are activated.
Note: Plesk does not support any dist-upgrade scenarios for Debian 10. To upgrade to Debian 10 from previous Debian versions or other OSes, use Plesk Migrator.
Linux
- The
plesk bin repair --db -n
command works correctly again and does not return the âWrong admin password is found for PSA database serverâ error. (PPPM-12094)
G Suite 1.0.2
30 June 2020
- The extension is now compliant with the new Google customer account transfer procedure.
- If a password contains the & symbol, a G-Suite subscription can now be activated. (EXTPLESK-1961)
- When a trial period ends, seats are now counted correctly. (EXTPLESK-1959, EXTPLESK-1890, EXTPLESK-1920)
- G Suite licenses are now displayed correctly in the customer account after verification. (EXTPLESK-1921)
WordPress Toolkit 4.8.4
29 June 2020
- Update of certain plugins & themes will not mark WordPress sites as broken if there were JSON decoding errors. (EXTWPTOOLK-4736)
- Trying to update a commercial plugin or theme that requires a license will not cause JSON decoding errors anymore. (EXTWPTOOLK-5048)
- Password protection can be enabled on websites that have a double quote character in the site title. (EXTWPTOOLK-5086)
- Permalinks no longer can be broken under certain circumstances when plugins or themes are updated. (EXTWPTOOLK-5118)
- Permalinks no longer can be broken under certain circumstances when a theme is activated. (EXTWPTOOLK-5119)
Plesk Migrator 2.19.5
29 June 2020
- The extension can now be installed in Plesk on Debian 10.
- When migrating a domain secured with an SSL/TLS certificate from Direct Admin, the certificate is now correctly selected in Plesk after migration. (PMT-4789)
- Emails migrated to SmarterMail 100 no longer have their sending and delivery dates replaced with the date of migration in the SmarterMail web interface. (PMT-4786)
Plesk Obsidian 18.0.28
23 June 2020
-
The Plesk administrator can now disable all promotions in Plesk by adding the following lines to the
panel.ini
file:[promos] enabled = false
- By default, Plesk is now automatically secured with an SSL/TLS certificate from Letâs Encrypt. See more details.
- Updated sw-engine PHP to version 7.3.18.
- Rebuilt PHP 7.4.7 on CentOS 7/RHEL 7/CloudLinux 7 because of the Oniguruma update.
- Running the
plesk repair fs
command now shows a clearer message if suspicious ownership of files and directories is detected in the root directory of a domain. (PPPM-4400) - If the AUTO_INCREMENT issue appears,
the Plesk administrator can now fix it by running the
plesk repair db -y
command. (PPP-49217) - Websitesâ screenshots in Dynamic View are now rendered significantly faster. (PPPM-11589)
- Improved the search for domains: extra spaces or tabs no longer empty the search results. (PPP-49037)
- The resellersâ mailbox quota is now calculated correctly. (PPPM-11653)
- The âSite nameâ drop-down list on the âWebsite copyingâ screen now shows websites in alphabetical order. (PPP-49370)
- Changes in the server-wide SpamAssassin settings now actually update these settings. (PPPM-11983)
- Limited the number of email addresses that can be added to the mail forwarding list. (PPPM-10677)
- Changing a PHP version now preserves the selected PHP handler type if the PHP version supports the handler. (PPPM-10694)
- It is now possible to add non-endpoint IP addresses via the Plesk interface. (PPP-49198)
- When Plesk has several subscriptions, the âOpenâ button next to âDatabasesâ on the domain page in Power User view now opens the âDatabasesâ screen. (PPPM-9466)
- PHP settings in
site-isolation-config
now work again. (PPPM-12020) - It is now possible to add only IP addresses (without a mask) in Domains > domain > DNS Settings > Zone Transfers. (PPPM-10874)
- Removed the outdated
release-tier
andautoupgrade-stable
parameters from theplesk bin server_pref
utility. (PPPM-11614) - During backupsâ restoration, Plesk now resets the objects selected to restore each time users change a type of objects to restore (for example, database or files of domains). This prevents the impression that multiple objects types can be restored at once. (PPPM-12028)
- The password reset link is now present for mail on subscriptions that do not belong to the Plesk administrator. (PPPM-12033)
- Statistics in summary reports are now calculated for resellers. (PPPM-11034)
- An attempt to delete a non-existent remote backup no longer results in an error. (PPP-47687)
- Put a limit on long scheduled tasks to prevent cases when the Plesk interface hangs because of massive data stored in a long task. (PPPM-11966)
- It is now possible to restore a full server backup stored in the Google Drive Backup storage when the âRestore this backup despite the fact that it does not have a valid signatureâ option was not enabled and the Plesk server has a large number of subscriptions (more than 100). (PPPM-12029)
- The âActivate/Deactivate Servicesâ button is no longer missing for mail of a subscription created under a hosting plan
that has the
0
value in âMaiboxesâ. (PPPM-10770) - Network errors no longer can hinder backing up and restoration. (EXTPLESK-1948)
- The Plesk interface now clearly shows that backup rotation depends on a number of stored backup files. (PPPM-11931)
- It is now possible to back up a server to FTP storage if the server has customers whose names contain German characters. (PPPM-11967)
- âMail configuration and contentâ is no longer shown during backing up in Plesk without mail. (PPP-48943)
- It is now possible to see details of backups if the backups were created by resellers and contain resellersâ subscriptions. (PPPM-11914)
- Editing DNS records can no longer occasionally lock subscriptions. (PPPM-11940)
- It is now possible to remove a mail account from an add-on domain if the mail service of the mail domain is disabled. (PPPM-11974)
- Resellers can now increase outgoing mail limits in the email address settings if they have already been changed. (PPPM-11496)
- The âSSL/TLS supportâ and âPermanent SEO-safe 301 redirect from HTTP to HTTPSâ options are now automatically enabled in hosting settings of customersâ subscriptions created under a hosting plan in which the settings were disabled. (PPPM-11563)
- It is now possible to update a subdomainâs settings via the CLI or API when the main domain has the disabled PHP support. (PPPM-11947)
- Removing a subscription with configured remote storage settings now also removes all the subscriptionâs backup settings
from the
psa.BackupsSettings
table. (PPPM-11933) - If FTP storage was configured for a domain that had already used the storage and then the storage had some connectivity issues, it no longer takes about a minute to open the domainâs Backup Manager. (PPPM-12060)
- It is no longer possible to lose access to a MySQL database if the database name has the maximum allowed size and contains underscores. (PPPM-12057)
- Errors in extensionsâ custom buttons can no longer break the whole Plesk page. (PPPM-12021)
- Sped up the migration of subscriptions to the target server with the same OS and Plesk version as the source by removing unnecessary information
from
backup.log
and the XMl-configuration file when the subscriptions are backed up. (PPPM-11919) - Plesk now shows sizes and numbers of tables for all databases of a subscription if the subscription has a large number of databases (more than 25). (PPPM-12062)
- Backup Manager now shows comments (if any) under the âCommentsâ column for backups stored in remote storage. (PPPM-11714)
Linux
- PHP shipped with Plesk now supports Argon2.
- Removed the mirroring feature from Plesk Autoinstaller.
- Moving a domain that uses PHP-FPM handlers to another subscription no longer occasionally fails. (PPPM-4225)
- If the root (
/
) and/var
directories are located in different partitions, it no longer negatively affects chroot setups. (PPPM-11977) - Resellers can now choose the exact FPM application type (served by Apache or by nginx) in their own service plans. (PPPM-12019)
- Running the
plesk bin http2_pref --enable
command to enable HTTP/2 now updates TLS versions for nginx. (PPPM-11991, PPPM-11965) - After update to Plesk Obsidian, IMAP and POP3 mail accounts configured in Outlook now correctly show emails with UTF-8 characters. (PPPM-11248)
- If the SpamAssassin filter is enabled, it is now possible to return to a previous domain name without the âIntegrity constraint violation: 1062 Duplicate entryâ error. (PPPM-12016)
- Plesk now validates the Apache and nginx directives more strictly: users are less likely to accidentally break nginx. (PPPM-11962)
- Removed obsolete Python modules. After a Plesk update, the
var/log/plesk/install/plesk_<version>_installation.log
log will no longer contain confusing error message from these modules. (PPPM-11981) - If Plesk is configured with a remote database server, databases are now backed up. (PPPM-11993)
- The
cgi-bin
directory is now added to the website directory template on new Plesk installations. As a result, the directory is created in/var/www/vhosts/
when âCGI supportâ is selected in a domainâs hosting settings. (PPP-46488) - It is now possible to change an email password via webmail in certain network configurations because xinetd ACL now allows all correct connections from the localhost. (PPPM-11839)
- Postfix Sender Rewriting Scheme (SRS) now works with email addresses that contain the plus sign (
+
). (PPPM-10128) - After a PHP script located in the customerâs home directory was run by a scheduled task, chroot environment is no longer set up for the directory. (PPPM-11985)
- The greylisting logs now contain the information explaining why emails were rejected. (PPP-47900)
- Plesk Autoinstaller now checks for errors in yum/dnf during a Plesk update. If the errors are found, the update is stopped and an error message is shown. (PPPM-11956)
- It is now possible to add or remove a large number of items (more than 2000) to or from the black/white list. (PPPM-11900)
- The Roundcube and Horde
php.ini
templates now have the localopen_basedir
directive that does not override the global one in the Pleskphp.ini
. This prevents customers from accidentally breaking the Pleskphp.ini
. - After the PHP-FPM handlersâ configuration was updated, Plesk now force restarts PHP-FPM. As a result, if the new configuration failed to be applied, users will see an error in the Plesk interface right away. (PPPM-11570)
- âQuick Preview on a domain name in Pleskâ now works for domains hosted on a IPv6 server. (PPPM-12008)
- Greylisting no longer rejects emails from Instagram. (PPPM-11674)
- The
plesk repair fs
utility now fixes incorrect permissions in/var/www/vhosts
. (PPPM-12051) - Improved a message shown after the Comodo rule set was activated. (PPPM-10829)
- Creating or deleting domains on a server that has a larger number of subscriptions (more than 100) no longer occasionally causes the âhttpd: Syntax error on lineâ error being shown. (PPPM-9180, PPPM-7236)
- The
/var/log/httpd/error_log
file no longer contains the following multiple error messages: âclient denied by server configuration: /usr/share/plesk-service.localdomain/â. (PPPM-11377) - Improved a message shown when nginx is not enabled but there was an attempt to start it. (PPP-46905)
- Mail Autodiscover now works when the www domain is selected as the preferred domain. (PPPM-11747)
- Mail now works on a subscription that belongs to a hosting plan whose mail service was disabled and then enabled both for the hosting plan and the subscription. (PPPM-11958)
- A subscriptionâs disk usage statistics can no longer show the chroot directories category with a non-zero value if the chroot shell environment was not enabled. (PPP-49136)
- Fixed the iptables version detection in the Plesk firewall script on operating systems with nftables (CentOS 8 and Debian 10). (PPPM-11795)
- It is now possible to create a mailbox on a subdomain after the
plesk repair
utility fixed the subdomain. (PPPM-11954) - The âMailbox usage exceeded 95% quotaâ email notification now has the date header with the current server time: the notification is less likely to be misplaced. (PPPM-12055)
- It is no longer possible to select a disabled PHP handler for a domain after switching between âNo web hostingâ and âWebsite hostingâ in the domainâs hosting settings. (PPPM-11928)
- A full server backup is now created without warning messages after a domain was moved to another subscription. (PPPM-11765)
- It is no longer possible to change the database server used for the Plesk
psa
database or change the databaseâs password via the CLI or API. (PPPM-11086)
Windows
- Plesk no longer gets stuck on the âInitializingâ screen if the selected trial license option failed to be processed. (PPP-49156, PPP-47384)
- To prevent issues with accessing Plesk, the
urlrewrite
package is now updated before thepanel
package. (PPPM-12027) - It is now possible to manage databases on SQL Server 2008 and SQL Server 2008 R2 in Plesk. (PPPM-11942)
- When SSL/TLS certificates are updated, an old certificate is now automatically deleted after it was replaced with the newly issued one. (PPPM-11953)
- Custom buttonsâ icons are now loaded correctly. (PPPM-12038)
- An update from Plesk Onyx to Plesk Obsidian is now blocked and a warning message is shown if Active Directory Domain Controller and Plesk are installed on the same server. Resuming the update with this configuration will break Plesk after the update. (PPP-48660)
- It is now possible to add multiple server headers at once via the CLI by using the
-add-web-server-header
option with theplesk bin domain --update-web-server-settings <domain_name>
command. (PPPM-12031) - The installation of Microsoft .NET Core 3.1.4 - Windows Server Hosting no longer fails with code 1638 and no longer breaks Plesk. (PPPM-12030)
- Plesk now hides the âAdd databaseâ button when the limit of MySQL databases is reached. (PPPM-11939)
- Plesk can now import dumps of very large Microsoft SQL databases without any errors. (PPPM-11996)
- The outdated PHP handlers (versions 5.6 and 7.0) no longer contain custom
upload_tmp_dir
as their values. (PPP-49179) - Plesk can now export MySQL 5.1 databases. (PPPM-12002)
- It is now possible to rename a subscription if its mail service was secured with an SSL/TLS certificate generated in Plesk (for example, a Letâs Encrypt certificate or a self-signed one). (PPPM-11995)
- It is now possible to change the administratorâs credentials for the Microsoft SQL server in Plesk. (PPPM-12001)
- Plesk can now use the custom
DumpTempDir
value for temporary backup files. (PPPM-11935) - After an attempt to install WordPress via Applications on a server that has disabled PHP handlers and MySQL, a clear error message is now shown instead of an HTTP error 500. (PPPM-10705)
- Plesk now backs up unassailable log files without warning messages. (PPPM-10885)
- PowerShell scheduled tasks now work in Plesk on Windows Server 2019. (PPPM-11321)
- It is now possible to rename a database user of the remote Microsoft SQL database in the Plesk interface. (PPPM-12059)
Third-Party Component Updates
Linux
- Updated Roundcube to version 1.4.6.
- Updated Horde to version 5.2.23.
- Updated Dovecot to version 2.3.10.1.
Windows
- Updated ASP.NET Core 3.1 to version 3.1.15.
- Updated ASP.NET Core 2.1 to version 2.1.19.
- Updated MariaDB to version 10.3.23 (both for the Plesk database and for customersâ websites).
- Updated MariaDB Connector/C to 3.1.8.
- Updated BIND to version 9.16.3.
- Updated Node.js 12 to versions 12.18.0.
- Updated Node.js 10 to versions 10.21.0.
- Fixed a severe vulnerability in myLittleAdmin.
Panel.ini Editor 3.2.2
19 June 2020
- Added a number of descriptions of the Letâs Encrypt extensionâs settings.
Letâs Encrypt 2.10.2
19 June 2020
- Panel.ini Editor now shows all necessary Letâs Encrypt settings. (EXTLETSENC-648)
- After a Plesk daily task was executed, the âPHP Fatal error: Modules_Letsencrypt_CustomInfoâ error no longer appears in the logs. (EXTLETSENC-861)
Grafana 1.1.6
19 June 2020
- After update to Grafana 7, the pages of the Grafana and Advanced Monitoring extensions no longer show the âlogin.OAuthLogin(state mismatch)â error instead of the expected content. (EXTPLESK-1868)
PHP Updates
18 June 2020
Linux
- Rebuilt PHP 7.4.7 on CentOS 7/RHEL 7/CloudLinux 7 because of the Oniguruma update.
Advanced Monitoring 1.3.1
16 June 2020
- The extension can now automatically detect server hardware changes and make the necessary adjustments: redraw graphs and recalculate thresholds of the notifications.
- It is now possible to set thresholds in MB and GB instead of bytes (which was previously the single option).
- The memory usage graph in Plesk for Windows now shows more available metrics.
- Units on the y-axis are now displayed more accurately: the fractional part is no longer rounded. (EXTPLESK-1844)
- The extension no longer interprets custom thresholds in the custom-health-config.xml file as the default ones. (EXTPLESK-1789)
- In Plesk for Windows, the threshold of physical and virtual memory usage is now calculated correctly. (EXTPLESK-1743)
- If the
Parallels.MonitorSrv.exe.Config
component is not installed correctly during the extensionâs installation in Plesk for Windows, the component is now automatically fixed and the extension is installed without any issues. (EXTPLESK-1435) - If the
health-monitoring
component is absent from Plesk for Windows for any reason, the component is now automatically installed and the System Health Monitor service is present. (EXTPLESK-1864)
Letâs Encrypt 2.10.1
16 June 2020
Windows
- The extension can now issue an SSL/TLS certificate to secure the server hostname if no domain with this hostname and no default website exist in Plesk. (EXTLETSENC-855)
- The extension no longer fails to issue SSL/TLS certificates if the common challenge directory support is enabled and the
plesk
binary path is absent from the IIS process environment. (EXTLETSENC-854)
WordPress Toolkit 4.8.3
9 June 2020
Windows
- IIS web server configs are no longer erroneously applied to all domains in a subscription with shared IIS application pool if at least one of these domains had WordPress installed. (EXTWPTOOLK-5044)
PHP Composer 1.1.0
9 June 2020
- Added support for Composer 2.0. The extension now works with Composer 1.0 and 2.0.
- The Composer utility shipped with the extension is now automatically updated by default.
- When two applications are installed on a domain, it is now possible to switch between the applicationsâ folder in PHP Composer. (EXTPHPCOMP-104)
- The PHP Composer button is no longer shown for a domain alias whose main domain does not have web hosting. (EXTPHPCOMP-100)
- Starting with Plesk Obsidian 18.0.20, the page in âApplicationsâ > âManage My Applicationsâ shows the message that informs how to locate a Composer application. (EXTPHPCOMP-56)
SSL It! 1.4.1
5 June 2020
- If a domain has a subdomain with the SSL support disabled, the SSL It! domain page no longer fails to be opened with a 500 HTTP error. (EXTSSLIT-955)
- If domains have the SSL support disabled, only SSL/TLS certificates from Letâs Encrypt can now be selected to secure the domainsâ webmail. Previously it was possible to select SSL/TLS certificates from DigiCert but they cannot secure webmail of the domains without the SSL support. (EXTSSLIT-952)
- Domains are now again can be secured when they are created (when the âSecure the domain with Letâs Encryptâ option is selected). (EXTSSLIT-953)
- When a domain was secured with an SSL/TLS certificate and then the SSL support for the domain was disabled, the âWebsites & Domainsâ page for the domain is now opened without any issues. (EXTSSLIT-954)
SSL It! 1.4.0
4 June 2020
-
In Plesk for Windows, significantly decreased a number of cases when the extension cannot issue a Letâs Encrypt certificate because the HTTP-01 challenge cannot be passed. To achieve this, we made the common challenge directory support turned on by default. This features has been already introduced in Plesk for Linux for quite some time. Now it works for Windows as well.
Note: If necessary, you can turn off the common challenge directory support via the CLI. However, we recommend that you always keep the support on.
-
The extension can now secure webmail on domains without web hosting.
- The CLI can now manage wildcard certificates issue and turning on and off HSTS. To see details, use the plesk ext sslit âhelp command.
- Added cache to store domainsâ security status. In certain cases, it speeds up the loading of the extensionâs domain screen.
- Redesigned the extensionâs icons to make them more in tune with the Plesk Obsidian style.
- For non-Letâs Encrypt certificates, added the âSuggest renewingâ indicator on a domain card. The indicator means that an SSL/TLS certificate is about to expire and the extension cannot renew it automatically. We suggest that users renew the certificate manually in due time.
- When a domain is secured with a custom SSL/TLS certificate, the domainâs security status is now identified correctly. (EXTSSLIT-784)
- When a domain has only its www alias secured (for example, only www.example.com is secured but not example.com), the âDomain with the âwwwâ prefix` optionâ is no longer marked as not secured. (EXTSSLIT-802)
- Significantly sped up Plesk search on servers that have a large number of subscriptions (more than 100) and the extension installed. (EXTSSLIT-806)
- Cleaned up the code executed after a user clicks to issue or renew an SSL/TLS certificate. The extenion no longer shows the âGet it freeâ button instead of âRenewâ and the âNo CA plugins availableâ message by mistake. (EXTSSLIT-832)
WordPress Toolkit 4.8.2
2 June 2020
- Corrected mistakes in English locale.
- Additional fix was added for the issue previously addressed in WPT 4.8.1: Apache rewrite rules are no longer erroneously applied to all domains in a subscription if at least one of these subscriptions had WordPress installed. (EXTWPTOOLK-5017)
WordPress Toolkit 4.8.1
1 June 2020
- Under certain circumstances, Apache rewrite rules could stop working with enabled hotlink protection, block authors scan, or bot protection security measures. (EXTWPTOOLK-5009)
WordPress Toolkit 4.8.0
29 May 2020
- Server administrators can now define default WordPress installation language in the global WordPress Toolkit settings.
- CLI command for enabling and disabling Smart Updates on a site was added. Run
plesk ext wp-toolkit --smart-update
to access it. - Plugins and themes that require a license for automatic update will now cause a proper error message when users try to update them via WordPress Toolkit without a license.
- Backup / Restore links now always lead to the corresponding subscriptionâs Backup Manager screen. (EXTWPTOOLK-1582)
- Smart Updates can now update plugins and themes uploaded manually to WordPress Toolkit if their updates were also manually uploaded to WPT. (EXTWPTOOLK-4080)
- WordPress Toolkit buttons are now properly displayed in Action List if Plesk is in restricted mode. (EXTWPTOOLK-4596)
- German translation for multisites was corrected. (EXTWPTOOLK-4627)
- Certain manually uploaded plugins with incorrect plugin slugs no longer display a broken Changelog link. (EXTWPTOOLK-4662)
- It is no longer possible to disable native wp-cron on WordPress sites that use disabled or absent PHP handler. (EXTWPTOOLK-4799)
Letâs Encrypt 2.10.0
28 May 2020
- Automatic renewal of Letâs Encrypt certificates no longer fails when a domain has a large number of secured subdomains (more than 200). (EXTLETSENC-644)
- Challenge token files (which are created after certificates failed to be renewed or issued) are now deleted after 3 months. The extensionâs folders are no longer cluttered. (EXTLETSENC-676)
- In Plesk for Windows with Bind, wildcard challenge DNS records are now added automatically to the DNS zone of a domain that you try to secure with a wildcard certificate. (EXTLETSENC-813)
Plesk Obsidian 18.0.27 Update 1
25 May 2020
- Website configs are now regenerated if Plesk had previous upgrades from version 11 or earlier. (PPPM-11952)
- Added certain translations that were missing from Plesk 18.0.27. (PPP-49052)
Linux
- Enabling Plesk Firewall no longer crashes the
sw-cp-server
service. (PPPM-9966) - Multiple
sw-cp-server
restarts no longer cause Plesk downtime on Ubuntu 18.04. (PPP-49063) - Plesk Obsidian can be now updated to version 18.0.27 without the â20200423164000-create_stored_sslmng_configurationâ warning being shown. (PPPM-11943)
- Hosting settings can now be changed if the
sysuser
login has more than 20 characters. (PPPM-11955)
Amazon Route 53 2.8.0
20 May 2020
-
It is now possible to have white-label or vanity name server with Amazon Route 53. To configure them, users need to select the âManage NS and SOA recordsâ checkbox and then follow step 7 and further in the Amazon Route 53 guide.
The feature described above was introduced by the extensionâs user. We express our gratitude and welcome the contribution of Amazon Route 53 users into further development of the extension.
- Added the warning message shown after users click the âSync All Zonesâ button. The warning explains that Plesk will overwrite all DNS records in Route53 with those in Plesk and will remove those DNS records from Route53 that do not exist in Plesk.
- The extension can now handle 2048-bit DKIM keys. (EXTPLESK-286)
PHP Updates
18 May 2020
- Updated PHP 7.4 to version 7.4.6.
- Updated PHP 7.3 to version 7.3.18.
- Updated PHP 7.2 to version 7.2.31.
Plesk Migrator 2.19.4
15 May 2020
Linux
- It is now possible to migrate subscriptions containing additional Apache and nginx directives to Plesk 18.0.27. (PMT-4783)
Plesk Welcome Guide 1.1.0
13 May 2020
- Refactoring for Plesk Obsidian.
- Increased requirement to 18.0.23.
- Added core permission check âmanage_server_modulesâ to check whether user has the right to install extensions.
- Updated presets (added Email Security & Joomla! Toolkit).
- Replaced Toggle Button with Switch element for status change.
- Updated copyright year.
- PSR-12.
Plesk Obsidian 18.0.27
12 May 2020
- The GD library shipped with Plesk PHP packages now supports WebP.
- Fixed inconsistencies found in the Plesk database before initializing Plesk.
- Subscription backups are no longer created in invalid state if there are improper values in the âprotected_dirsâ table in the Plesk database.(PPPM-11889)
- In German locale, on the administratorâs home page, a number of words are now displayed in German instead of English. (PPPM-11887)
-
It is now possible to configure which TLS version to use when creating backups in FTP storage by adding the following lines to the
panel.ini
file: (PPPM-11906)[pmm] ftpMaxTlsVersion = 12
-
It is now possible to hide the âCookiesâ link found on the login screen by adding the following lines to the
panel.ini
file: (PPPM-11808)[gdpr] cookieSettings.loginFormEntrypointEnabled = false
- The File Sharing and Bandwidth Limiting (mod_bw) components have been deprecated and will be removed soon. Learn more.
- In a number of non-English locales, the database export progress dialog messages are now shown in the corresponding language instead of English. (PPPM-11875)
- On servers with the âSkins and Color Schemesâ extension installed and enabled and a custom skin installed, logging in to Plesk and refreshing the page no longer resets the skin to the default one. (PPPM-11831)
- Operations in Plesk no longer sometimes fail with the âIntegrity constraint violation: 1062 Duplicate entry for key âPRIMARYââ error. (PPP-48787)
- Creating a backup in Amazon S3 storage no longer produces unhelpful error messages in case of failure. (EXTPLESK-1742)
- Restoring a customer account from backup no longer fails if the customerâs password is missing from the backup. (PPPM-11867)
Linux
- Updating Plesk no longer results in system packages and installed extensions being updated as well, which should decrease the number of failed updates.
-
It is now possible to enable beta support for dynamic IP addresses by adding the following lines to the
panel.ini
file (not recommended for use in production, please report any issues you encounter on the Plesk Forum):[network] dynamic_ipv6 = on
- Using Dovecot on Plesk servers deployed on LXC no longer results in errors. (PPPM-11878)
- The
plesk repair web <domain.tld>
no longer reports all domains without physical hosting as having problems. (PPPM-10907) - The
plesk repair web <domain.tld>
now correctly repairs web server configuration issues for domains without physical hosting. (PPPM-10907) - Under specific circumstances, Plesk no longer fails to detect the main IP address on the server. (PPPM-11484)
- On Red Hat Enterprise Linux 8 and CentOS 8 servers, installing Plesk now finishes successfully if the
chsh
utility is missing from the server. (PPP-48847) - PostgreSQL database server is shown in âTools & Settingsâ > âDatabase Serversâ even if it is not started or initialized. (PPP-48341)
- Enabling a disabled Fail2ban jail no longer results in misleading errors being written to the â/var/log/fail2ban.logâ file. (PPPM-8105)
- Running the
apache2ctl -t
orsystemctl restart httpd
commands after creating a certificate for a domain via the Letâs Encrypt extension and the removing the â*-ca.crtâ part no longer breaks Apache configuration.(PPPM-11899) - On Red Hat Enterprise Linux and CentOS servers, constants for selecting SSL/TLS versions are now available in PHP shipped with Plesk. (PPPM-11904)
- Running the
plesk repair web -y
command now correctly fixes Apache configuration if the â*-ca.crtâ part of SSL/TLS certificate is missing for one or more domains. (PPP-48798) - Trying to log in over FTPS using an incorrect password for an existing user no longer results in the connection being reset due to ProFTPd experiencing a segfault. (PPPM-11866)
- On Red Hat Enterprise Linux 8 and CentOS 8 servers, the Postfix service no longer fails to start. (PPP-48637)
- On CloudLinux 7 servers, installing Plesk with Phusion Passenger, installing and configuring CageFS, and then installing the
passenger-cagefs
package no longer fails with the âclcommon.cagefs python module is unavailableâ error. (PPPM-11922)
Windows
- Running the
plesk repair fs
command now also checks for missing, corrupted or outdated Plesk files. - The
plesk sbin websrvmng --configure-plesk-website
command no longer fails if an âapplication/octet-streamâ MIME type for the .* file extension exists on the server. (PPP-48654) - Publishing a site snapshot in Web Presence Builder no longer results in an error if the âEnable Win32 long pathsâ policy is disabled on the server. (PPPM-10611)
- Restoring a backup when there is not enough free disk space on the server now results in a more helpful error message. (PPPM-11912)
- PHP scripts using the
file_get_contents()
function no longer fail with the âWarning: file_get_contents(): SSL operation failed with code 1.â error. (PPPM-11909) - On Plesk servers with SmarterMail installed, mail content for newly created domains is now correctly stored in the âC:\SmarterMail\Domains\example.comâ directory instead of âC:\SmarterMail\Domains\Domains\example.comâ. (PPPM-11659)
Third-Party Component Updates
- Updated Horde to version 5.2.22.
Linux
- Updated OpenSSL used by nginx to version 1.1.1g.
Windows
- Updated SpamAssassin to version 3.4.4.
- Updated OWASP ModSecurity CRS to version 3.2.0.
- Updated MariaDB to version 10.3.22 (both for the Plesk database and for customersâ websites).
- Updated plesk-engine PHP to version 7.3.17.
- Updated Git to version 2.26.2.
WordPress Toolkit 4.7.4
12 May 2020
- Updated the hint for âDisable wp-cronâ feature in accordance with official WordPress documentation.
Domain Traffic Monitor 1.3.2
6 May 2020
-
vhosts-traffic-monitor
now restarts successfully when the worker process is dead but the pidfile exists. (EXTPLESK-1235)
WordPress Toolkit 4.7.3
30 April 2020
- Fine-tuned Jetpack license checks to avoid clogging up the log files.
- Update of WordPress Toolkit extension no longer fails under certain specific conditions with âValue is not allowed. Allowed one numeric value and â*ââ error. (EXTWPTOOLK-4798)
WordPress Toolkit 4.7.2
29 April 2020
- A bunch of new default WordPress site names was added. Also, some of the gloomier old names were changed to more positive ones for the sake of cheering people up a bit.
- Updated the destination of
Changelog
links on theUpdates
screen. (EXTWPTOOLK-4733) - Itâs now possible to properly disable wp-cron.php if scheduled tasks with missing PHP handlers are present on the server. (EXTWPTOOLK-4764)
DigitalOcean DNS 1.2.0
28 April 2020
- It is now possible to authorize the extension using DigitalOcean API tokens as well as OAuth 2.
- NS records for vanity DNS servers (âns1.yourdomain.comâ instead of âns1.digitalocean.comâ) are now correctly synchronized from Plesk to DigitalOcean.
- Changes made to the TTL values of DNS zones in Plesk are now correctly synchronized to DigitalOcean. (EXTPLESK-1677)
- CAA records created in Plesk are now correctly synchronized to DigitalOcean.(EXTPLESK-1745)
SSL It! 1.3.2
23 April 2020
- Managing a domainâs SSL/TLS certificates using Internet Explorer no longer results in a blank page. (EXTSSLIT-822)
PHP Composer 1.0.6
23 April 2020
- Opening PHP Composer in Internet Explorer no longer results in a blank page. (EXTPHPCOMP-128)
WordPress Toolkit 4.7.1
22 April 2020
- Made nginx caching great again (well, now you can enable and disable it again). (EXTWPTOOLK-4746)
PHP Updates
20 April 2020
- Updated PHP 7.4 to version 7.4.5.
- Updated PHP 7.3 to version 7.3.17.
- Updated PHP 7.2 to version 7.2.30.
WordPress Toolkit 4.7.0
17 April 2020
- WordPress Toolkit now can update paid plugins & themes, if these updates are available in the WordPress admin area. Note that certain plugins and themes do not support automatic updates, but display notifications about update availability anyway. This particulal scenario isnât fully supported yet.
- WordPress administrators now have the option to disable the execution of
wp-cron.php
via default WordPress mechanism. Enabling this option will automatically create a regular scheduled task in Plesk, which means users can manually adjust the frequency ofwp-cron.php
task execution on a per-site basis. - âUpdatesâ window now displays Changelog links for plugins and themes.
- Itâs now possible to filter WordPress sites in the âInstallationsâ list by their labels.
- Reduced the number of screenshot creation timeouts.
- Exterminated redundant backslashes in non-English email notifications. (EXTWPTOOLK-4699)
- Remote WordPress sites connected via plugin can now be properly updated again. (EXTWPTOOLK-4622)
- WordPress Toolkit now works again on Windows 2012 R2, if access to Plesk via port 443 is enabled. (EXTWPTOOLK-4166)
- Creation time of restore points is not updated anymore if data copy or update procedure is carried out without creating a new restore point. (EXTWPTOOLK-4115)
- Updates for manually uploaded plugins and themes will now be visible in the interface if they become available in WordPress admin area. (EXTWPTOOLK-1785)
SSL It! 1.3.1
16 April 2020
- On CentOS 6 servers, automatic renewal of SSL/TLS certificates issued via the Letâs Encrypt extension no longer fails. (EXTSSLIT-821)
Advisor 1.8
15 April 2020
- Plesk Advisor now recommends installing the Plesk Email Security extension.
Plesk Obsidian 18.0.26
14 April 2020
-
With this update (18.0.26) Plesk Obsidian is now considered to be a âstableâ (late adopter) release.
Late adopter release. By the time this tier becomes available, the latest Plesk version has been out long enough to have most of its nagging issues discovered and fixed. You can be certain that the Plesk version you are about to install has already been used in production environments for some time, and there are no major issues that could compromise the stability of your Plesk servers.
- Which domain to use to access Plesk via the standard HTTPS port can now be configured via the Plesk GUI. Go to Tools & Settings and look for Customize Plesk URL (under âGeneral Settingsâ).
- Domains with the âForwardingâ hosting type now support HTTPS. The support for securing such domains with Letâs Encrypt certificates via the Letâs Encrypt extension will be added later. (PPP-42238)
- Plesk interface no longer partially fails to load on Plesk Obsidian servers protected by CloudFlare with RocketLoader enabled. Still, we do not recommend using RocketLoader with Plesk, as not only it will not speed up UI rendering, but may slow it down and cause UI to flicker.
-
Certain Plesk features (Web Users, Web Presence Builder, and Website Copying) that are hidden in Dynamic View by default can now be returned to the Plesk interface by adding the following lines to the
panel.ini
file:[dynamicList] enableFeatures = webusers, sitebuilder, sitecopy
- Updated xdebug to version 2.9.4.
- Updated uuid to version 1.1.0.
- Updated sw-engine to version 2.27.6.
- Updated sw-engine PHP to version 7.3.16.
- The File Sharing and Bandwidth Limiting (mod_bw) components will be deprecated in the next Plesk Obsidian release (18.0.27). Learn more.
- The âPHP Settingsâ button is no longer missing in Power User view on Plesk servers with the Restricted Mode turned on, âPHP version and handler managementâ enabled, and âHosting settings managementâ, âCommon PHP settings managementâ, and âSetup of potentially insecure web scripting options that override providerâs policyâ disabled. (PPPM-11542)
- The âActivate the mail serviceâ checkbox is no longer shown to customers during domain creation if their service plan does not include access to mail. (PPPM-11626)
- The date of the last backup is once again correctly written to the âBackupsSettingsâ table of the Plesk database. (PPPM-11721)
- Scheduled backups are now properly stored for X weeks instead of X days (X is determined by the value of the âKeep backup files for X weeksâ option). (PPPM-11796)
- Full backups are no longer created instead of incremental ones if the server hostname contains one or more uppercase characters. (PPPM-11825)
- Browsing the Application Vault no longer results in the âPackage with UID ââ not foundâ error. (PPP-48152)
- Storing a backup on Microsoft One Drive no longer fails if One Drive erroneously reports 0 GB free space remaining and the âStart the backup only if your server has the sufficient amount of free disk spaceâ option is enabled. (EXTPLESK-1716)
- The
pleskrestore
utility can now be called via REST API. (EXTREST-112)
Linux
- Added the ability to set priority for backup processes. Go to Tools & Settings > Backup Manager (under âTools & Resourcesâ), click âSettingsâ and look for the âRun scheduled backup processes with low priorityâ and âRun all backup processes with low priorityâ options. (PPPM-10734)
- On Ubuntu 16.04 x64 servers, the installed iptables version is now returned correctly. (PPPM-9487)
- Running
plesk repair db -y
on a newly installed Plesk Obsidian server that has not yet been initialized no longer makes later attempts to initialize the server fail. (PPPM-11446) - Changing a customerâs password no longer results in the âThe external email address matches the primary oneâ error if the âEnable mail management functions in Pleskâ option is disabled in Tools & Settings > Mail Server Settings (under âMailâ). (PPPM-11745)
- Custom error pages are now displayed correctly for domains served by nginx only. (PPPM-11748)
- Domains can now be added to the mail server blacklist if the Plesk interface language is set to German. (PPPM-11766)
- Read email messages fetched via the POP3 protocol are no longer marked as new after switching from Courier 5 to Dovecot. (PPPM-11776)
- On newly installed Plesk Obsidian servers the server IP address is now automatically added to the Fail2Ban trusted IP addresses list. (PPPM-11777)
- On CentOS 8 x64 servers, checking the status of the firewall via the
systemctl status psa-firewall
command no longer results in an error. (PPPM-11795) - Updating Plesk no longer makes the names of some mail folders to become unreadable. (PPPM-11801, PPPM-11807)
- On Plesk servers using apache in tandem with nginx, clientsâ IP addresses are now correctly logged in
/var/log/httpd/access_log
instead of the serverâs IP address. (PPP-38930) - Plesk servers with Plesk Premium Antivirus installed no longer send the admin an email warning them of the âDr.Web Updater: failed to download filesâ error every time scheduled tasks are processed. (PPP-45087)
- nginx no longer returns the â504 Gateway Timeoutâ error when processing slow PHP scripts. (PPP-45489)
- Plesk no longer produces the âPHP Notice: Undefined variable: localeâ error under specific circumstances. (PPP-48212)
- On CentOS 8 x64 and Red Hat Enterprise Linux 8 servers, Plesk installation and updates no longer fail if the network connection to the configured CentOS mirror is slow. (PI-658, PPP-48254)
- On CentOS 8 x64 and Red Hat Enterprise Linux 8 servers, Plesk updates no longer fail if certain Python 3 packages are installed on the server. (PPP-48266)
Windows
- Removed obsolete information from the notification shown when securing webmail with an SSL/TLS certificate. (PPPM-6184)
- Creating a backup on a mapped drive via the
pleskbackup.exe
utility no longer fails with the âThe system cannot find the path specifiedâ error. (PPPM-11761) - Incremental backups now only contain new email messages instead of all email messages. (PPPM-11772)
- Updating Plesk on a server with a Microsoft SQL Server 2017 instance no longer fails. (PPPM-11785)
- Creating a Microsoft SQL Server database no longer fails if the limit on MySQL databases in the Service Plan is reached for the subscription. (PPP-46436)
Third-Party Component Updates
- Updated phpMyAdmin to version 5.0.2.
Linux
- Updated Roundcube to version 1.4.3. The âElasticâ responsive skin with full mobile device support is now enabled by default.
- Updated OpenSSL used by nginx to version 1.1.1f.
- Updated Dovecot to version 2.3.9.3.
- Updated Horde ActiveSync to version 2.41.3.
- Updated Horde Form to version 2.0.20.
- Updated Horde Image to version 2.6.1.
- Updated Horde Test to version 2.6.4.
- Updated Horde Socket Client to version 2.1.3.
Windows
- Updated .NET Core 3.1 to version 3.1.3.
- Updated .NET Core 2.1 to version 2.1.17.
- .NET Core 3.0 and 2.2 are no longer shipped with Plesk.
- Updated IIS URL Rewrite Module to version 7.2.1993.
SSL It! 1.3.0
10 April 2020
- Changed the way how you customize the list of SSL/TLS certificates offered by SSL It!:
- You can now do so in the extensionâs interface and via the CLI.
- The previous way of customization (via
panel.ini
) is no longer available. The correspondingpanel.ini
settingfilteredProducts
is now deprecated. If you used customization viapanel.ini
, use the CLI commands instead. - Already done customizations continue working after the extensionâs update.
- The extension now uses the same CA bundle that comes with Plesk.
- In Plesk Obsidian, the SSL It! security indicator on a domain card works significantly faster, which makes a difference for servers with a large number of domains.
- Removed the additional check of SSL/TLS certificates implemented because of the Letâs Encrypt bug. The check is no longer relevant.
- Issue of an SSL/TLS certificate no longer fails with the âDomain alias not found by id=âŠâ error if the corresponding certificate order had had an associated domain alias that was then deleted while the order was pending. (EXTSSLIT-677)
- A 500 HTTP error no longer occasionally occurs when users try to access the âSSL/TLS Certificatesâ screen of certain subscriptions. (EXTSSLIT-678)
- The extension now correctly displays the security status of domains secured with SSL/TLS certificates from DigiCert if the domainsâs names are mixed-case. (EXTSSLIT-745)
- The extension now correctly displays the security status of a domain secured with a wildcard SSL/TLS certificate if the certificate was previously assigned to another domain. (EXTSSLIT-769)
- The extension now correctly detects the âKeep websites securedâ option state for domains created under a service plan that had both the SSL It! and WordPress Toolkit services selected. (EXTSSLIT-754)
Site Import 1.4.4
8 April 2020
- Mail importing now works if the target server is remote SmarterMail 100. (PMT-4764)
- Improved stability of mail importing if the target server is remote SmarterMail 100. (PMT-4765)
Plesk Email Security 1.0.4
6 April 2020
- Revised rDNS check (EXTCERT-2841)
- 0 spam score is now allowed. (EXTCERT-2844)
- Added the
inet_acl
option to the Amavis configuration file (EXTCERT-2813) - The ClamAV service is now stopped/started if the antivirus is disabled/enabled in the interface. (EXTCERT-2836)
- User preferences from the Plesk SpamAssassin component are now imported only if the corresponding option is enabled in the settings. (EXTCERT-2806)
- Added
smtp_tls_security_level = none
for internal communication for the Postfix configuration. (EXTCERT-2837) - Increased a number of concurrent processes to 5 to process more emails concurrently. (EXTCERT-2838)
- The âTypeError: Cannot read property âremoveâ of nullâ error is no longer shown. (EXTCERT-2819)
- Quarantine no longer shows an error if quarantined emails are malformed. (EXTCERT-2843)
- The Bayes Filter signatures dump is now downloaded to the correct path and Bayes Filter is now enabled by default. (EXTCERT-2818)
SEO Toolkit 1.1.9
3 April 2020
- Fixed issues related to a number of available keywords in Rank Tracker.
- Other internal fixes.
Git 1.1.4
3 April 2020
Linux
- In Git version 2.16.0 and later, it is now possible to clone a remote Git repository even if it uses a non-standard SSH port. (EXTGIT-106)
- When the
git-helper
utility is executed, the utility name is now shown. (EXTGIT-107)
Plesk Migrator 2.19.2
2 April 2020
- Migration now works if the source or target server is remote SmarterMail 100. (PMT-4754)
- Improved stability of migration if the target server is remote SmarterMail 100. (PMT-4760)
- If the protected directory name contains the dot (.) character, the name of the protected directory user is no longer changed during migration. (PMT-3317)
Advisor 1.7.6
30 March 2020
- Fixed the issue with incorrect links in the âSecure Websites With SSL/TLS Certificatesâ recommendation. (EXTADVISOR-808)
Advisor 1.7.5
27 March 2020
- The free Comodo rule set became the default one in Advisor. On OSes where the Comodo rule set is not available, the free OWASP rule set became the default one.
- Clicking the âUpgradeâ button now opens the SSL It! extensionâs screen. (EXTADVISOR-801, EXTADVISOR-802)
- Fixed an invalid domain link provided by the âSecure Websites With SSL/TLS Certificatesâ recommendation. (EXTADVISOR-768)
- If ModSecurity is turned off, the âConfigure ModSecurity & Fail2banâ recommendation can be now applied without PHP warnings in logs. (EXTADVISOR-772)
- After Fail2ban was disabled in
panel.ini
and then the âConfigure ModSecurity & Fail2banâ recommendation was applied, the âpm_Exception: Could not enable jailsâ error is no longer shown. (EXTADVISOR-789) - Fixed license-related issues during ModSecurity and Fail2ban activation. (EXTADVISOR-798)
- If Advisor could not enable ModSecurity with the Comodo rule set, ModSecurity is now enabled with the free OWASP rule set as the default one. (EXTADVISOR-803)
- Unnecessary âPHP Deprecated Constructionâ error messages are no longer written to
panel.log
during Advisor installation. (EXTADVISOR-689)
Plesk Obsidian 18.0.25 Update 2
26 March 2020
Linux
- Fixed conversion to UTF-8 in Plesk with Dovecot when mailnames without mailboxes exist. (PPPM-11757)
Letâs Encrypt 2.9.0
26 March 2020
- After Plesk cloning, the extension now tries to automatically secure cloud images and cloned images of Plesk Obsidian with SSL/TLS certificates from Letâs Encrypt.
- After Plesk was initialised, the extension now tries to automatically secure Plesk with an SSL/TLS certificate from Letâs Encrypt.
- The extension now uses POST requests instead of GET requests in accordance with the Letâs Encrypt decision.
- Removed the additional check of SSL/TLS certificates implemented because of the Letâs Encrypt bug. The check is no longer relevant.
- The extension now automatically secures both 8443 and 443 ports during Plesk Obsidian installation. (EXTLETSENC-679)
- If the DNS server is disabled, error messages are no longer shown in panel.log after wildcard SSL/TLS certificates were issued. (EXTLETSENC-707)
- In Plesk for Linux, the âException: PHP Warning: array_filterâ error messages are no longer reported when issuing wildcard SSL/TLS certificates. (EXTLETSENC-720)
- A clear error message is now shown when users try to issue wildcard SSL/TLS certificates but the corresponding feature is disabled. (EXTLETSENC-741)
- Auto-renew of SSL/TLS certificates no longer fails after a secured domain or subdomain was renamed. (EXTLETSENC-768)
- Decreased the possibility of rare issues when IDN domains could not be secured with SSL/TLS certificates from Letâs Encrypt. (EXTLETSENC-573)
PHP Updates
24 March 2020
- Updated PHP 7.4 to version 7.4.4.
- Updated PHP 7.3 to version 7.3.16.
- Updated PHP 7.2 to version 7.2.29.
Plesk Obsidian 18.0.25 Update 1
23 March 2020
- If the limitations on outgoing email messages are turned on in the mail server settings, Outgoing Mail Control no longer reports false positive and false negatives results on the Home screen. (PPP-48115)
Windows
- Mail in the SmarterMail mail server can be now backed up if a mail accountâs password was changed via the SmarterMail client. (PPPM-11684)
- Mail in the SmarterMail mail server can be now backed up without the âUnable to back up message Inbox/1.1: Syntax error in ENVELOPE.â warning. (PPPM-11719)
Docker 1.4.6
19 March 2020
- The extension can now be installed on CentOS 8/RHEL 8. (EXTDOCKER-98)
- After being installed on CentOS 8/RHEL 8, Docker Remote Node Management no longer shows an unclear error message. (EXTDOCKER-87)
- It is now possible to specify environment variables whose names contain the period character (â.â). (EXTDOCKER-99)
- After being installed in Plesk Obsidian for Linux, the extension is now available and does not show the the âPermission deniedâ error. (EXTDOCKER-95)
Plesk Migrator 2.19.1
18 March 2020
- If a database that is being migrated already exists on the target server but not registered in Plesk, the database is no longer overwritten with one from the source server. Plesk now detects such issues, does not migrate the database, and shows a warning message. (PMT-4723)
- Migration from cPanel no longer fails if a password of the source database server is enclosed in single quotes. (PMT-4751)
Plesk Obsidian 18.0.25
17 March 2020
- Plesk now support CentOS 8/RHEL 8 (installation and migration). Note that a number of limitations exist.
- Mail autodiscover now works for Microsoft Outlook 2019/O365 mail clients. (PPPM-11428)
- As a part of GDPR compliance changes: added the cookie information banner shown the first time users log in to Plesk. Users can now also set their cookie preferences in Plesk (using the corresponding button on the banner or going to Tools & Settings > Cookies in Plesk (under âPleskâ)).
- It is now possible to check for Plesk updates on the Home screen.
- Users from areas embargoed under Internal Export and Sanctions Compliance Policy can no longer use Plesk with a trial license. When the users proceed with a trial license, they see a message that Plesk is not currently available in their regions.
- The Plesk default password strength policy is now set to âStrongâ on new Plesk Obsidian servers. Existing Plesk servers that were updated to Plesk Obsidian 18.0.25 keep their chosen password strength policies.
- Removed the Cloudflare from Plesk Autoinstaller.
- Retrieving keys now works correctly (a 502 Bad Gateway error is no longer shown) on servers with a large number of customers, resellers, or additional users (more than 700). (PPPM-11672)
- Backing up large databases (more than 50 GB) no longer fails. (PPPM-11535)
- It is now possible to use custom buttons with Dynamic List view. (PPPM-11584)
- Customers and additional users can no longer create subscriptions. (PPPM-11680)
- The server backup can now be created if a customer login contains the forward slash character (â/â). (PPPM-11640)
- A database user whose password is encrypted can now import and export the domain database after providing the database password. (PPPM-7968)
- Extensions with EventListener can no longer break Plesk. (PPPM-11656)
- Plesk email notifications are no longer blocked by SPF in Plesk Obsidian 18.0.23 Update 2 and later. (PPPM-11537)
- The
plesk bin pleskbackup server --exclude-domain
command can now again exclude domains from a server backup. (PPPM-11695) - Backing up to FTP storage no longer fails if the destination folder contains non-ASCII characters. (PPPM-11704)
- Headers of Plesk email notifications are now correctly displayed if the senderâs name contains UTF-8 characters. (PPPM-11667)
- Setting IPv6 addresses to none in Web Hosting Access of a domain no longer removes TXT records for the domain. (PPPM-11648)
- A Plesk server created by cloning no longer has an IP address of the template server. (PPPM-11718)
Linux
- Updated sw-engine to PHP 7.3.15.
- The main IP address is now correctly detected even under specific IP configurations. (PPPM-11484)
- Fixed the issue when, occasionally after Plesk cloning, nginx was not running and IP mapping was incorrect. (PPPM-11701)
- It is now possible to restore backups that have a mailing list without its owner. (PPP-47723)
- Plesk on a Lenovo Cloud server is no longer detected as a dedicated server. (PPPM-11660)
- Subscription backups can now be created and stored in an NFS storage. (PPP-46555)
- Mail folders whose names contain umlauts (Ă€, ö, ĂŒ) are now displayed correctly after update from Plesk Onyx to Plesk Obsidian. (PPPM-11200)
- The check on SMTP ports 25 and 587 can no longer return false-positive results. (PPPM-11528)
- It is now possible to create a scheduled backup of a subscription with an add-on domain is the main subscriptionâs domain is suspended. (PPPM-11698)
- A server backup can now be restored without the âAn error occurred while setting MAPS zones:â error message if more that one zone was set. (PPPM-11609)
- Deleting the CA part of an SSL/TLS certificate no longer causes an error. (PPPM-5892)
- Installing Plesk via https://get.plesk.com no longer fails with the âInstallation to the host has been already startedâ error if there has been an aborted or unsuccessful attempt to install Plesk on a server with the same IP address in the past. (PPPM-11275)
Windows
- Maintenance mode is now turned on immediately when the cloning tool is executed.
- Subscriptions with the SmarterMail mail server can be now backed up correctly without multiple warning messages. (PPPM-11682)
- IIS logs are now rotated. (PPPM-11651)
- Numerous
interface_async_executor.exe
processes no longer hinder Plesk work because their number is now limited. (PPPM-11677) - Technical reports are now correctly created and, if any issues happen, they are clearly reported. (PPPM-11644)
Third-Party Component Updates
Linux
- Updated ProFTPD to version 1.3.6c, which includes a fix for a security issue. We strongly recommend that you update Plesk.
Windows
- Microsoft Drivers for PHP for SQL Server are now shipped with PHP 7.4.
- Updated Microsoft ODBC Driver 17 for SQL Server to version 17.5.1.1.
Syslog Watch 1.2.1
17 March 2020
- Logs are now automatically updated when the âAutomatically append log contentâ option is enabled. (EXTPLESK-390)
WordPress Toolkit 4.6.0
12 March 2020
- WordPress administrators can now automatically update their website URL in the WordPress database and
wp-config.php
file based on the actual current URL. This procedure is particularly useful after migrating a website from a different location like your local workstation. The Update Site URL feature is available in the âhamburgerâ (context drop-down menu) on a WordPress site card. - CLI utility for the Clone feature was added. It can be accessed through the
plesk ext wp-toolkit --clone
command. - CLI utility for the Data Copy feature was added. It can be accessed through the
plesk ext wp-toolkit --copy-data
command. - Remote sites with modified meta tag generators can now be properly connected to WordPress Toolkit, and their WordPress version is now properly detected. (EXTWPTOOLK-4468)
- It is now possible to install WordPress via CLI if the document root path is specified as
/
or\
. (EXTWPTOOLK-4457) - WordPress administrators are no longer forced to reapply security measures due to automatic WordPress core updates flagging the site as insecure. (EXTWPTOOLK-4127)
- WordPress Toolkit now works on Internet Explorer 11 because what is dead may never die. (EXTWPTOOLK-4392)
- Smart Updates of WordPress Core no longer fail with the âException: Warning: Failed to fetch checksums. Please cleanup files manuallyâ error. (EXTWPTOOLK-4195)
- Interactive elements and text in the headers of the sliding screens are now much more visible even when a customized color scheme is used. (EXTWPTOOLK-3612)
- Additional services added to Plesk by WordPress Toolkit are now shown properly on Plesk Obsidian. (EXTWPTOOLK-3408)
- Scan operation is no longer stuck if a website with a root symlink is found. (EXTWPTOOLK-3096)
- Updates check task no longer fails if a domain with a WordPress site was changed from physical hosting to something else. To tell you the truth, it has been working properly for several years, we simply didnât know for sure when exactly this bug was fixed. Well, better late than never! (EXTWPTOOLK-1042)
Plesk Migrator 2.19.0
11 March 2020
- The extension can now migrate mail if the source mail server is SmarterMail 100.
- The extension can now be installed in Plesk on CentOS 8.
- After migrating mail, actual dates when emails were received are no longer changed to the date of migration on certain mail clients (for example Apple Mail). (PMT-4559)
Advanced Monitoring 1.3.0
10 March 2020
- It is now possible to select the graphs you want to be displayed on the extensionâs tabs. To do so, go to Advanced Monitoring and then click Settings > Customize.
- It is now possible to configure the extension via the CLI (run
plesk ext monitoring --help
to see the CLI commands). - Useless âOKâ notifications are no longer shown after Plesk or Advanced Monitoring are installed.
- Resolved compatibility issues with the upcoming Plesk Obsidian 18.0.25. (EXTPLESK-1670)
- Fixed the Grafana bug about the missing datepicker. (EXTPLESK-1616)
- Made the Advanced Monitoring notifications less noisy: they are now automatically hidden after a few seconds. You no longer need to close each notification manually. To read the notifications that you have hidden, click the bell icon in the upper right corner of the screen. (EXTPLESK-1575)
- The âCheck server healthâ button (shown on Advanced Monitoring warning notifications) now redirects to the exact tab with the resource usage graph whose threshold was exceeded. (EXTPLESK-1484)
Grafana 1.1.4
10 March 2020
- It is now possible to configure the extension via the CLI (run
plesk ext grafana --help
to see the CLI commands). - Resolved compatibility issues with the upcoming Plesk Obsidian 18.0.25. (EXTPLESK-1670)
- The extension can now be opened in Plesk Mobile App for iOS and Android. (EXTPLESK-1384)
Letâs Encrypt 2.8.7
5 March 2020
-
Letâs Encrypt has found a bug and revokes some of its SSL/TLS certificates on March 4. This improvement solves the issue. The Letâs Encrypt extension will check domains as a part of the âAutorenewâ feature, then will renew and replace affected Letâs Encrypt certificates. Future autorenew tasks will be done as usual when SSL/TLS certificates are about to expire.
To turn off the check and replacement of Letâs Encrypt certificates affected by the bug, add the following lines to the
panel.ini
file:[ext-letsencrypt] renew-lets-encrypt-revoked-certificates = false
SSL It! 1.2.2
4 March 2020
-
Letâs Encrypt has found a bug and revokes some of its SSL/TLS certificates on March 4. This improvement solves the issue. The SSL IT! extension will check domains as a part of the âAutorenewâ feature, then will renew and replace affected Letâs Encrypt certificates. Future autorenew tasks will be done as usual when SSL/TLS certificates are about to expire.
To turn off the check and replacement of Letâs Encrypt certificates affected by the bug, add the following lines to the
panel.ini
file:[ext-sslit] renewLetsEncryptRevokedCertificates = false
PHP Updates
25 February 2020
- Updated PHP 7.4 to version 7.4.3.
- Updated PHP 7.3 to version 7.3.15.
- Updated PHP 7.2 to version 7.2.28.
Plesk Email Security 1.0.2
21 February 2020
- White and black list handling was improved for wildcard imports. (EXTCERT-2769)
- Handling of the local DNS check was improved. (EXTCERT-2768)
- A cleanup cron job was added for existing white and black list entries.
- Description for white and black lists was improved.
- Greylisting functionality was disabled to avoid delays in outgoing emails.
- Sieve rules now have correct paths. (EXTCERT-2770)
- Installing Plesk Email security and process services on CentOS 6 now works as intended. (EXTCERT-2767 & EXTCERT-2729)
- Installation no longer fails when importing Plesk SpamAssassin configuration under certain circumstances. (EXTCERT-2756)
- Making a request that cannot be executed no longer results in a âConfig Check - Errorâ message. (EXTCERT-2729)
Site Import 1.4.3
20 February 2020
- Website import can now be again launched. (PMT-4694)
- After importing mail, actual dates when emails were received are no longer changed to the date of import on certain mail clients (for example, Apple Mail). (PMT-4559)
- If the source Linux server has a custom umask set up (other than 0022), website import no longer fails with an error. If the target server has a custom umask set up, a website now correctly works after migration. (PMT-4730)
Plesk Obsidian 18.0.24
18 February 2020
- Updating Plesk Onyx to Plesk Obsidian now also replaces the old default pages with brand new ones introduced in Plesk Obsidian 18.0.21 (unless the default pages have been customized, in which case they are not replaced).
-
Plesk Administrator can now force all subscriptions to only use the Dynamic, Active, or Classic list by adding the following lines to the
panel.ini
file:[navigation] forceWebsiteList = dynamic (or = active, or = classic)
It is also possible to hide one or more options from the list:
[navigation] hideWebsiteList = active, classic
- The FileServer component is no longer supported. It will no longer be installed on new Plesk Obsidian servers, but updating to Plesk Obsidian 18.0.24 will not affect this component if it was already installed.
- A new SDK method
pm_Domain::getHostingParam
has been introduced. It is used for retrieving information about hosting settings of domains. The method enables user-created extensions to use SDK instead of API RPC or direct database queries. - File indexing was improved for the purposes of creating backups. Plesk no longer tries to include removed files in backups. (PPPM-6486)
- When moving addon domains between subscriptions, users are now warned that any databases owned by those domains must be reassigned manually.
-
.webp
files can now be used with theplesk bin branding_theme
utility to apply custom themes to Plesk Obsidian. (PPPM-11426) - Accidentally removed SSL/TLS certificates are now automatically restored from the Plesk database when a domainâs hosting settings are changed.
- Backing up a subscription with one or more mail accounts with the autoresponder enabled no longer results in the âUnable to back up autoresponder settings.â error if no mail server is installed. (PPP-47307)
- Plesk no longer allows the creation of non-TXT DNS records containing the underscore (â_â) character. Having one or more such records in a DNS zone hosted in Plesk caused the
bind
DNS server fail to start. (PPPM-11448) - Email notifications sent by Plesk servers no longer contain the duplicate âContent-Typeâ header, which caused them to be bounced during local delivery. (PPPM-11530)
- Dumps of MySQL databases are now correctly included in server-wide Plesk backups. (PPPM-11575)
- Creating a backup no longer fails if usernames of one or more clients being backed up contain the ampersand (â&â) character. (PPP-47205)
- Passive mode is now turned on by default in the FTP storage settings. (PPPM-11461)
- Creating a full server backup no longer produces misleading error messages if the
cuBackupRestoreHelper.php
file is corrupted. (PPP-47304) - Backing up a subscription no longer results in an invalid backup if the subscriptionâs DNS zone contains one or more DNS records of the type ânoneâ. (PPP-47209)
- Backing up a subscription no longer fails if one or more files or directories owned by the subscription could not be read at the time of backup creation (Note: unreadable files and directories are not included in the resulting backup). (PPP-47164)
- Creating a full server backup no longer results in an invalid backup if certain fields in the backup properties have empty values. (PPP-47207)
- Plesk email notifications are now shown in Thunderbird 68.4.2. (PPP-47282)
- It is now possible to upload a file whose name contains square brackets (
[
or]
) via File Manager. (PPPM-5294) - Replaced the âCall to a member function getErrorObjects() on nullâ error message with a more meaningful one when a backup, under certain circumstances, fails to be created. (PPP-47502)
- It is no longer possible to secure anything with an invalid SSL/TLS certificate whose
*.crt
part is missing. (PPPM-11458) - If the mail service for a domain or a subscription (for example,
example.com
) is disabled, theplesk bin subscription -i example.com
command no longer fails. (PPP-45257) - A directory with the â0â name can now be opened in File Manager. (PPPM-11541)
- A reseller can now install an SSL/TLS certificate via an XML-RPC request without specifying the
ip_address
option value. (PPPM-11577) - Updating to Plesk Obsidian now preserves a custom branding and color scheme (if it is set) and no longer changes it to the default Obsidian color scheme. (PPPM-11511)
- If the DNS component is not installed, running the
plesk repair all -y
command no longer shows the âThe NS configuration file ⊠is absentâ error. (PPPM-11479) - Access from property now works again in API RPC. (PPPM-11559)
- Removing an IPv6 IP address registered in Plesk no longer fails with the âCannot remove the IP addressâ error. (PPPM-3818)
Linux
- Accessing AWStats data for domains hosted in Plesk no longer results in the â404 Not Foundâ error. (PPPM-11342)
- Creating a backup on a Plesk Server with the âAcronis Backupâ extension installed no longer results in the âNot all the data from /usr/local/psa/var/modules/acronis-backup/ was backed up successfully.â error. (PPPM-11587)
- Creating a backup on a Plesk Server with the âFail2Banâ component removed no longer results in an unnecessary warning. (PPPM-11521)
- Restoring a subscription no longer results in a warning if the subscriptionâs system user is using the âbash (chrooted)â shell and the chrooted template has been customized. (PPPM-11515)
- Downloading a large backup file (10 GB or more) from Plesk no longer fails with the the âNetwork Errorâ message shown in a browser. (PPP-44962)
- The issue with the
plesk repair utility
that could not fix issues with the missinglibmyodbc5.so
package is no longer relevant because Plesk now uses its ownplesk-libmaodbc
driver. (PPP-37827) - âMail for Non-Existent Usersâ can now be enabled even if the âBounce with messageâ text field is empty. (PPPM-11556)
- When restoring a number of domains from a backup, SSL/TLS certificates that secure these domains are now also restored. (PPPM-9686)
- Webserver Configuration Troubleshooter no longer shows that some configs are broken when they are actually not after reconfiguration (for example, after domainâs hosting settings were changed but these changes did not propagate yet). (PPPM-6752)
- Plesk now shows an explicit message what to do with custom web server configuration templates (if any) during update to Plesk Obsidian. (PPPM-11580)
- SSL/TLS certificates from Letâs Encrypt can now be used for client certificate authorization. (PPPM-11544)
- Custom error pages now work when nginx-only hosting is enabled. (PPPM-8889)
- On Ubuntu and Debian, the
plesk repair
utility no longer hangs in case of apt-get returning an error. (PPPM-10348)
Windows
- Node.js 12 is now supported.
- The maximum allowed length of FTP usersâ logins was increased to 20 characters.
- Long tasks now fail with an error message instead of silently getting stuck and never starting if the
psaadm
andPlesk Administrator
users are assigned the âDeny log on as a batch jobâ security policy. (PPPM-11429) - Backing up a subscription no longer results in an error message if one or more files owned by the subscription are deleted as the subscription is being backed up. (PPP-47210)
- When Plesk is set up with a remote SmarterMail server, backing up a subscription with mailboxes no longer shows the âProvider âSmarterMail Remoteâ cannot list mail mesages.â warning. (PPP-47305)
- Calculating web statistics of the parent domain no longer fails with the âThe system cannot find the path specified. (Error code 3)â error after a browsed add-on domain of the parent domain was deleted. (PPPM-11456)
- Creating a new domain or enabling the mail service on the existing domain no longer occasionally fails with the âmailmng failed: Loaded Postoffice Configuration Provider (MEAIPO.DLL) MEAOPO.PostOffice.AddPostOffice failedâ error. (PPP-42721)
- Plesk Reconfigurator now allows to change the virtual hosts location to a directory on a disk volume with the ReFS partition. (PPP-46513)
- The rotation date of the
php_error.log
file of a domain is now counted based on the file creation date. (PPPM-11104) - The SpamAssassin training is now completed without any issues even some emails contain non-UTF-8 characters. (PPPM-11456)
- If an IPv6 address goes before an IPv4 one in the database, the
plesk repair ftp
command run for a domain no longer shows the âThe domain name ⊠resolves to another IP addressâ warning. (PPPM-11405)
Third-Party Component Updates
Windows
- Updated MySQL ODBC connector 5.3 to version 5.3.14.
- Updated Node.js 12 to version 12.14.1
Letâs Encrypt 2.8.6
13 February 2020
- If an automatic renewal of a Letâs Encrypt certificate fails with the âDetail: Orderâs status (âpendingâ) is not acceptable for finalizationâ or âDetail: No order for ID *****â error, the order is removed automatically. The next automatic renewal should complete with no errors. (EXTLETSENC-782)
Plesk Obsidian 18.0.23 Update 4
10 February 2020
- Plesk no longer âforgetsâ the IP address selected as the address to send mail from in âTools & Settingsâ > âMail Service Settingsâ > âOutgoing mail modeâ. (PPPM-11533)
- Backing up one or more subscriptions no longer results in an invalid backup if certain information related to those subscriptions is missing from the Plesk database. (PPPM-11564)
Linux
- Backing up one or more subscriptions with one or more capital letters in the name (for example, âExample.Comâ) no longer results in an error message. (PPP-47446)
Windows
- Backing up one or more subscriptions with wildcard subdomain no longer fails with the âException: PHP Warning: mkdir(): Invalid pathâ error. (PPP-47443)
Letâs Encrypt 2.8.5
7 February 2020
- If users face the âNo order for IDâ error when they renew their SSL/TLS certificates, the extension fixes the error in the background and the users are asked to issue an SSL/TLS certificate once again, which helps in most cases. (EXTLETSENC-765)
Plesk Obsidian 18.0.23 Update 3
3 February 2020
- Backing up a subscription when the logs folder of the subscriptionâs domain is deleted no longer shows an unnecessary warning message. (PPP-47351)
- Backing up a subscription when the statistics folder of the subscriptionâs domain is deleted no longer shows an unnecessary warning message. (PPP-47352)
- Backing up a server when the extensionsâ data folders are deleted (for example, the
/usr/local/psa/var/modules/patchman
folder) no longer shows an unnecessary warning message. (PPP-47353) - Backing up a subscription when its DKIM spam protection is turned on but the corresponding domain keys are missing (for example, because the DNS support is turned off) no longer shows an unnecessary warning message. (PPPM-11503)
- A server backup no longer fails when the
TmplData
table of a server reseller plan contains the âphpSettingsIdâ setting. (PPP-47356) - Domains can be now removed after switching from the Dynamic List to the Classic List view. (PPP-47098)
WordPress Toolkit 4.5.1
31 January 2020
- Proper text is now displayed instead of placeholders for filter names on Mass Update and Mass Security screens. (EXTWPTOOLK-4324)
- Trying to retrieve Jetpack plan status on a site with Free Jetpack plan should not return a weird error anymore. (EXTWPTOOLK-4323)
- WordPress can now be correctly installed without triggering the âUnable to download the WordPress packageâ error caused by a bug in Guzzle client. (EXTWPTOOLK-4326)
- Users will no longer see a scary â500 Exception Permission Deniedâ server error when switching to a subscription without access to WordPress Toolkit. (EXTWPTOOLK-4165)
- Smart Updates do not repeatedly fail with the same âplugin not foundâ task error anymore. (EXTWPTOOLK-4176)
Advisor 1.7.4
31 January 2020
- The high and the highest server ratings are now shown correctly as a text and not as locale keys. (EXTADVISOR-784)
Plesk Email Security 1.0.1
31 January 2020
- Added a button in the global settings that resets all user policies and applies only the global policy.
- The anti-virus installation link in the dashboard directly opens the proper slide.
- Added the Bypass Header rules to disable bad header blocks.
- Fixed the installation process of the anti-virus with the installed Imunify repository on CentOS. (EXTCERT-2724)
- Fixed a rare error when the email address is in the black and the white list at the same time. (EXTCERT-2715)
- Removed the buy link from the description (the link is set in the Extension Catalog as an action button).
- Newly created email accounts respect the current global server policy, not the hardcoded values.
Amazon Route 53 2.7.3
30 January 2020
- CAA records in Plesk can now be synced with Amazon Route 53. (EXTPLESK-1611)
- Installation of the extension in Plesk Obsidian no longer produces PHP error messages written to
/var/log/plesk/panel.log
in Plesk for Linux and%plesk_dir%\admin\logs\php_error.log
in Plesk for Windows. (EXTPLESK-1143)
Advisor 1.7.3
29 January 2020
- Resolved a number of compatibility issues with Plesk Obsidian 18.0.24. (EXTADVISOR-776)
WordPress Toolkit 4.5.0
27 January 2020
- Users can now mark their sites with one of the predefined labels (for example, âStagingâ or âProductionâ) for easier identification.
- Commercial Jetpack plugin plans can now be purchased in the plugin installation interface by end-customers. To disable this ability on the server, add
jetpackPluginUpgradeEnabled = fals
e to yourpanel.ini
file. - WordPress Toolkit can now properly clone and Smart Update sites on Linux OSes, if their
wp-config.php
file is set to read-only. (EXTWPTOOLK-4216) - Database dumps created during cloning are now properly removed if database import failed during the cloning for some reason. (EXTWPTOOLK-4131)
- WordPress Toolkit no longer apologetically displays
[object Object]
message when users are clicking on âRemoveâ to remove a site without selecting anything. (EXTWPTOOLK-4159) - Plugin and theme images in the plugin or theme installation dialogs no longer occupy much more space than allowed on Plesk Obsidian in Safari. (EXTWPTOOLK-3992)
- Preview screenshots no longer occupy much more space than allowed on Plesk Obsidian in Safari. (EXTWPTOOLK-3990)
- WordPress Toolkit update no longer fails due to migration package dependencies. (EXTWPTOOLK-3981)
- Site counters are no longer visually glued to filter names on âUpdatesâ and âSecurityâ screens for several sites. (EXTWPTOOLK-3827)
- Fixed several translation issues.
PHP Updates
27 January 2020
- Updated PHP 7.4 to version 7.4.2.
- Updated PHP 7.3 to version 7.3.14.
- Updated PHP 7.2 to version 7.2.27.
Linux
- Updated Xdebug to version 2.9.0 for PHP 7.3 and 7.4.
Plesk Obsidian 18.0.23 Update 2
27 January 2020
Linux
- DKIM and DMARC can be now enabled for a server whether the DNS component is installed or not. (PPP-47270)
SSL It! 1.2.1
24 January 2020
- It is now possible to enable solely HSTS: without turning on additional HSTS options âInclude subdomainsâ and âApply to webmailâ. (EXTSSLIT-676)
- Fixed the extensionâs UI that was broken in Plesk Obsidian 18.0.23. (EXTSSLIT-681)
PHP Composer 1.0.5
24 January 2020
- On servers with Plesk Obsidian 18.0.23 or later, the UI for specifying environment variables for Composer is no longer malformed. (EXTPHPCOMP-111)
Plesk Obsidian 18.0.23 Update 1
23 January 2020
Linux
- On Plesk servers without an installed DNS server, updating to Plesk Obsidian 18.0.23 no longer results in an internal error when trying to access mail setting. (PPPM-11478)
Plesk Obsidian 18.0.20 Update 3
22 January 2020
- Fixed an issue that prevented some Plesk Obsidian 18.0.20 servers from updating. (PPP-46986)
Plesk Obsidian 18.0.23
21 January 2020
- Webmail for domains with no physical hosting can now be secured with SSL/TLS certificates. Support for securing such domains with Letâs Encrypt certificates via SSL It! will come at a later date.
- Support for Apple Mail was added to the âConfigure Email Clientâ page.
- Plesk administrator can now specify a custom domain name for mail autodiscover in âTools & Settingsâ > âMail Server Settingsâ.
- Mobile configuration files generated in Plesk to enable mail autodiscover are now signed with the domainâs or the serverâs SSL/TLS certificate.
- Redesigned the Plesk notificationsâ interface with improved navigation and better placement of Call to Action buttons in mind.
- Improved the templates used by Plesk notifications sent via email by adding paragraphs and HTML formatting.
- Plesk now automatically checks whether the SMTP ports 25 and 587 used for sending mail are filtered. If they are, notifications are shown in the Plesk interface (in âTools & Settingsâ > âMail Server Settingsâ > âSettingsâ and âSubscriptionsâ > âMailâ tab > âMail Settingsâ).
- Changed the presentation of long running tasks in the Plesk UI.
- Updated the Dynamic View to make it render better on mobile devices.
- When configuring minimum password strength for the server, âVery Weakâ, âWeakâ, and âMediumâ choices are clearly marked as not recommended.
- Added PHP 7.4 to the Recommended preset and removed PHP 7.2 from the Recommended preset. Removed PHP 7.1 from the Full preset.
- The âServer Errorâ screen has been updated to better match the Plesk Obsidian look and feel.
- Plesk resellers can now use the XML API âcertificateâ operator to generate, install, and remove SSL/TLS certificates.
- Users switching from a trial license to a paid one will now be asked to fill a short feedback form to let us know what motivated them to become a customer. This information will help us better tailor our offering to the customersâ needs and expectations.
- Users that have been using Plesk Obsidian for at least 30 days will now be asked to fill a short feedback form to let us know their thoughts and opinions on Plesk Obsidian. This information will help us better tailor our offering to the customersâ needs and expectations.
- Creating a backup in the FTP storage if the available disk space is insufficient now clearly indicates how much disk space is required for the backup to finish. (PPPM-11389)
- Subdomains for domains with names in punycode can now be created via XML API. (PPPM-11381)
- Creating a dump of a database whose size exceeds the amount of RAM on the server no longer fails. (PPPM-11361)
- It is now possible to switch to Power User view and back in Plesk Mobile application. (PPP-45080)
- The length of the user name provided as an argument is now validated by all CLI utilities, avoiding situations where the execution of some utilities failed midway because the provided user name was too long. (PPPM-11393)
- Exporting a database dump and closing the corresponding notification no longer results in the dump being downloaded for the second time if the âAutomatically download dump after creationâ option is enabled.(PPPM-11385)
- Domains not owned by the currently selected subscription are not shown to the Plesk administrator in Power User view when using the Classic list and when the total number of subscriptions owned by the Plesk administrator exceeds the limit (100 by default). (PPP-46050)
- The error message that appears when domain creation fails because a subdomain with the name âwebmail.
' already exists in Plesk now clearly states the reason for the failure. (PPPM-11411) - Trying to contact Plesk support via âTools & Settingsâ > âAssistance and Troubleshootingâ > âSupportâ no longer results in a âHTTP 403 Forbiddenâ error. (PPPM-11421)
-
You can now disable the creation of the â.ftpaccessâ file when creating backups to the FTP repository by adding the following lines to the
panel.ini
file: (PPPM-11436)[pmm] ftpForbidFtpaccessFileCreation = 1
- Importing a custom Plesk theme no longer results in misleading warning messages being shown. (PPP-47049)
- Searching for a domain name in Power User view now works as expected (click the domain name to open it) if the total number of domains exceeds the limit configured in
panel.ini
. (PPPM-11391) - Customers can no longer attempt to delete backups created by the Administrator (because such backups can only be deleted by the Administrator). (PPPM-10982)
- HTTP POST requests to domains secured with an SSL/TLS certificate and with SEO redirect from HTTP to HTTPS enabled are no longer automatically converted to GET requests. (PPPM-11284)
- The built-in code editor now works correctly if the Plesk locale is set to Arabic or Hebrew. (UILIB-746)
- Updating a Plesk instance using a custom skin to Plesk Obsidian no longer results in a broken skin. Instead, the custom skin is replaced with the default Obsidian skin. (PPP-45324)
- Additional FTP accounts for domains that are disabled can now log in to the server via FTP. (PPP-46062)
- Updating to Plesk Obsidian no longer produces the âgetSettings() must be of the type array, null returnedâ error. (PPP-46354)
- On Plesk Obsidian servers with the âSubscription expirationâ event enabled, Plesk now sends a single email listing all expired subscription once per day instead of sending a separate email for each expired subscription. (PPP-46442)
- Searching for domains on mobile no longer results in an error. (PPP-46556)
Linux
- Emails sent via sendmail (including auto-reply) now have a DKIM signature (if DKIM signing is enabled server-wide and for the senderâs domain).
- When updating Plesk, Plesk installer now checks for issues with missing dependencies and duplicated packages before starting the update.
- On Debian 9 servers, Plesk and extension updates no longer fail if some other apt-get or dpkg operation is running at the same time on the server. (PPP-46130, PI-616)
- The âpostfixâ service no longer randomly fails to start after updating the Plesk âpostfixâ package. (PPPM-11334)
- Restoring DNS zones from Plesk backups no longer randomly fails with the âUnable to manage DNS features: DNS does not return features listâ error. (PPPM-11379)
- DMARC checks no longer result in a segmentation fault under specific circumstances, which caused errors to be written to the logs and temporary files not being cleaned up. (PPPM-10547, PPPM-7166)
- Restoring a website with Drupal installed via the Application Catalog from a backup in Plesk no longer results in Drupal being inoperable. (PPPM-11382)
- The âhttpsd_access_logâ file is now rotated correctly according to the log rotation settings. Note: a number of Plesk logs are now rotated by the system logrotate (configured in
/etc/logrotate.d/plesk
). (PPPM-11236) - The âMailing Listâ button is no longer shown in Dynamic List view if the âMailmanâ component is not installed on the server. (PPPM-11409)
- Backups stored in the FTP repository are now rotated in accordance with the rotation settings if backup rotation is enabled. (PPPM-10468, PPPM-11418)
- HTTP > HTTPS redirect now works correctly for domains that are configured to be used to access Plesk. (PPPM-11407)
- Changes made to the
panel.ini
file no longer take time to come into effect. (PPPM-11413) - Images accompanying the Dynamic List tour are now shown on Plesk servers that use a custom theme. (PPP-47050)
- Plesk Installer no longer fails on CentOS 7 based Google Cloud instances with OS Login enabled. (PI-607)
- Website Copying via FTP now correctly copies files with one or more â%â characters in the path. (PPP-44238)
- White space characters in the SPF explanation text specified in âTools & Settingsâ > âMail Server Settingsâ are no longer replaced with the â%â character. (PPP-44640)
- Entries in the web server logs containing long URLs with many special characters no longer cause the Log Browser display the logs as blank. (PPP-45326)
- Plesk Installer now properly checks if the
/var
partition has enough free disk space before installing or updating Plesk. (PPP-45791) - Restoring a Plesk backup no longer randomly produces warnings due to the nginx restart rate getting exceeded. (PPP-46099)
- The default SPF check failure message no longer contains an outdated link to http://www.openspf.org/ which is no longer operational. (PPP-46173)
- Obsolete files stored in the
/usr/local/psa/handlers/spool/
directory are now cleaned out on a regular basis. (PPP-46178) - Kaspersky Anti-Virus heuristics are now enabled by default. (PPP-46203)
- Mailbox quota warning now works as expected after it is disabled and then enabled again in âTools & Settingsâ > âMail Server Settingsâ. (PPP-46278)
- Updating to Plesk Obsidian no longer produces the â/usr/local/psa/bootstrapper/components/management-node.sh: line 1588: -D: command not foundâ error. (PPP-46386)
- On CentOS 6 servers, the misleading âInformation on some packages might not be actual: inconsistencies were detected in the systemâs package manager database.â warning is no longer shown in âTools & Settingsâ > âSystem Updatesâ. (PPP-46395)
- Correct memory usage is now shown on the âTools & Settingsâ > âServer Informationâ page. (PPP-46397)
- Plesk backups no longer fail on servers with
sql-mode=ANSI
specified in the/etc/my.cnf
configuration file. (PPP-46398) - On CentOS 7 servers, website logs are no longer processed by the backup manager if the âexclude log filesâ option is selected during backup. (PPP-46464)
- Backing up and restoring a subscription with the âUse DKIM spam protection system to sign outgoing email messagesâ option enabled no longer results in the âDomain has no NS DNS record.â error. (PPP-46509)
- On Ubuntu 16 and Ubuntu 18 servers, files created by scheduled cron tasks running under the
psaadm
user are now assigned the â644â file system permissions instead of â664â permissions. (PPP-46609)
Windows
- ASP.NET Core 3.0 is now supported.
- Microsoft SQL Server 2019 is now supported.
-
Added the ability to simultaneously fix the permissions for a folder as well as every other folder in the path via the
plesk bin repair
CLI utility:plesk bin repair --directory-permissions -directory "<path to the folder>" -fix-parent-dirs
- Temporary files generated by PHP FastCGI processes are now stored in a separate folder inside the corresponding domainâs webroot directory.
- Cloning a Plesk server now takes significantly less time. In addition, after cloning a server, the latest updates are automatically installed on the newly created server.
- The information about default documents is no longer stored in individual websitesâ âapplicationHost.configâ files, unless the default documents were modified.
- Creating a backup in Plesk no longer results in the â[Errno 13] Permission deniedâ error. (PPPM-11374)
- Restoring individual files from a Plesk backup after logging in to Plesk via the TCP port 443 no longer results in the âWarning: Permission Deniedâ error. (PPP-46715)
- Restoring large (1 GB or more) Microsoft SQL Server databases from a Plesk backup no longer results in the âExecution Timeout Expiredâ error. (PPPM-11359)
- Website preview no longer fails with the âHTTP Error 404 Not Foundâ if access to Plesk via the TCP port 443 is enabled on the server. (PPPM-11406)
- Syncing a subscription with a customized value of the âThe maximum number of worker processesâ parameter with its service plan no longer fails. (PPPM-11388)
- Switching the Plesk mail server to SmarterMail no longer fails if one or more network adapters on the server are disabled. (PPPM-11348)
- Files uploaded via WordPress are now assigned the correct file system permissions. (PPPM-4539)
- Clicking âDedicated IIS Application Pool for Websiteâ no longer results in the âUnable to manage the IIS application pool because all websites are using a single dedicated application pool.â error on Plesk servers with the âTools & Settingsâ > âIIS Application Poolâ > âGlobal Settingsâ > âAssignment and placement policyâ option set to âAlways assign one application pool to each subscriptionâ. (PPP-45368)
- Plesk backups are now properly compressed and take less disk space than the content that was backed up. (PPP-46132)
- Plesk email notifications sent to external email addresses no longer fail DKIM validation checks. (PPP-46140)
- Sending a technical report to support from the Plesk UI no longer results in the â<html><head>
406 Not Acceptable </head>â error. (PPP-46487) - Changes made to IIS configuration during domain creation are now correctly rolled back if domain creation fails. (PPP-46562)
- Switching the mail server from MailEnable to SmarterMail no longer fails if an alias without an email addresses but with the flag âinclude all domain usersâ was created in SmaterMail. (PPP-46652)
Third-Party Component Updates
- Updated PHP used by Plesk to version 7.3.13.
Linux
- Updated Postfix to version 3.4.8.
- Updated Dovecot to version 2.3.9.2.
Windows
- Updated Python to version 2.7.17.
- Updated BIND to version 9.14.8.
Plesk Migrator 2.18.0
20 January 2020
- When migrating from cPanel to Plesk, DNS records are now migrated as well.
- When migrating from DirectAdmin to Plesk, SSL is now enabled on the target servers for domains that had SSL enabled on the source server. (PMT-4684)
- Migration from cPanel to Plesk no longer fails if one or more reseller-owned domains are being migrated and resellers are not supported on the target server (for example, because the Plesk administrator is in Power User view or because a license other than the Web Host Edition license is installed on the target server). (PMT-4691)
- Gave the field for the IP address of the source server on the âNew Migrationâ a more descriptive name. (PMT-4705)
PHP Composer 1.0.4
16 January 2020
- Clicking âPHP Composerâ > âScanâ > âInstallâ now produces an error message instead of hanging indefinitely if the contents of the
composer.json
file are malformed. (EXTPHPCOMP-98) - The
composer.json
property âprefer-stableâ is now properly taken into account when determining whether packages are up to date or not. (EXTPHPCOMP-99)
Docker 1.4.5
14 January 2020
- Using the â=â (equal) character as the value of an environment variable no longer results in being unable to change the value of that environment variable. (EXTDOCKER-44)
- The âLearn moreâ link now correctly leads to the up-to-date documentation. (EXTDOCKER-94)
WordPress Toolkit 4.4.1
27 December 2019
- Two secret features were added.
- Internal security improvements.
- Set installation tasks happening simultaneousluy with WordPress Toolkit update to v4.4 no longer cause WordPress Toolkit to be inaccessible by clients. (EXTWPTOOLK-4089)
- WordPress installation directory field does not lose input focus anymore. (EXTWPTOOLK-4043)
- Plugins and themes can now be properly uploaded to certain directories via CLI on Plesk Obsidian. (EXTWPTOOLK-4037)
- Resellers can now uninstall plugins and themes uploaded by server administrators on the âPluginsâ or âThemesâ tab. (EXTWPTOOLK-4033)
- In a surprise guest appearance, the status of WordPress updates is now properly refreshed in the âKeep WordPress up-to-dateâ advice of the Advisor extension. (EXTWPTOOLK-4032)
- A various variety of translation issues was fixed. (EXTWPTOOLK-4022)
- Website screenshots are now automatically updated after the installation and activation of a theme from the âThemesâ tab. (EXTWPTOOLK-4005)
- Pagination controls in the list of WordPress sites were peacefully relocated from the East of UI to the West of UI to make sure they are no longer blocked by the window with the status of ongoing tasks. (EXTWPTOOLK-3806)
- âDonât show me againâ control on the Smart Update free trial pop-up is now working correctly. (EXTWPTOOLK-4147)
SSL It! 1.2.0
26 December 2019
- The SSL It! extension can now be used to secure the mail service for the domain with the domainâs SSL/TLS certificate.
- Sped up the generation of web server configuration files for domains secured via SSL It!
- Updated the list of trusted root certificates with those from Mozilla CA bundle.
- Unnecessary messages about wildcard certificate renewal failure are no longer sent to users from Plesk servers with the DNS service disabled. (EXTSSLIT-610)
- The title and description of SSL/TLS certificates other than those issued by Letâs Encrypt can now again be changed by editing the
panel.ini
file. (EXTSSLIT-604) - The extension no longer randomly crashes on servers where it was used to issue a large number of SSL/TLS certificates (1000 or more). (EXTSSLIT-609)
- An unclear error message is no longer shown when SSL It! is unable to connect to the Letâs Encrypt server for a long time. (EXTSSLIT-614)
- Additional subscription users now have access to the SSL It! extension. (EXTSSLIT-619)
- Clarified the text under the SSL It! button in the Plesk interface. (EXTSSLIT-621)
- Resolved a number of compatibility issues with Plesk Obsidian.
Extension Catalog 1.11.0
26 December 2019
- Added the ability to see extensionsâ prices with or without VAT. Plesk remembers your choice, but you can change it at any moment.
DigitalOcean DNS 1.1.5
24 December 2019
- Synchronizing a domainâs DNS zone with DigitalOcean DNS now correctly creates SRV records in DigitalOcean DNS. (EXTPLESK-753)
- Newly created domain aliases are now automatically synced with DigitalOcean DNS. (EXTPLESK-1037)
- On Plesk for Windows servers, it is now possible to open a subscriptionâs page from the main extensionâs page. (EXTPLESK-1516)
Action Log 1.1.0
24 December 2019
- Action Log now shows more information about the logged actions right in the extensionâs interface - you no longer need to read the logs to find out what happened exactly.
- Added the ability to select or clear all âLogged actionsâ checkboxes at once on the âSettingsâ tab.
Plesk Obsidian 18.0.21 Update 5
20 December 2019
- Creating an incremental backup in the FTP storage no longer fails. (PPP-46305)
- Separate files can now be restored from a local backup. (PPP-46601)
PHP Updates
20 December 2019
- Updated PHP 7.4 to version 7.4.1.
- Updated PHP 7.3 to version 7.3.13.
- Updated PHP 7.2 to version 7.2.26.
Hosting Plan Exporter 1.0.0
20 December 2019
Hosting Plan Exporter helps you copy service plans between Plesk servers by exporting and importing them.
- Both hosting and add-on plans can be exported and imported.
-
When importing service plans, conflicts are automatically detected. For example:
- when a service plan with the same name already exists on the target server, you will be offered to rename the imported plan;
- when imported service plan has a limit which does not exist on the target server, a warning will be shown on the import screen and the limit will not be imported;
- when target server does not support imported value of a hosting setting, you will be offered to select one of supported values.
- Service plans are exported to JSON file format.
The extension can be used by Plesk administrators and resellers. Try it out!
Slave DNS Manager 1.9.2
19 December 2019
- The status icons for the slave servers are now properly shown in the extensionâs interface. (EXTPLESK-1082)
- On Plesk Obsidian servers, the extensionâs interface is no longer malformed and unusable. (EXTPLESK-1403)
Advanced Monitoring 1.2.0
13 December 2019
- Added buttons and menu items inviting Advanced Monitoring users to fill out a survey about their experience with the extension. Doing so helps us better understand what kind of monitoring for servers and websites our customers need.
- Advanced Monitoring can now send notifications via email as well as show them in the Plesk interface.
- Changes made to thresholds can now be reverted with a click thanks to the âRestore Defaultsâ button.
- âOverviewâ is now the first tab you see when you open Advanced Monitoring. It contains an overview of most important information about the server, such as CPU and memory usage.
- On Plesk for Linux servers, stacked the graphs showing memory and swap usage on the âMemoryâ tab.
- Disk time access and IOPS metrics are now shown on the âDiskâ tab.
- We made a number of improvements to the extensionâs UI and UX.
- On Plesk for Windows servers, all activity tracked by the extension in now correctly reported via the graphs. (EXTPLESK-1386)
- On Plesk for Windows servers, the âNetworkâ tab now shows accurate data for âwriteBytesâ. (EXTPLESK-1393)
- Graphs for periods of time a week ago or older are no longer blank. (EXTPLESK-1404)
- All tabs now display the proper graphs instead of the âDashboard not foundâ error in the French locale. (EXTPLESK-1447)
- On Plesk for Windows servers, the graphs on the main monitoring page are no longer empty if during the Plesk installation a directory outside of the Plesk installation directory was chosen for storing the user data. (EXTPLESK-1492)
Grafana 1.1.3
13 December 2019
- Resolved a compatibility issue with the upcoming Plesk Obsidian 18.0.22. (EXTPLESK-1427)
- On Plesk for Windows servers, Grafana can now be installed if during the Plesk installation a directory outside of the Plesk installation directory was chosen for storing the user data. (EXTPLESK-1489)
PHP Composer 1.0.3
10 December 2019
- It is now possible to switch between multiple applications with separate
composer.json
files installed on a single domain in PHP Composer. (EXTPHPCOMP-102)
WordPress Toolkit 4.4.0
5 December 2019
- Server administrators can now install plugin & theme sets on existing websites at any time. This can be done by visiting the âSetsâ tab, finding the required set, and clicking on âInstall Setâ in the corresponding ââŠâ dropdown menu.
- The âWordPress Toolkit Settingsâ tab was redesigned and moved to a separate screen opened via Settings button located next to the WordPress Toolkit screen title.
- The âPluginsâ, âThemesâ, and âSetsâ tabs were rebuilt using Plesk UI Library to make sure we can quickly redesign and update them in the future.
- Pop-up notifications about successful execution of various operations are now automatically hidden 3 seconds after appearing, so they are (hopefully) less annoying.
- Improved various translation strings.
- Quarantined WordPress sites no longer have a chance to prevent installation of plugins or themes from the âPluginsâ or âThemesâ tabs. (EXTWPTOOLK-4023)
- It should be possible (again) to upload plugins and themes from a specified URL via CLI. (EXTWPTOOLK-3988)
- WordPress Toolkit now properly cleans up temporary files on the server when users install plugins or themes. (EXTWPTOOLK-3977)
- Changing the domain name on very busy servers should not lead to WordPress site becoming quarantined due to timeout anymore. (EXTWPTOOLK-3961)
- Changing the domain name now properly changes the corresponding domain name in WordPress configuration files and database. (EXTWPTOOLK-3901)
- WordPress Toolkit no longer generates PHP warnings during certain plugin updates. (EXTWPTOOLK-3938)
- Proper plugin and theme names are now shown on the Updates screen instead of slugs. (EXTWPTOOLK-3826)
- Smart Updates now properly work for WordPress sites where home is not where siteurl is. (EXTWPTOOLK-3784)
- Loading of WordPress site list no longer slows to a crawl in presence of quarantined sites. (EXTWPTOOLK-3853)
- Pagination in lists now correctly shows the current page number on Plesk Obsidian. (EXTWPTOOLK-3772)
- The second and subsequent pages of the WordPress site list are now working properly on Plesk Obsidian. (EXTWPTOOLK-3771)
- Owner links on the WordPress site cards now open in the same browser tab instead of a new tab. (EXTWPTOOLK-3362)
- Outdated link to reference page about WordPress debugging was updated. (EXTWPTOOLK-3178)
SSL It! 1.1.3
4 December 2019
- The Encryption Everywhere SSL/TLS certificates are no longer available for issue (even if they are specified in
filteredProducts
in thepanel.ini
file) because the corresponding API is reaching EOL. Issue free certificates from Letâs Encrypt instead. The already issued Encryption Everywhere certificates keep working until their expiration dates.
DigiCert SSL 1.8.1
4 December 2019
- The Encryption Everywhere SSL/TLS certificates are no longer available for issue (even if they are specified in
filteredProducts
in thepanel.ini
file) because the corresponding API is reaching EOL. Issue free certificates from Letâs Encrypt instead. The already issued Encryption Everywhere certificates keep working until their expiration dates.
PHP Updates
3 December 2019
- PHP version 7.4.0 is now shipped with Plesk on all OSes except CentOS 6, Red Hat Enterprise Linux 6, and CloudLinux 6.
Extensions Catalog 1.10.1
3 December 2019
-
Go back to the earlier logic of automated extensionsâ installation (Plesk installs newly purchased extensions automatically instead of sending a notification) by adding the following lines to the panel.ini file:
[ext-catalog] extensionAutoInstall = true
Extensions Catalog 1.10.0
25 November 2019
- After purchasing an extension, the Plesk administrator is now shown a notification prompting them to install the purchased extension.
- Updated the extensions that have a free trial period to show a notification clearly stating that a license must be purchased to use all of the extensionsâ features. (EXTCATALOG-124)
- The price of the WordPress Toolkit extension is no longer shown if the license for the extension is already included in the installed Web Host license. (EXTCATALOG-205)
- Corrected an error in the German translation of the extension. (EXTCATALOG-266)
- Added a white space character between the word âBuyâ and the extensionâs price on the âBuyâ button. (EXTCATALOG-286)
- The âExtensionsâ > âMy Extensionsâ page is no longer blank. (EXTCATALOG-306)
Plesk Obsidian 18.0.21 Update 3
25 November 2019
Linux
- After update to or installation of Plesk Obsidian on CentOS 7, the mail forwarding, the autoresponder, and other mail-related features now work correctly. (PPP-46272)
Plesk Obsidian 18.0.21 Update 2
21 November 2019
- After the update to Plesk 18.0.21, the âTools & Settingsâ screen in Power User view is no longer endlessly loaded and no JS errors appear in a browser console. (PPP-46229)
- Scheduled backups can now be created if the backups owner locale was not defined (set to
null
). (PPP-46219)
Plesk Obsidian 18.0.21 Update 1
20 November 2019
- Fixed the text in the banner promoting the Dynamic List view. (PPP-46204)
Plesk Obsidian 18.0.21
19 November 2019
- Added a banner promoting the Dynamic List view, a new and improved way of listing and managing domains in Plesk.
- On new Plesk Obsidian servers, the Dynamic List view is now selected by default.
- Added a guided tour explaining the benefits of the Dynamic List view.
- Verified that the Plesk mail autodiscover feature is fully compatible with the default Android âMailâ application.
- Plesk servers created via cloning now take less time to initialize.
- Changed and clarified the consent form text shown when a user is prompted to subscribe to the Plesk newsletter. Plesk administrator will see the new consent form and the suggestion to subscribe on their next login to Plesk or right after updating to Plesk Obsidian.
- Changed and clarified the consent form text shown when a user is signing up for a Plesk trial.
- Revamped and updated the default pages shown to visitors of domains without hosting, as well as the Plesk default web page.
- Updated PHP used by Plesk to version 7.3.11 to secure Plesk against a vulnerability found in earlier PHP versions.
-
The following entry in the panel.ini file now again allows Plesk screens to be shown in iframes (PPP-46101):
[security] sameOriginOnly = false
- Removing a subscription with one or more backups and then creating a subscription with the same name and creating a backup under the new subscription no longer results in Plesk reporting the size of the backup as double the real size. (PPP-45254)
- The contents of the Extensions Catalog are now shown correctly when browsing Plesk using Internet Explorer. (PPP-45309)
- Requesting the list of clients via XML API from a Plesk server with no created clients no longer results in the âSpecified owner can not have sub objectsâ error in the response packet. (PPP-44859)
- Creating a database or database user via Plesk UI under a subscription based on a service plan with Default Database Server set to âNoneâ no longer results in the âDb_Table_Exceptionâ error. (PPP-45315)
- Uploading a new license key and specifying a non-English locale by setting up the âdef_localeâ parameter in KAPC now results in Plesk correctly using the specified locale instead of the English locale. (PPP-45480)
- Accessing the Plesk login page via an IPv6 address no longer results in an error. (PPP-45236)
- When a domain with no hosting is removed, the SSL/TLS certificate it is secured with is now removed as well. (PPP-45353)
Linux
- On Debian 9 and Ubuntu 18 servers, the âAtomic Standardâ and âAtomic Advancedâ ModSecurity rulesets are again available.
- On newly deployed Ubuntu 18 servers, connections to Plesk are now secured with TLS version 1.3. On Plesk Obsidian servers updated from an earlier Plesk version (including earlier Plesk Obsidian versions), you can secure connections to Plesk with TLS version 1.3 by running the
plesk bin server_pref -u -ssl-protocols "TLSv1.2 TLSv1.3"
command. - The
plesk-git-http
package is no longer removed when upgrading to Plesk Obsidian. (PPP-45301) - On CentOS 7 servers with the
dnf
package installed, upgrading to Plesk Obsidian no longer results in an error. (PI-604) - On CentOS 7 servers, Apache no longer fails to start after installing PHP from OS vendor via Plesk Installer. (PPP-45093)
- Browsing âTools & Settingsâ > âDatabase Serversâ > âMariaDB/MySQLâ no longer results in an error if one or more directories containing MySQL configuration files are empty. (PPP-45399)
- Firewall rules are now correctly removed from the INPUT chain even if there are in excess of 400 rules already configured for different IP addresses. (PPP-45404)
- Suspending a domain with proxy mode disabled and nginx caching enabled no longer results in an error. (PPP-44915)
- Browsing a suspended domain with proxy mode disabled now correctly displays the â503 service temporarily unavailableâ page. (PPP-45413)
- Updating Plesk no longer results in the creation of a new phpMyAdmin database. (PPP-46039)
- Running the
plesk bin ipmanage --ip_list
command no longer results in web server reconfiguration. (PPP-46053) - Updating hosting settings for a domain no longer results in the webmail configuration files being removed and then re-generated. (PPP-46055)
Windows
- On Plesk servers with one or more remote Microsoft SQL servers servers configured, browsing the âTools & Settingsâ > âDatabase Serversâ page and its subpages no longer takes a long time to load. (PPP-44032)
- Browsing âTools & Settingsâ > âUpdates and Upgradeâ no longer results in an endless loading loop if an instance of Plesk Installer is already running on the server. (PPP-45051)
- Plesk Installer no longer fails with an error if it is unable to remove one or more subfolders. (PI-605)
- Failed Plesk upgrades no longer leave Plesk in a disabled state. (PPP-45065)
- Some APS applications no longer fail due to inability to use ADO connections on Plesk servers. (PPP-45415)
- Upgrading Plesk no longer fails if the path specified by the
PRODUCT_ROOT_D
variable uses one or more upper-case letters where lower-case letters should be, or vice versa (for example, specifying the drive letter as âc:" instead of âC:"). (PPP-45456) - Backing up a domain with custom error documents enabled no longer results in an error if the âerror_docsâ folder for the domain is removed. (PPP-44525)
- Backing up a subscription no longer results in the âElement âvhostâ: This element is not expected. Expected is ( vdir )â error. (PPP-46051)
- The names of the files generated when Failed Requests Tracing is enabled for a domain are no longer garbled in the Plesk interface. (PPP-46117)
Third-Party Component Updates
Linux
- Updated Horde to version 5.2.21.
- Updated IMP to version 6.2.24.1.
- Updated Ingo to version 3.2.16.
- Updated Kronolith to version 4.2.27.
- Updated Mnemo to version 4.2.14.
- Updated Passwd to version 5.0.7.
- Updated Pear to version 1.10.9.
- Updated Turba to version 4.2.25.
Windows
- Updated Microsoft Visual C++ 2017 Redistributable to version 14.16.27033.
Site Import 1.4.2
14 November 2019
- Changed the extensionâs icon to better fit visually among other icons in Dynamic List view.
Google PageSpeed Insights 2.1.3
14 November 2019
- Changed the extensionâs icon to better fit visually among other icons in Dynamic List view.
DigitalOcean DNS 1.1.4
14 November 2019
- Changed the extensionâs icon to better fit visually among other icons in Dynamic List view.
Ruby 1.3.9
13 November 2019
- Changed the extensionâs icon to better fit visually among other icons in Dynamic List view.
Node.js 1.3.6
13 November 2019
- Changed the extensionâs icon to better fit visually among other icons in Dynamic List view.
Git 1.1.3
13 November 2019
- On the domain creation page, the popover that appears when clicking the âautomatically deployedâ control (under âEnable Git supportâ) is now positioned correctly. (EXTGIT-82)
- On the domain creation page, the icon next to the field used to specify the path to the directory to which the files from the repository are to be deployed (under âEnable Git supportâ) is now displayed correctly. (EXTGIT-93)
Docker 1.4.4
13 November 2019
- Changed the extensionâs icon to better fit visually among other icons in Dynamic List view.
Plesk Obsidian General Availability Update 2 (GA 18.0.20)
6 November 2019
Linux
- The contents of mailboxes on Plesk servers with Horde and Courier-IMAP 5 installed are now displayed correctly. (PPP-45268)
- Plesk servers with ProFTPD 1.3.6 installed are no longer vulnerable to denial of service attacks. (PPP-45349)
Letâs Encrypt 2.8.4
5 November 2019
- Renewing a certificate issued via the Letâs Encrypt extension no longer results in an endless loading screen if the corresponding registration file is corrupted. (EXTLETSENC-552)
- Issuing a certificate via the Letâs Encrypt extension no longer fails if a certificate for a domain with the same name had already been issued earlier. (EXTLETSENC-577)
- Creating a customer without a subscription in Plesk with the Letâs Encrypt extension installed and the âsecure-new-domain = onâ option specified in the panel.ini file no longer results in an error. (EXTLETSENC-697)
Docker 1.4.3
1 November 2019
- The âX-Forwarded-Protoâ (XFP) header is now correctly added to the nginx configuration file when proxy rules are configured in Plesk. (EXTDOCKER-75)
- Trying to add another Plesk server with the Docker extension installed as a remote Docker node no longer fails with the âThe Docker service is unavailable: Cannot enable tlsâ error. (EXTDOCKER-78)
- Entering the equals sign (=) as a part of an environment variable in the Docker extension no longer results in an error. (EXTDOCKER-84)
Advisor 1.7.2
31 October 2019
- The Advisor extension no longer shows that HTTP/2 is disabled on the server when it is, in fact, enabled. (EXTADVISOR-362, EXTADVISOR-752)
Plesk Obsidian General Availability Update 1 (GA 18.0.20)
30 October 2019
- When the Dynamic List view is chosen, opening the drop-down menu next to a domain to remove that domain no longer results in the menu remaining expanded indefinitely. (PPP-44499)
Linux
- Plesk no longer sends the Plesk administrator hourly cronjob failure notifications if one or more PHP extensions fails to load. (PPP-45265)
Windows
- Trying to manage mail accounts for a domain no longer results in an error if the domain has one or more subdomains and SmarterMail 100 is used as the default mail server. (PPP-45072)
PHP Composer 1.0.2
29 October 2019
- The extension can now detect Composer applications located outside the domain document root. (EXTPHPCOMP-71)
- Removing a domain in Plesk while a PHP Composer long task related to that domain is running in the background no longer results in an error message being shown on every page in Plesk. (EXTPHPCOMP-77)
PHP updates
28 October 2019
- Updated PHP 7.3 to version 7.3.11.
- Updated PHP 7.2 to version 7.2.24.
- Updated PHP 7.1 to version 7.1.33.
WordPress Toolkit 4.3.3
26 October 2019
- Daily maintenance script will no longer put garbage messages in
panel.log
on Plesk Onyx 17.5. (EXTWPTOOLK-3773)
Advanced Monitoring 1.1.3
25 October 2019
- In Plesk for Windows, the extension now works again and no longer fails with the âRequest failed with status code 500â error. (EXTPLESK-1385)
WordPress Toolkit 4.3.2
24 October 2019
- Smart Updates now use an new algorithm for analyzing plugin shortcodes, which should address most (if not all) false positives.
- Improved support for Move Domains feature in Plesk Obsidian.
- Smart Updates will warn user if a Smart Update procedure failed due to specific .htaccess customizations.
- Smart Updates sitemap analysis was optimized to increase reliability.
- Screenshot previews in the email notifications about Smart Update results are now displayed properly. (EXTWPTOOLK-3161)
- Caching operations were optimized to address performance issues happening in certain cases with Plesk search and WordPress Toolkit site list. (EXTWPTOOLK-3567)
- Smart Updates will now properly work if sitemap of the cloned website differs from the original due to meddling of certain plugins. (EXTWPTOOLK-3611)
- Handling of nginx config files was changed to address the âUnable to reconfigure domainâ error happening under certain circumstances. (EXTWPTOOLK-3626)
- Sort control now works properly in the âSecurity Statusâ window. (EXTWPTOOLK-3609)
- Smart Updates will not process unnecessary locations from XML sitemaps anymore. (EXTWPTOOLK-3610)
- Smart Updates can now work with websites locally accessible only via domain aliases. (EXTWPTOOLK-3613)
- Certain operations under certain conditions were failing with the âEvent not scheduledâ error. Scheduling certain events was certainly improved to handle this. (EXTWPTOOLK-3616)
- Unsolicited jumping of input focus happening in some cases was removed from the âCloneâ window. (EXTWPTOOLK-3633)
Letâs Encrypt 2.8.3
24 October 2019
-
Introduced the
allow-wildcard-certificates
option (true by default) under theext-letsencrypt
section in thepanel.ini
file. If set to false, the option hides the feature of issuing wildcard SSL/TLS certificates in the interfaces of the Letâs Encrypt and SSL It! extensions.Note: For the same purpose, users could earlier use the
acme-protocol-version
setting with theacme-v01
value. If you have this configuration, we recommend that you start usingallow-wildcard-certificates
set to false because the ACMEv1 protocol will soon reach end of life. - The extension now consumes less server resources to issue SSL/TLS certificates.
- Updated the list of trusted root certificates with those from Mozilla CA bundle.
Plesk Obsidian General Availability (GA 18.0.20)
22 October 2019
- Plesk administrators can now specify the desired weekdays and time range when Plesk auto-updates are installed.
- Mail autodiscover can be now turned on and off for particular service plans.
- Set âComodo (free)â as the default ModSecurity rule set. On OSes where âComodo (free)â is absent, the default rule set will be âOWASP (free)â.
- Added pagination to the Dynamic List view mode.
- The Plesk default password strength policy will be set to âStrongâ starting from November 19th, 2019. See the details.
- Improved the load speed of screenshots of websitesâ landing pages in the Dynamic List view mode.
- Returned to the three-digit versioning scheme (x.y.z), where an update is specified as a separate number, for example, Plesk 18.0.19 Update 2.
- Backups upload to the Microsoft OneDrive storage no longer occasionally fails. (EXTPLESK-856, EXTPLESK-1147)
- If subscriptions of several owners exceeded the allowed disk space, owners now receive their own separate email notifications about the resources overuse. (PPP-44528)
- Fixed automatic logging in to Plesk: the
success_redirect_url
parameter now again accepts a relative URL path. (PPP-44681) - Plesk administrators can now again install APS applications even if the administrators do not have their own subscriptions. (PPP-44635)
- The âMailing Listsâ is no longer shown if Mailman is not installed. (PPP-44524)
- It is now again possible to set a system userâs password via an API-RPC request. (PPP-44614)
- Users can now again restore specific objects (a subscription, a mailbox, and so on) from a backup if the backup size exceeds 4 GB. (PPP-44444)
- An IP address in the SPF record is now updated when a public IP address of the sever is changed. (PPP-43552)
- Webspaces are now sorted alphabetically in Backup Manager in Power User view when âAll subscriptionsâ is selected (transparent webspaces mode). (PPP-43968)
- Null MX records can now be created. (PPP-43763)
Linux
- In Plesk on Ubuntu 18,
sw-cp-server
is now compiled with TLSv1.3. (PPP-44542) - If Plesk was installed without the mail server (MSMTP), the default SSL/TLS certificate can now be removed. (PPP-44652)
- Plesk Obsidian now shows a correct update version and the last update date. (PPP-44316)
- The Horde webmail client now again correctly shows email messages in plan text. (PPP-44776)
- While updating to Plesk Obsidian, a misleading error message âWARNING: There are 1 mail accounts with passwords encrypted using a deprecated algorithmâ is no longer shown because the corresponding bug PPP-43681 (about email address accounts, whose passwords were encrypted) has been already fixed. (PPP-44607)
- Added pagination to the Tools & Settings > Services Management page: more than 25 services can now be displayed. (PPP-44565)
- Kaspersky AntiVirus no longer sends error email notifications when a Kaspersky license is removed or terminated. (PPP-44620)
- On CentOS 7, after Plesk update from Onyx to Obsidian, the Plesk interface no longer occasionally becomes unavailable with the âServer Error 500 PleskUtilExceptionâ error message. (PPP-44602)
- In Plesk Obsidian on RedHat or CentOS 7, logs no longer show segmentation faults if a server has sessions with the âToo many authentication failuresâ errors. (PPP-44198)
- Plesk Obsidian update no longer occasionally fails with segmentation faults. (PPP-44794)
Windows
- Prepared online demos for Plesk Obsidian on Windows.
- If the SmarterMail server is used, users can now back up and restore their mail via IMAP.
- Special characters are now correctly processed within a Plesk administrator password during Plesk installation. (PPP-44348)
- MSDNS no longer fails to create DNS records when a server IP address is added to Zone Transfers. (PPP-44852)
- Backing up and restoration no longer occasionally fails with the âThe system cannot find the file specifiedâ error. (PPP-44804)
- Significantly sped up the creation of subdomains. (PPP-44951)
- Plesk upgrade no longer fails when run under a user with no write permissions for the Recycled Bin. (PI-600)
Third-Party Component Updates
- Updated PHP 7.3 to version 7.3.10.
- Updated PHP 7.2 to version 7.2.23.
Linux
- Updated Courier-IMAP to versions 5.0.8.
- Updated Roundcube to version 1.3.10.
Windows
- Updated MailEnable to version 10.27.
- Updated BIND to version 9.14.6.
Plesk DNSSEC 1.2.3
22 October 2019
- CentOS6/RHEL6/CloudLinux6 are not supported because these OSes contain the BIND package that the extension does not support.
- DNSSEC is now available for add-on domains and subdomains. (EXTDNSSEC-61)
- Allowed algorithms for key generation now have correct values, which makes it possible to sign DNS zones. (EXTDNSSEC-59)
Advanced Monitoring 1.1.2
18 October 2019
- Added the collecting service
collectd
(a service that harvest data for Advanced Monitoring) to the list of services in Tools & Settings > Services Management. - Synced locale languages supported by the extension.
- Reboot of a Plesk server on Linux no longer stops the collecting service
collectd
. (EXTPLESK-1347) - On Ubuntu 18, the snap partitions monitoring is now irrevocably turned off. (EXTPLESK-1346)
- On Linux, the extension no longer shows a false alarm that the Apache & php-fpm memory usage exceeds the threshold when there is in fact no web server overload. (EXTPLESK-1369)
SSL It! 1.1.2
16 October 2019
- The SSL/TLS Certificates button now opens the SSL It! screen when the new Dynamic List view mode is selected.
- In Plesk for Linux, if Apache and nginx serve a website and HSTS is enabled for it, HSTS headers are no longer duplicated and Qualys SSL Labs correctly process the headers. (EXTSSLIT-462)
- When a user manually reissues an SSL/TLS certificate, the extension now suggests securing all the previously secured components (subdomains, domain aliases, webmail, and so on) with the renewed SSL/TLS certificate. (EXTSSLIT-593)
- When a subdomain is secured with a wildcard SSL/TLS certificate, the extension now correctly shows if subdomainâs components (domain aliases, webmail, the www subdomain) are secured or not secured. (EXTSSLIT-595)
- The old SSL/TLS Certificates menu is now shown for wildcard subdomains. (EXTSSLIT-542)
- Improved an error message shown when the SSL/TLS certificate issuing has failed. (EXTSSLIT-603)
Advisor 1.7.1
16 October 2019
- The extension no longer suggests turning on NTP time synchronizing on Red Hat Enterprise Linux 8 and CentOS 8 because the ntp package is not available anymore on these OSes.
- The âException: PHP Notice: Undefined offset:1â error no longer occasionally appears in
/var/log/plesk/panel.log
in Plesk for Linux and%plesk_dir%\admin\logs\php_error.log
in Plesk for Windows. (EXTADVISOR-750)
Plesk Migrator 2.17.8
14 October 2019
- Migrating from cPanel servers hosting a large number of domains using the Migrator GUI has been sped up considerably.
- It is now possible to migrate from cPanel by hosting plan as well as by subscription or owner using the Migrator GUI. (PMT-4642)
- It is now possible to migrate from cPanel even if the
/var/cpanel/users
directory contains one or more files or a directories with special symbols in the name (for example, â)â). (PMT-4660) - Transferring web content of a domain hosted on Parallels Pro Control Panel for Linux no longer fails if the domain has a subdomain and the subdomain does not have CGI enabled. (PMT-4661)
- When migrating from Plesk 12.0 and later, additional users not assigned to any subscription are now migrated. (PMT-4658)
PHP Composer 1.0.1
9 October 2019
- Improved localization.
- Installing or updating an application via PHP Composer now correctly uses the PHP version selected for the domain and not the system PHP. (EXTPHPCOMP-75)
Plesk Obsidian Ready To Market Update 3 (RTM 18.0.19.3)
3 October 2019
- Emails about resource overuse are no longer sent to Plesk users other than the subscriptionâs owner. (PPP-44526)
- ModSecurity is now enabled on clean Plesk Obsidian installations. (PPP-44527)
Advanced Monitoring 1.1.1
3 October 2019
- The position of the mouse cursor is now being tracked across all panels on the tab.
- The âApache CPU usageâ panel was renamed to âApache & php-fpm usageâ. (EXTPLESK-1157)
- The Y axis on all panels now always starts at zero, which helps better put the changes in the graphs into context. (EXTPLESK-1158)
- The âLoad averageâ panel on the âCPUâ tab now displays graphs for short-, mid-, and long-term load average instead of just short-term. (EXTPLESK-1277)
- Panels on the âDiskâ tab no longer display graphs for âphantomâ partitions (such as /dev/ with 0% usage at all times). (EXTPLESK-1310)
- Configuring an alert for a panel featuring multiple graphs (for example, âCPU - Total usageâ) now results in the alert being triggered on any graph exceeding the threshold, not just the graph generated by the query âAâ. (EXTPLESK-1320)
Grafana 1.1.1
3 October 2019
- In Plesk for Windows, Advanced Monitoring no longer fails to open with the âThe grafana-simple-json-datasource plugin is not installed.â error. (EXTPLESK-1260)
- Opening Grafana or the Advanced Monitoring extension no longer results in a 404 error if the user logged in to Plesk via HTTPS without specifying the 8443 port. (EXTPLESK-1325)
WordPress Toolkit 4.3.1
3 October 2019
- Cloning and Smart Updates now support websites with permalinks working on nginx.
- WordPress Toolkit now spotlights 1 month free trial for Smart Updates to server administrators.
- WordPress Toolkit link is now displayed on the Dashboard tab of the new Dynamic List in Plesk Obsidian.
- Improved various interface texts.
- Placeholders like [at] used by various plugins no longer trigger false positive alerts during Smart Update procedure. (EXTWPTOOLK-3550)
- Smart Update now works for websites which URL was configured with www prefix. Additionally, links on the cloned website no longer redirect to the original website if it has www prefix in the URL. (EXTWPTOOLK-3584)
- Smart Update controls now display proper information about licensing requirements in WordPress Toolkit SE. (EXTWPTOOLK-1462)
- Screenshot separator has been given some growth hormone to make sure it reaches the bottom of the screenshot comparison block at all times. (EXTWPTOOLK-3492)
- Smart Update screenshots were also given growth hormone to make sure they always reach the bottom of the screenshot comparison. (EXTWPTOOLK-3493)
- Smart Update now resets the scroll position between different screens. (EXTWPTOOLK-3475)
- Regular updates wonât be accidentally running instead of Smart Updates when Smart Updates are enabled (and expected) on a website. (EXTWPTOOLK-3462)
DigiCert SSL 1.8.0
3 October 2019
- The extension can now be backed up and restored.
- Paid certificates can now be used to secure domains with internationalized domain names. (EXTPLESK-1241)
Amazon RDS 1.0.2
2 October 2019
- Opening the extensionâs page in Plesk Obsidian no longer results in an error. (EXTPLESK-673)
Advisor 1.7
2 October 2019
- The Plesk Advisor extensionâs page now loads significantly faster.
- Plesk Advisor now recommends the Smart Updates feature.
- Plesk Advisor now recommends the Backup to Cloud Pro to schedule automatic backups of clientsâ websites to remote storage.
- Plesk Advisor now recommends using Acronis Backup to schedule server backups to Acronis Cloud.
- It is now possible to enable HTTP/2 support on Plesk Obsidian servers via Plesk Advisor. (EXTADVISOR-698)
Plesk Obsidian Ready To Market Update 2 (RTM 18.0.19.2)
27 September 2019
- It is now again possible to edit files with Windows line endings in Code Editor of File Manager, Panel.ini Editor, and PHP ĐĄomposer. (PPP-44495)
Plesk Obsidian Ready To Market Update 1 (RTM 18.0.19.1)
26 September 2019
- Updated the Plesk Lifecycle Policy.
- New Plesk Obsidian features are now available for users in their native languages.
- The PHP Composer extension is now shipped by default with Plesk.
- The Advanced Monitoring extension is now shipped by default with Plesk.
Plesk Obsidian Ready To Market (RTM 18.0.19)
25 September 2019
- Introduced a number of new features and improvements for
the Dynamic List view mode in Websites & Domains:
- Extensions developers can now add tabs of their own extensions to domainsâ cards.
- Extensions developers can now add buttons of their own extensions to particular button groups on the Dashboard tab of domainsâ cards.
- Improved the layout of buttons and controls on domainsâ cards.
- Replaced old color icons with new grayscale ones.
- Improved the collapse and expand mechanism.
- Plesk administrators can now customize the mailbox quota notification email.
- Mail autodiscover can be now turned on and off for the whole server or for particular domains.
- Rolled back the changes made to Active List in the previous iterations to keep this familiar view mode for customers who do not want to use the new Dynamic list.
- Improved how the preview of automatic email notifications shows the email subject.
- Increased the default value of the PHP-FPM
max_children
setting to 10. - After updating Plesk Onyx to Plesk Obsidian, the following extensions will now be automatically installed: Repair Kit, SSL It!, PHP Composer, and Advanced Monitoring (replaces Server Health Monitor present in Plesk Onyx).
- Improved error messages shown if an extension failed to be installed: the error messages now contain the name of the extension that faced installation issues.
- Removed the Server Health Monitor component and replaced it with Advanced Monitoring.
- When multiple files are opened in File Manager via Code Editor, Code Editor tabs now show correct content of the files. (PPP-43622)
- Customers can now switch between their own subscriptions when they are on the WordPress Toolkit page without the âWarning: Possible phishing attempt detectedâŠâ error. (PPP-43913)
- It is now possible to log in to Plesk using the LDAP Auth extension when the âDisable Plesk native authenticationâ checkbox is selected. (PPP-43128)
- If the âAccess to Application Catalogâ permission is not selected for a customerâs subscription, Applications > All available applications no longer shows unavailable versions of an application ready for installation after any version of the application was uploaded. (PPP-43134)
- Rotation of server local backups now works even if the server hostname length exceeds 47 characters. (PPP-44325)
- Monthly resource usage reports sent by email now contain the necessary statistics because the are now generated on the last day of a month. (PPP-43563)
- It is now possible to create a backup without a warning if a folder that contained a custom branding theme was removed. (PPP-43734)
Linux
- Mail autodiscover now works for subdomains served only by Apache.
- The
pci_compliance_resolver
utility no longer causes security warnings in browsers because the utility now uses up-to-date SSL protocols and cyphers. - Certain services (Plesk Autoinstaller, sw-cp-server,
nginx, Apache, Postfix, ProFTPD, and Dovecot) can now use the server
TLS cipher suite order instead of the client cipher suite order as
it was before. On clean Plesk Obsidian installations, the server TLS
cipher suite order is enabled by default. For updated installations,
administrators can enable it manually for all serverâs services
(using the
server_pref
utility) or for a particular service (using thesslmng
utility). - When the Webalizer or AWStats components are removed, the
access_log.webstat
file is also removed and webstatistics is no longer calculated. (PPP-24426) - WordPress Toolkit can now scan installations even if they have broken symlinks. (PPP-44063)
- If a server that has Fail2ban and Plesk firewall installed is restarted, Fail2ban and Plesk firewall are now started in the right order: sequentially and without conflicts that could be earlier caused by the simultaneous editing of iptables. (PPP-43152)
- If a mail server is secured with an SSL/TLS certificate from Letâs Encrypt and the Roundcube webmail client is used, emails can now be sent without issues. (PPP-44131)
- If shortname authorization is enabled on the server and a mail account password is encrypted, the password can now be changed in webmail. (PPP-33293)
- The
plesk repair all -n
command no longer reports false positive errors regarding incorrect permissions of the/etc/init.d/postfix file
. (PPP-43564) - The
pci_compliance_resolver
utility can now be enabled for Dovecot and Courier LDAs. (PPP-36611) - If a service fails the Watchdog monitoring tests, the service will be now immediately restarted (without the 5-minute downtime as it was earlier). (PPP-41001)
- After updating Plesk Onyx version 17.5 to Plesk Obsidian on Debian-based OSes, running the Plesk repair utility no longer shows misleading warnings. (PPP-36507)
- An email with the empty
FROM: <>
field can no longer bypass the SpamAssassin filter. (PPP-43562) - On Ubuntu 16.04 and Debian 8, ModSecurity can now be again installed and switched on with the Atomic Standard rule set. (PPP-44268)
- nginx now better validates its SSL configuration: if, for any reason, an SSL/TLS certificate is missing for a domain, Plesk now skips the SSL configuration for the domain. (PPP-44031)
Windows
- Usersâ Microsoft Outlook and Thunderbird mail clients can now be automatically configured based on entered emails.
- A new REST API now manages SmarterMail 100 or later, which is why mail users in SmarterMail 100 or later can now be renamed.
- Excluded a number of outdated, insecure, or not popular extensions and components from the recommended and full presets.
- Backups created in Plesk Onyx 17.x can now be restored in Plesk Obsidian. (PPP-44246)
- Improved an error message shown when a password sent to Plesk via an XML-RPC request does not meet the the OS password security policy (âLocal Security Policyâ). (PPP-43600)
Third-Party Component Updates
- Updated PHP 7.3 to version 7.3.9.
- Updated PHP 7.2 to version 7.2.22.
- Updated PHP 7.1 to version 7.1.32.
Linux
- ProFTPD now supports the DSO module.
Windows
- Updated Node.js 8 to version 8.16.1.
- Updated Node.js 10 to versions 10.16.3.
PHP Composer 1.0.0
25 September 2019
- The extension now detects the invalid
composer.json
file and shows a clear error message suggesting clicking the âEdit composer.jsonâ button and correcting thecomposer.json
syntax. - The âPHP Composerâ icon is now shown on the âDashboardâ tab of a domain card in the Dynamic List view mode in Websites & Domains.
- Added messages explaining what happens after update if no
packages were initially specified in
composer.json
or they had been removed from it later. (EXTPHPCOMP-38) - Error messages now show relative paths to the both files:
composer.json
andcomposer.lock
. (EXTPHPCOMP-42) - If the
composer.json
file is in the document root of an add-on domain, the âGo to the application folderâ link now correctly opens File Manager. (EXTPHPCOMP-44) - The install and update operations no longer fail if the
/.composer/plesk/
folder does not have the execute permission. (EXTPHPCOMP-51) - The extension now correctly detects a major update even
if the Composer version specified in
composer.json
has an unusual format (for example,composer/composer": "2.0.x-dev"
). (EXTPHPCOMP-55) - The extension now correctly detects dependencies added to
composer.json
not via the extension interface. (EXTPHPCOMP-57) - Added a hint that explains how to add paths to environment variables. (EXTPHPCOMP-61,EXTPHPCOMP-62)
- New applications no longer inherit removed applicationsâ settings. (EXTPHPCOMP-63)
- A warning about the need to refresh packages now disappears after the refresh was done. (EXTPHPCOMP-64)
- The extension now shows a message about all installed and/or updated packages. (EXTPHPCOMP-52)
- Misleading messages are no longer shown as errors in the log during the update or install operations. (EXTPHPCOMP-59)
- The entry âCould not update composer.lock hashâ (shown
when the
composer.lock
file does not exist) is now marked in the log as info an not as an error. (EXTPHPCOMP-58)
Advanced Monitoring 1.1.0
25 September 2019
- The resources usage now have the default preconfigured thresholds. Plesk administrators can use them or can customize the thresholds and turn them on and off for each particular resource usage.
- Plesk interface now shows notifications when the resource usage exceeds its threshold and/or returns to its normal value. Plesk administrators can turn on and off these notifications.
- In Plesk for Windows 2012 R2, the âDiskâ and âNetworkâ tabs now show the necessary information. (EXTPLESK-1139, EXTPLESK-1194)
- In Plesk for Ubuntu, the extension now shows correct disks present in the file system. (EXTPLESK-1180)
Grafana 1.1.0
25 September 2019
- The extensionâs page (Extensions > the âMy Extensionsâ tab > Grafana > Open) is now opened in a new tab. (EXTPLESK-823)
- In Plesk for Linux, the extension can now be accessed only from the localhost and can no longer be available from the Internet. (EXTPLESK-1084)
- If the Grafana extension is installed in Plesk for Linux, the Plesk Premium Antivirus component no longer fails. (EXTPLESK-1134)
- In Plesk for Linux, the âFix installationâ button can now fix the extension when it occasionally fails to be installed. (EXTPLESK-1192)
Site Import 1.4.1
23 September 2019
- Mail Import now migrates the content of mailboxes to Plesk Obsidian for Linux. (PMT-4647)
Plesk Migrator 2.17.7
23 September 2019
- Migration now migrates the content of mailboxes to Plesk Obsidian for Linux. (PMT-4647)
Plesk Migrator 2.17.6
18 September 2019
- Security improvements.
- Additional users with the rights to manage a single
subscription but whose email address was created under a different
subscription (for example, a user created under
example.com
with emailuser@example.net
) are now migrated when the subscription they were created under is migrated. (PMT-4644)
Plesk Obsidian Release Candidate 4 Update 1 (RC4 18.0.18.1)
10 September 2019
Third-Party Component Updates
Linux
- Updated Dovecot and Pigeonhole to versions 2.3.7.2 and 0.5.7.2 respectively, which include a fix for a major security issue. We strongly recommend that you update Plesk.
Extensions Catalog 1.9.0
9 September 2019
- Purchase options (a currency, a country, and an extension ID) chosen by a user in the Extensions Catalog are now preserved in Plesk Online Store. When a user buys an extension and is redirected to Plesk Online Store, the user no longer needs to select the purchase options once again.
- Introduced the âDeprecatedâ status for extensions. User who have already installed these extensions will be able to remove them and will not be able to install them anymore. Users who have not installedâwill not see deprecated extensions in the Extensions Catalog.
- The âMy Extensionsâ tab now shows prices and buttons next to extensions the same way they are already shown in the Extensions Catalog.
- Improved the Extensions Catalog interface when it is opened in Plesk Mobile Center: it is no longer necessary to swipe the screen to right or left to see extensionsâ buttons and details. (EXTCATALOG-195)
- When the Plesk main menu is minimized, quick access to extensions no longer highlights a part of the screen. (EXTCATALOG-234)
SSL It! 1.1.1
5 September 2019
- When SSL It! is installed or updated to version 1.1.1,
the extension now detects SSL/TLS certificates previously issued via
the DigiCert extension but absent from the current SSL It!
configuration and then suggests editing the
panel.ini
file to see and manage the certificates in the SSL It! interface. - Updated the list of trusted root certificates with those from Mozilla CA bundle.
- When a user tries to install the extension on Windows 2008, SSL It! now informs that this OS is not supported because Windows versions earlier than Windows 2012 do not support SNI. (EXTSSLIT-447)
- No error now occurs when a customer is created without a
subscription and the
secure-new-domain setting
inpanel.ini
is enabled (the extension no longer tries to secure the customerâs non-existent domain with an SSL/TLS certificate). (EXTSSLIT-533)
WordPress Toolkit 4.3.0
4 September 2019
- Smart Update feature has been dramatically redesigned, providing full transparency into the analysis process and streamlining overall user experience. Users can now clearly see what is being checked by Smart Updates and what issues are found on which pages. Full analysis summary with update forecast is now also available to users for making an educated decision about the update or for drilling down into issues found by the system.
- Smart Update now analyzes sitemap to determine which pages to check. Users can create a custom sitemap file specifically for Smart Updates to define which pages should be analyzed (up to 30).
- Smart Update will notify users about preexisting issues on the website even if the update process itself went smoothly.
- Smart Update now checks for unexpected PHP errors, warnings, and notices on the website.
- Smart Update now checks for presence of plugin shortcodes, which typically indicates broken plugins.
- WordPress websites using really old PHP versions (5.4 and earlier) are now marked in the WordPress Toolkit UI, displaying a warning that WordPress Toolkit will soon stop supporting such websites. A prompt to change the PHP version is displayed for convenience, if users have the permission to manage PHP version on their website.
- Smart Update toggle is now available as a separate switch on the website card, making sure the feature is easy to see and access.
- Smart Update now gets VIP treatment from the screenshot making service, being finally able to request as many screenshots as needed.
- Smart Update now detects the database limits before actually trying to clone the website for analysis.
- Smart Update threshold settings were removed as a part of UX streamlining.
- Updates screen was optimized, displaying current and available versions, and also hiding plugin & theme descriptions.
- Smart Update screen displayed upon following the link in the notification email is now branding-neutral.
- The algorithm of making website screenshots for Smart Updates was improved to better reflect the actual website look in certain cases. Finally, users can see the goddamned cactus succulent from the Twenty Seventeen theme in all its glory!
- Smart Update failure no longer has a slim chance to accidentally remove the database of the source website under certain rare circumstances. (EXTWPTOOLK-3312)
- Regular update is no longer stealthily performed instead of Smart Update if WordPress website has enabled password protection. (EXTWPTOOLK-3410)
- Smart Update no longer returns weird error message mentioning website ID if 500 HTTP code is encountered during the Smart Update procedure. (EXTWPTOOLK-3234)
- Smart Update now properly cleans up after itself if the procedure went awry. (EXTWPTOOLK-3313 and EXTWPTOOLK-3424)
- Repeated opening and closing of the Updates window will no longer slow down the system (why would you do that anyway?). (EXTWPTOOLK-2669)
- Improved handling of quantum entanglement in the code now allows WordPress Toolkit to identify more accurately whether a certain WordPress installation is broken or infected at any given moment of time. (EXTWPTOOLK-3330)
- Screenshots can now be made for websites hosted on a domain without www. prefix if this prefix is present in the WordPress database as a part of the site URL. (EXTWPTOOLK-2799)
- Smart Update will provide a clear explanation instead of a weird error when a website cannot be updated via Smart Update due to Maintenance Mode being enabled. (EXTWPTOOLK-3264)
- Smart Update will provide a clear explanation instead of a weird error when a website cannot be updated via Smart Update due to password protection being used. (EXTWPTOOLK-3265)
- Smart Update is now correctly handling the situation when someone tries to enable it on a multisite (spoiler: it doesnât work and it never did). (EXTWPTOOLK-3378)
- WordPress installations that were broken and fixed afterwards can now be updated without errors while theyâre still detected as broken by WordPress Toolkit. (EXTWPTOOLK-3147)
- If some of the items in a batch update were not updated successfully, WordPress Toolkit will now display a proper message, providing the necessary details. (EXTWPTOOLK-3151)
- Sitemap is now properly cloned and copied with all necessary URL replacements during the corresponding procedure. (EXTWPTOOLK-3425)
- WordPress Toolkit now verifies the MD5 checksum of the WordPress core package after downloading it. (EXTWPTOOLK-3270)
- If the original WordPress installation on Apache only hosting had any URL structure enabled in âPermalink settingsâ (except âPlainâ), the installation clone now works correctly and its links no longer redirect to the original. (EXTWPTOOLK-3484)
PHP Composer 0.9.2
4 September 2019
- Improved the indication and speed of the âScanâ, âInstallâ, and âUpdateâ operations.
- Warning messages and explanations how updates works now differ depending on the type of available updates (major, minor, patch, or secondary dependancies updates).
- Operations in the extensionâs interface and manual operations in the CLI are now automatically synced with each other.
- Scaling a browser window no longer merges the Install and Update buttons into one dropdown menu. (EXTPHPCOMP-5)
Plesk DNSSEC 1.2.2
3 September 2019
- The
plesk-zone-checker
package is not required anymore. (EXTDNSSEC-58)
PHP updates
2 September 2019
- Updated PHP 7.3 to version 7.3.9.
- Updated PHP 7.2 to version 7.2.22.
- Updated PHP 7.1 to version 7.1.32.
Panel.ini Editor 3.2.1
30 August 2019
- Added a number of descriptions of popular extensionsâ and Plesk settings.
Plesk Obsidian Release Candidate 4 (RC4 18.0.18)
27 August 2019
- Plesk administrators and resellers can now move the main domain to a new subscription in the Plesk interface (Plesk administrators can do so also via the CLI).
- Added the following Plesk notifications:
- Plesk updates are available.
- A Plesk update/hotfix has been installed.
- A Plesk update has not been installed.
- Web Application Firewall: a new rule set or new rules have been installed.
- Introduced the new âDynamic Listâ mode to view the âWebsites & Domainsâ screen. This mode groups controls of each website in blocks we call cards (similar to those in WordPress Toolkit).
-
If SSL/TLS support for a website is turned off, the âOpen websiteâ button now opens the website via HTTP. Plesk administrators can also set up âOpen websiteâ to open websites always via HTTP (regardless of websiteâs SSL/TLS support) by adding the following lines to the
panel.ini
file:[domainManagement] openButtonForceHttp = 1
- Introduced new icons of the main menu.
- Improved the
X-XSS-Protection
response header of Plesk pages. - Updated the Plesk Installer interface. Now it is easier to install or upgrade to the latest version of Plesk Obsidian.
- Running the
plesk bin
utilities without parameters now shows the help page. - Scheduled backups to Microsoft OneDrive no longer fail with the â504 Gateway Timeoutâ error message. (EXTPLESK-856)
- Plesk administratorâs backups are now restored even if no available dedicated IP addresses exist. (PPP-43673)
- It is now possible to log in to Plesk with an email address account, whose password was encrypted. (PPP-43681)
- Customers can no longer be occasionally created as if they belong to other customers. (PPP-31797)
- The
plesk repair mail
can no longer break all mail accounts on the server if one of the accounts has a password that contains an unsupported character. (PPP-43832) - The âLog In as Customerâ link is no longer shown next to customers that do not have subscriptions. (PPP-43639)
Linux
- Usersâ Microsoft Outlook and Thunderbird mail clients can now be automatically configured based on entered emails.
- Updated the list of extensions and components installed by default.
- Improved deployment of Plesk Obsidian cloud images:
- Significantly sped up the deployment (25 seconds now against 8 minutes earlier).
- An actual deployment status is now shown. It is possible to see if the deployment finished successfully or with errors.
- Plesk now installs available updates 30 minutes after deployment.
- Fixed issues created by the bug fix PPPM-10715. You can now rename your domain or restore it from a backupâno issues with your mail for a domain will occur. (PPP-43460)
- If a user tries to change virtual hosts location and
SELinux is running in enforcing mode, the
transvhosts.pl
utility now exits with an error message. The message suggests disabling SELinux or setting it to permissive mode to avoid breaking hosted websites. (PPP-43217) - Updating the Atomic Standard ModSecurity rule set no longer hangs. (PPP-43620)
- Removing the system PHP 7.2 component (which is optional since Plesk Onyx 17.9 Preview 11) no longer causes repetitive error messages from the hourly cron task: âfind: â/etc/php/7.2â: No such file or directoryâ. (PPP-43824)
Third-Party Component Updates
- Updated PHP 7.3 to version 7.3.8.
- Updated PHP 7.2 to version 7.2.21.
- Updated PHP 7.1 to version 7.1.31.
Linux
- Updated nginx to version 1.16.1 (both for Plesk and customersâ websites).
Windows
- Updated ASP.NET Core 2.2 to version 2.2.6.
- Updated ASP.NET Core 2.1 to version 2.1.12.
- Dropped support for ASP.NET Core 1.1.
- Dropped support for ASP.NET Core 1.0.
- Updated MariaDB to version 10.3.17 (both for the Plesk database and for customersâ websites.)
- Updated MailEnable to version 10.25.
DigiCert SSL 1.7.0
23 August 2019
- The extension now informs when a paid SSL/TLS certificate is about to expire and makes it easier to renew it. Users no longer need to find the certificate they bought earlier: the âRenewâ button opens Plesk Online Store where they can buy the same certificate.
- Internal stability and security improvements.
- SSL/TLS certificates can now be installed on IDN domains. (EXTPLESK-1207)
- SSL/TLS certificates can now be issued if a company name contains the ampersand (&). (EXTPLESK-1211)
Plesk Mobile Center 1.13
22 August 2019
- Fixed the âFailed to load certificate for platform ios_manager_productionâ error.
SSL It! 1.1.0
20 August 2019
- The extension now shows a warning message when a paid SSL/TLS certificate from DigiCert is about to expire and suggests buying a new SSL/TLS certificate.
- Updated the link to the documentation in the extensionâs description.
- Improved the layout of the extensionâs screen that shows details about an installed SSL/TLS certificate in both Obsidian and Onyx color schemes.
- Improved the UX and an error message when the DigiCert SSL extension was removed in the middle of ordering an SSL/TLS certificate. (EXTSSLIT-552)
DigiCert SSL 1.6.2
14 August 2019
- Performance improvements. We strongly recommend that you update the extension.
Domain Connect 1.4.0
9 August 2019
- Users can now automatically configure mail DNS-records.
- Users can now automatically configure DNS for subdomains.
- Users can now use Domain Connect to verify their domains ownership for Bing Webmaster Tools.
- The extension now supports SPFM records. This enables to update the existing SPF record with the rules from the SPFM record.
WordPress Toolkit 4.2.2
8 August 2019
- Integration with Website Overview in Plesk Obsidian was updated, making sure that users can still access WordPress Toolkit quickly on each website.
- Tools block was moved to a separate column on the website card for increased visibility and easier access.
- Smart Updates no longer fails to update websites that have issues with infinite redirects. (EXTWPTOOLK-3328)
- IDNs (international domain names) are now properly displayed on the Smart Update comparison screen. (EXTWPTOOLK-3239)
- Website screenshots no longer disappear for reasons unknown when user is opening the Smart Update comparison screen. (EXTWPTOOLK-3260)
- Update of multiple websites should not fail to start anymore in certain cases. (EXTWPTOOLK-3284)
- WordPress Toolkit now exhibits more patience when connecting remote websites via plugin, ensuring that websites hosted on slower servers can be properly connected without timeouts. (EXTWPTOOLK-3278)
Plesk Migrator 2.17.5
8 August 2019
- Adjusted Plesk Migrator to support the maximum length of FTP usernames in Plesk 17.8 and later (32 characters).
DigiCert SSL 1.6.1
8 August 2019
- Internal security improvements. We strongly recommend that you update the extension.
Plesk Obsidian Release Candidate 3 (RC3 18.0.17)
31 July 2019
- Users can now try Plesk Obsidian online demos.
-
Introduced new Plesk notifications, which are now shown in a separate pane. To see notifications, click the bell icon in the upper right corner of the screen. Here you can also manage the notificationsâ settings. To do so, click the gear icon.
At the moment, the notification pane shows only one notification type (when one of the parameters monitored by Server Health reached the âredâ alert level). More notifications are on the way.
- When Postfix is used,
mail.<domain>
can now be secured if an SSL/TLS certificate covers it. - It is now possible to create a secret key via the CLI or API without specifying the IP address the key will be linked to.
- Updated Plesk banners (Plesk Welcome screen, Plesk initializing screen, and others) shown when the Obsidian color scheme is selected.
- A Plesk custom logo and page title can now be installed via the CLI or API.
- A Plesk edition is no longer shown on the Plesk logo and some other screens. Users can always see a Plesk edition in Tools & Settings > About Plesk (under âPleskâ).
- Redesigned the website screen in Websites & Domains: removed the duplicated info and made the screen more laconic.
- File Manager now switches to a correct website, when File Manager is opened via a direct URL. (PPP-41536)
- Duplicate access controls are no longer shown when adding or updating a database user in Plesk that has remote configuration of database servers. (PPP-43181)
- If a particular subscription does not have the âSetup of potentially insecure web scripting options that override providerâs policyâ permission, a user can now change the subscriptionâs hosting settings. (PPP-42972)
- Email aliases with the same name can now be created via the XML-RPC. (PPP-43256)
Linux
- Mail users now receive email notifications when more than 95% of their mailbox disk space is occupied. The users can also see the information about the mailbox storage disk space, its usage, and limits in the Horde and Roundcube webmail clients.
- On new Plesk servers, the Poppassd service on TCP port 106 no longer accepts external connections from the Internet.
- If Postfix is used, an SSL/TLS certificate from Letâs Encrypt (and from other CAs whose certificate files contain the CSR part) can now secure mail for a domain. If you renamed your domain or restored it from a backup and now face issues with your mail for a domain, assign an SSL/TLS certificate to the mail once again. (PPPM-10715)
- In File Manager, all files can no longer be renamed so
that their names contain spaces at the beginning or end (for
example, âfile â and â fileâ). Previously, if the
.htaccess
file was renamed this way, a website could work incorrectly. (PPP-43006) - The phpMyAdmin interface is now again accessible via the
URL
/phpmyadmin
. (PPP-42510) - Improved stability in PHP 7.3.7 and 7.2.20 by fixing the
PHP-FPM segmentation faults in
fpm_event_epoll_wait
. (PPP-43093) - The âMaximum bandwidth usage (KB/s)â and âConnections limited toâ options on the âPerformanceâ tab of a service plan can no longer be changed if the Apache âbwâ module is not enabled. (PPP-43011)
Windows
- MariaDB is now used as a database server for customersâ websites on new installations of Plesk Obsidian. If you have upgraded to Plesk Obsidian, we strongly recommend that you switch from MySQL to MariaDB. To do so, go to Tools & Settings > Updates > select MariaDB under âMySQL serverâ and then click Continue. Existing MySQL databases will not be updated anymore even for security reasons, while MariaDB will be updated regularly.
- Plesk administrators and customers can now choose in which mode IIS will run applications: the default 64-bit mode for new applications or optional 32-bit mode for old ones.
- Plesk administrators can now change the location of the customersâ MySQL data directory in Plesk Reconfigurator.
- Plesk updates of MySQL will no longer overwrite all
custom
my.ini
settings with the default values: only thebasedir
anddatadir
settings will be now overwritten. (PPP-43013)
Third-Party Component Updates
- PostgreSQL 10 is now supported.
- Updated PHP 7.3 to version 7.3.7.
- Updated PHP 7.2 to version 7.2.20.
Linux
- Updated Roundcube to version 1.3.9.
- Updated tar to version 1.32.
- Updated ModSecurity to version 2.9.3.
- Updated Phusion Passenger to version 6.0.2.
Windows
- Updated MariaDB to version 10.3.16.
WordPress Toolkit 4.2.1
26 July 2019
- Users should now be able to perform Smart Update on websites that have a lot of pages. (EXTWPTOOLK-3283)
WordPress Toolkit 4.2.0
25 July 2019
- Users can now upload plugins and themes straight to their website when they open the plugin or theme installation dialog on the website card.
- Website card now has a link to the corresponding domain in Plesk for easier navigation.
- Smart Update speed was dramatically improved.
- Screenshot comparison screens shown in Smart Update details were streamlined.
- Updates screen was cleaned up and polished, eliminating various small UX issues.
- Website card view was optimized, making the card a bit more compact.
- WordPress Toolkit was finally shamed into regularly
cleaning up
wp-cli
utility cache on a per-site basis. - The File Manager link on the website card is now more visible and prominent.
- WordPress Toolkit now displays more details about the update process of WordPress core, plugins, and themes. This change also affects the Smart Update process, making it more transparent.
- Sites can now be installed and cloned into non-empty
directories (including directories with random
.php
files, mummified remains of ancient WordPress sites, and so on). Users will be warned and asked for confirmation if target directory is not empty. - The task responsible for checking and running
automatic updates (
instances-auto-update.php
) was rescheduled to run between 1 AM and 6 AM randomly on each server to avoid causing power surges in datacenters. - Smart Updates: E-mail notifications about Smart Updates no longer include periods after HTML links (this could break certain links). (EXTWPTOOLK-1759)
- Smart Updates: When users are launching Smart Update while the Smart Update license is expired, a proper message will be displayed in UI. (EXTWPTOOLK-2796)
- Smart Updates: Confusing error message about needing a valid SSL/TLS certificate was unconfused. (EXTWPTOOLK-2599)
- Smart Updates: The system now properly notifies users when Smart Update skips a website for some reason during mass update operation. (EXTWPTOOLK-2733)
- Smart Updates: Select Page dropdown now properly displays full website URL of WordPress websites installed in a subdirectory. (EXTWPTOOLK-3224)
- Smart Updates: Open in Plesk link no longer overlaps the Select Page dropdown in some cases. (EXTWPTOOLK-3203)
- Remote websites with broken database connection are now correctly marked as broken in UI. (EXTWPTOOLK-2950)
- CLI output for remote WordPress websites was made more consistent with the output shown for local WordPress websites. (EXTWPTOOLK-2921)
- Clicking Help in Plesk will now take users to the right help page. (EXTWPTOOLK-3091)
- Checking the security status under certain circumstances cannot destroy Plugins and Themes tabs in website cards anymore. (EXTWPTOOLK-2867)
- Plugins can be added to sets via CLI without the
TypeError
error. (EXTWPTOOLK-3079) - When users were choosing to copy only the new database tables using Copy Data functionality, all tables were copied instead if one of the new tables didnât have the table prefix. This despicable behavior was nipped in the bud. (EXTWPTOOLK-3123)
- The URL of WordPress website installed on a wildcard subdomain is now displayed correctly. (EXTWPTOOLK-3086)
- Scan functionality no longer can be broken by the potential data inconsistency mess left by WordPress websites installed via APS. (EXTWPTOOLK-3065)
- Users cannot start the update process for a website thatâs already being updated. (EXTWPTOOLK-3174)
- Text placeholders are no longer displayed when looking for certain things in Plesk Search. (EXTWPTOOLK-3004)
- Updating WordPress to a newer version on remote hosting with PHP 5.3 will now show a proper error prompt about PHP requirements. (EXTWPTOOLK-3190)
Plesk DNSSEC 1.2.1
25 July 2019
- If a subscription does not have the âDNS managementâ permission, the DNSSEC button is no longer shown in Websites & Domains > domains that belong to the subscription. (EXTDNSSEC-50)
Linux
- If a Plesk server does not have the BIND DNS server component installed, DNSSEC is now installed and its screen shows instructions how to install BIND. (EXTDNSSEC-53)
Advanced Monitoring 1.0.1
22 July 2019
- If the
grafana-server
service was not running, users can now start it clicking a button on the Advanced Monitoring page. - If the Grafana extension was disabled, the Advanced Monitoring page now shows a clear error message that suggests enabling Grafana. (EXTPLESK-1001)
- Megabytes and kilobytes are now used as units of measurement. (EXTPLESK-1005)
- Installed Advanced Monitoring no longer prevents Plesk from logging out after inactivity time-out. (EXTPLESK-1014)
- Advanced Monitoring now displays data in Plesk on DigitalOcean and Lightsail. (EXTPLESK-1007)
- In Plesk on DigitalOcean and Lightsail, Advanced Monitoring no longer shows the 500 Internal Server Error on certain charts (for example, CPU). (EXTPLESK-1008)
- When selected, âAdvanced Monitoringâ is now highlighted in the left navigation pane. (EXTPLESK-1008)
- Advanced Monitoring now works correctly in Plesk that has the Plesk Premium Antivirus component installed. (EXTPLESK-754)
Grafana 1.0.1
22 July 2019
- Improved stability during import of datasources and dashboards of other extensions to Grafana.
- Grafana now works correctly in Plesk that has the Plesk Premium Antivirus component installed. (EXTPLESK-754)
Repair Kit 1.2.0
18 July 2019
-
Added a new feature âMySQL Process Listâ (Beta). Users can now see:
- The list of processes being handled by the local MySQL server.
- The MySQL process details: what queries are being processed and how much resources they consume.
To try the new feature, go to Tools & Settings > MySQL Process List (Beta) (under âAssistance and Troubleshootingâ).
-
Made a number of UX improvements.
Letâs Encrypt 2.8.2
18 July 2019
- The ârsa-key-sizeâ setting in the âpanel.iniâ file now again sets an RSA key size. (EXTLETSENC-714)
- The webmail client of an add-on domain is no longer changed to the client of the main domain (or even disabled if webmail was disabled for the main domain) when any of the following actions are done to the SSL/TLS certificate of the main domain: issuing, manual or automatic renewal, enabling âKeep websites securedâ, or unassigning. (EXTLETSENC-603)
Plesk Migrator 2.17.4
17 July 2019
- When migrating to Plesk from the latest version of cPanel that has MySQL 5.7 installed, database users are now also migrated and the applications work correctly after the migration. (PMT-4627)
SSL It! 1.0.1
11 July 2019
- If SLL It! is available for a domain, the domain screen in Websites & Domains can no longer show the duplicate âSSL/TLS Certificatesâ link that leads to the old interface for managing SSL/TLS certificates. (EXTSSLIT-535)
- TLS protocols and ciphers can now be again synced with Mozilla: a more stable configuration of protocols and ciphers is used at the moment. (EXTSSLIT-539)
Letâs Encrypt 2.8.1
4 July 2019
- Securing Plesk with SSL/TLS certificates from Letâs Encrypt is now again available in Tools & Settings > SSL/TLS certificates. (EXTLETSENC-699)
- It is now possible to issue wildcard SSL/TLS certificates from Letâs Encrypt if the BIND DNS server component is not installed. (EXTLETSENC-558)
Git 1.1.2
4 July 2019
- Fixed the look of the Git section on the âAdd Domainâ screen. (EXTGIT-85)
- Pulling updates no longer fails with the âCall to a member function websiteOverviewUrl() on nullâ error. (EXTGIT-88)
Plesk Obsidian Release Candidate 2 (RC2 18.0.16)
2 July 2019
-
Plesk administrators can now install the Advanced Monitoring and Grafana extensions on Plesk Obsidian.
Advanced Monitoring is a revamped version of the Server Health Monitor component, which inherits all the componentâs features: detailed reports on the server health, on system resourcesâ usage, and so on. However, Advanced Monitoring displays all server metrics as visually appealing graphs and dashboards by Grafana.
It is possible because Advanced Monitoring works in tandem with Grafana. When you install Advanced Monitoring, Grafana is also automatically installed. If you are an experienced Grafana user, server metrics collected by Advanced Monitoring is not your single source of data. You can also integrate Grafana with other data sources of your choice.
For more information, read the descriptions of the Advanced Monitoring and Grafana extensions in the Extensions Catalog.
- Plesk users can now move an add-on domain to a new subscription in the Plesk interface (the add-domain will then become the main domain of the subscription).
-
Plesk Administrators can now move an add-on domain to a new subscription via the CLI running the following command:
plesk bin site --move addon_domain.com -login target_login -passwd target_password
- Added the event âDomain movedâ, which is triggered when an add-on domain is moved to another existing or new subscription.
- Plesk administrators can now change subjects of the email notification messages (the same way they did so for the messagesâ texts).
- Email notifications about automatic installation of system package updates can now be sent to a custom email address.
- There are now no release tiers in Plesk Obsidian and later.
- A Plesk mail server and webmail are now available via HTTPS by default: they are secured with the default SSL/TLS certificate that secures Plesk itself.
-
Revamped the look and feel of the main menu:
- Introduced new icons.
- Changed how the menu looks on various screen sizes
- Changed hide and show effects and conditions on various screen sizes.
- Made the search bar of the main menu more visible by moving the search bar to the top of the screen.
- Improved the text of the message shown when a user tries to upgrade to Plesk Obsidian, while the installed Plesk license is not compatible with Plesk Obsidian.
- In Web Admin and Web Pro editions, the information about availability of customers and resellers is now shown correctly in Plesk > Tools & Settings > License Management. (PPP-42195)
- Protected directories for root locations can now be again created via XML-RPC. (PPP-42741)
- After a user changes its email address in the Plesk account, all previously sent links to reset the accountâs password now automatically expire. (PPP-42541)
Linux
- Adding protected directories for root locations no longer breaks nginx. (PPP-42741)
- Errors no longer occur after renaming databasesâ tables via phpMyAdmin. (PPP-41491)
Windows
- An additional FTP account that was created after a subscription was suspended can no longer access the suspended subscriptionâs home directory via FTP. (PPP-42247)
Third-Party Component Updates
- Updated phpMyAdmin to version 4.9.0.1.
Linux
- Updated Dovecot to version 2.3.6.
- Updated nginx to version 1.16.0 (both for Plesk and customersâ websites).
Windows
- Added support for Smartermail 100.0.
Ruby 1.3.8
27 June 2019
- Ruby 2.6 is now supported.
- Ruby 2.5 is now supported.
- Ruby 2.4.x was updated to version 2.4.6.
- Ruby 2.3.x was updated to version 2.3.8.
Node.js 1.3.5
27 June 2019
Linux
- Added support for Node.js 12 (except CentOS 6, Debian 7.x, Ubuntu 12.x).
- Added support for Node.js 10.
- Updated Node.js 8.x to version 8.16.0.
Advisor 1.6.0
21 June 2019
- Extension developers can now integrate their own
extensions with Advisor by:
- Adding recommendations to use their own extensions. For reference, use the source code of the Advisor Integration Example extension.
- Adding ratings for these recommendations. The Plesk team updates the ratings promptly on demand without launching a new version of Advisor.
- Removed using the Atomic Advanced rule set from the list of recommendations.
- The extension is now hidden for all additional users. (EXTADVISOR-428)
Plesk Obsidian Release Candidate 1 Update 1 (RC1 18.0.15.1)
20 June 2019
- Protected directories for root locations can now be again created via XML-RPC. (PPP-42781)
Linux
- Adding protected directories for root locations no longer breaks nginx. (PPP-42787)
WordPress Toolkit 4.1.1
20 June 2019
- Handling of wp-cli timeouts was improved to avoid putting innocent WordPress sites into quarantine.
- WordPress Toolkit can now connect remote WordPress sites hosted using Bitnami WordPress images from Amazon Marketplace and other cloud marketplaces. (EXTWPTOOLK-3003)
- Successful update of WordPress core from 5.2.1 to 5.2.2 no longer displays an error in WordPress Toolkit UI. (EXTWPTOOLK-3040)
- WordPress Toolkit no longer slows down dramatically when
connecting individual remote WordPress sites if their
wp-config.php
has read-only access permission. (EXTWPTOOLK-3007)
Plesk Migrator 2.17.2
18 June 2019
- The extension is now compatible with Plesk Obsidian.
- Databases can now be migrated to target Plesk servers on Windows in which the âChinese (Simplified, China)â language is set as the system locale. (PMT-4570)
Extensions Catalog 1.8.0
18 June 2019
-
Extensions whose licenses were installed in Plesk are now automatically installed. Turn this behavior on or off in the
panel.ini
file by adding the following lines:[ext-catalog] extensionAutoInstall = true/false
Docker 1.4.2
18 June 2019
- The extension now handles situations when the docker service is stopped to avoid logging extra errors.
Plesk Obsidian Release Candidate 1 (RC1 18.0.15)
4 June 2019
- We named the current build âPlesk Obsidian Release Candidate 1.0â. Our team worked hard to make this release stable and fixed 133 issues in addition to the ones listed in these Release Notes. Even better, should you have trouble with this build, Plesk support team will accept support requests for Plesk Obsidian Release Candidate 1.0.
- The SSL It! extension in now installed by default.
- The Repair Kit extension in now installed by default.
- Running
plesk bin init_conf --init
no longer fails when the-state
option is omitted and-country ES
is used. (PPP-42336) - Improved UX when a user tries to remove a backup that is included in a server, reseller or customer level backup: Plesk shows the message that these backups cannot be removed and they are no longer hidden in the userâs interface. (PPP-41039)
- Additional services displayed on Subscriptions > subscription > the âAccountâ tab > the âAdditional servicesâ tab now have descriptions. (PPP-38747)
- When requesting an SSL/TLS certificate, organization names in Chinese are now shown correctly. (PPP-39069)
- The warning âRestore reseller plan âDefault Resellerâ is no longer shown when restoring a full server backup of a Plesk server with the Web Pro license installed. (PPP-39289)
- Custom buttons that has their own icons and files which names start with the dash character are now backed up without warnings. (PPP-39844)
- Resellers can now sync subscriptions that were once unsynced. (PPP-40252)
- Is now possible to hide Tools & Settings > PHP Settings in Restricted Mode. (PPP-41438)
- Improved the error message shown if a backup created in FTP storage contains an invalid XML file dump-header. (PPP-38786)
- A subdomainâs DNS record is now removed after the subdomain is removed after the BIND installation. (PPP-39828)
- It is now possible to configure FTP storage that does not
recognize the
LIST -a
command. (PPP-39434) - When a subscription has several add-on domains or subdomains, the subscription overview screen no longer shows the âThere are ⊠domains to show. Load all or switch to Classic Listâ bar. (PPP-40632)
- A subscription can now be fully removed if a hard disk quota is not synced. (PPP-34711)
- The
plesk bin mail --info
command now shows a correct value of a mailbox size if the mailbox size is the same as in the corresponding service plan. (PPP-40804) - The
plesk bin server_pref -s
command now shows the status of all options it can manage. (PPP-41887) - If a service plan has âSetup of potentially insecure web scripting options that override providerâs policyâ disabled, changing a PHP handler in the service plan no longer causes repetitive warnings âThere are settings that conflict with the server-wide security policyâ to be shown. (PPP-31334)
- Backup Manager is now opened fast if FTP storage is unavailable. (PPP-38660)
- Website preview is now automatically disabled if it was turned on a domain which DNS service was disabled. (PPP-35142)
- Creating a certificate signing request no longer adds the âwwwâ prefix to a subdomain or a domain which preferred domain is set as ânoneâ or without the the âwwwâ prefix. (PPP-41548)
- A DNS record that causes DNS inconsistency can now be removed. (PPP-39511)
- The
plesk bin mailserver --info white-list
command now shows the full list of mailâs white-listed IP addresses. (PPP-39947) - Parts of a a multi-volume backup can now be again downloaded from FTP storage. (PPP-37275)
- Subscriptions are now again locked if their mail settings were changed, while the âAbility to change mail settingsâ permission was not selected for the service plan subscriptions belong to. (PPP-41607)
- It is no longer possible to suspend domains until the backup task is completed. (PPP-41034)
Linux
- Plesk for Linux now support SNI for mail when Postfix
version 3.4.0 and Dovecot are used together. There are a number of
limitations that we plan to fix in the future releases:
- SNI certificates cannot currently be backed up, restored, or migrated.
- SAN certificates (including mail.*) are not served by additional names.
- Domain aliases might have wrong certificates (default one, not from site) in some scenarios.
- If the IMAP or SMTP server is replaced with one without SNI support, certificates are kept but can no longer be managed.
- Plesk now ships with Postfix 3.4 on all supported Linux OSes except Debian 8 and CentOS/RHEL/CloudLinux 6.
- In Plesk on CloudLinux, Node.js and Ruby applications now work when CageFS is enabled.
- Plesk administrators can now specify the timeout for
Apache health check on reload by using the
apacheReloadTimeout
setting (under thewebserver
section) in thepanel.ini
file. The default timeout is 40 seconds, the minimum one is 5 seconds. - The Mailman service is now automatically enabled after enabling mailing lists and rebooting the service. (PPP-40080)
- If a subscription was created under a service plan with the disabled nginx proxy mode and the chosen âFPM Application served by nginxâ PHP handler, applying a created add-on plan to the subscription no longer leads to incorrectly processed PHP files. (PPP-41201)
- Enhanced reliability of removing subscriptions. (PPP-41164)
- The text in the Watchdog component is now fully localized. (PPP-42128)
- In Plesk behind NAT (for example, Plesk on Lightsail), public IP addresses can now be added or changed if the âBIND DNS serverâ component is not installed. (PPP-37155)
- Plesk Onyx servers are no longer upgraded to Plesk Obsidian if the installed license does not support Plesk Obsidian. (PPP-42299)
- Plesk administrators no longer receive hourly email notifications that the Kaspersky Anti-Virus license was updated. (PPP-41988)
- The PHP-FPM service no longer crashes after the domain renaming. (PPP-42016)
- The website preview URL is no longer automatically redirected to the main website URL if the www domain was set as preferred and âPermanent SEO-safe 301 redirect from HTTP to HTTPSâ was enabled. (PPP-41588)
- If âPermanent SEO-safe 301 redirect from HTTP to HTTPSâ was enabled for a website that was set as the default one for an IP address, preview of this and other non-default websites on the IP address is no longer broken. (PPP-40807)
- After removal of an SSL/TLS certificate, running the
plesk repair db -n
command no longer shows the warning that thecert_rep_id
column does not have the0
value. (PPP-39579) - The Dovecot LDA service no longer shows warnings that it
cannot report statistics under
popuser:popuser
in Postfix. (PPP-41828) - If an external MySQL server is set as the default one for a domain and âAllow local connections onlyâ is selected in Database Hosting Settings, the notification about forbidden connections to the database is shown when a user tries to install an application that require databases (for example, Joomla! or Drupal). (PPP-37081)
- In Plesk behind NAT, selecting the âSend from the specified IP addressesâ option with the internal IP address in Mail Server Settings no longer changes an external IP address of the mail.example.com DNS record to the internal one. (PPP-41868)
- The message about unsupported architectures is now shown if a user tries to install Plesk on a server that has the ARM CPU architecture. (PPP-41222)
- The
plesk bin domain --show-web-server-settings example.com
now also shows additional nginx directives. (PPP-40001) - Dist-upgrade from Debian 8 to Debian 9 no longer fails if the DNSSEC extension was installed. (PPP-38286)
- An event handler with the âUpdate installedâ parameter now again triggers when Plesk updates are installed. (PPP-40513)
- No more errors regarding
quotacheck_wrapper.sh
on systems with XFS. (PPP-28299)
Windows
- Removed legacy integration with Acronis True Image from code.
- Reduced time necessary for opening the domain overview screen if a subscription has a large number of websites and databases (more than 150). The screen is now shown after 2 seconds compared with 10 seconds previously. (PPP-40479)
- Customizations of
DumpTempDir
andDUMP_D
are now kept after theplesk.msi
package was upgraded. (PPP-41825) - The error âerror when communicating with serverâ no longer occasionally appears during searching for text in emails in the Horde webmail. (PPP-33348)
- Backing up of the subscription that has a large number of files no longer finishes with the warning. (PPP-39179)
- DNS zones on a slave DNS server are now synced with those on the primary DNS server. (PPP-39990)
- The website preview URL is no longer automatically redirected to the main website URL if the www domain was set as the preferred one and âPermanent SEO-safe 301 redirect from HTTP to HTTPSâ was enabled. (PPP-42279)
- Deleting a subscription with a mail account now deletes the mail account system users. (PPP-40082)
- Additional read or write permissions are no longer
occasionally applied incorrectly to the
httpdocs
folder. (PPP-42339) - When a mailbox password is changed to one that exceeds the allowed number of characters, a clear validation error message is now shown. (PPP-41211)
- A database backup file can now be downloaded if the file name contains the space or the plus characters. (PPP-41984)
- If files were not included in a backup (for example, because of the wrong permissions), the files will no longer be added to the backup index and they will be included in the next backup after their permissions were fixed. (PPP-41470)
Third-Party Component Updates
- Updated PHP 7.3 to version 7.3.6.
- Updated PHP 7.2 to version 7.2.19.
- Updated PHP 7.1 to version 7.1.30.
Windows
- Updated MySQL 5.7 to version 5.7.26.
- Updated MySQL 5.6 to version 5.6.44.
- Updated MySQL Connector/ODBC 5.3 to version 5.3.13.
- Updated BIND to version 9.14.1.
- Updated Horde to version 5.2.21.
- Updated IMP, a Horde component, to version 6.2.23.
- Updated Kronolith, a Horde component, to version 4.2.27.
- Updated Nag, a Horde component, to version 4.2.24.
WordPress Toolkit 4.1.0
30 May 2019
- You can now connect remote WordPress installations to WordPress Toolkit and manage them without having SSH root access to the remote host. To access this feature, use the âConnect [Beta]â button on the WordPress website list and provide your WordPress administrator credentials. This feature is a part of the overall Remote Management functionality, so itâs available only for Server Administrators as a beta feature.
- WordPress websites are now put into quarantine if WordPress Toolkit is not able to properly access certain important files. WordPress Toolkit could not manage such websites previously, since WordPress installation list froze if these websites were encountered. This should also address issues with connecting remote servers with such websites.
- WordPress Toolkit now provides more information about broken websites to help users identify the website and troubleshoot the problem.
- Remote Management functionality was improved and updated based on the user feedback.
- Clone and Copy Data operations now handle absolute paths in WordPress database. (EXTWPTOOLK-2601)
- Smart Update procedure is now more patient, so it has much less chance to fail because of a timeout. (EXTWPTOOLK-2723)
- Smart Update purchase button is not available to end users anymore. Only server administrators can now purchase or upgrade Smart Update license, as intended. (EXTWPTOOLK-2730)
- Smart Update procedure steps now communicate better with each other, so issues encountered by one step are now immediately displayed and do not leave the next steps hanging in the dark until the timeout. (EXTWPTOOLK-2734)
- Rollback of security measures that modify
wp-config.php
file wonât have a chance of breaking the WordPress website anymore. (EXTWPTOOLK-2824) - There was a small chance that WordPress website could be accidentally deleted due to inconsistency of WordPress Toolkit database. It would be very painful, so this chance was extinguished. (EXTWPTOOLK-2686)
- Remote Management feature now checks if PHP interpreter on remote server has all required PHP extensions before trying to connect the website. (EXTWPTOOLK-2677)
- Remote Management feature now displays a proper error message if SSH key contents are not valid. (EXTWPTOOLK-2729)
- Customers with multiple subscriptions can now install WordPress on one of them if another subscription does not have the âDatabase server selectionâ permission enabled. (EXTWPTOOLK-1940)
- If you were constantly seeing the confusing âUnable to find the task responsible for the currently running update process. Try running the update again.â message when trying to run the updates, you can breathe a sigh of relief now, as we have identified and fixed the root cause of this annoying behavior. (EXTWPTOOLK-2694)
- Itâs now possible to clone WordPress located in a particular directory to a directory with the same name in a new subdomain. (EXTWPTOOLK-2906)
- Users should no longer see the âSomething went wrongâ error when trying to select a domain during the cloning. (EXTWPTOOLK-2823)
- WordPress Toolkit no longer tries to activate themes installed through a set. (EXTWPTOOLK-2621)
- Major WordPress autoupdates no longer fail due to timeout. (EXTWPTOOLK-2925)
- Customers wonât be seeing the empty âPlugin/theme setâ menu during the WordPress installation if the âAllow customers to use sets when they install WordPressâ global option is turned off. (EXTWPTOOLK-2692)
- Server Administrators, on the other hand, will be seeing the proper contents of the âPlugin/theme setâ menu during the WordPress installation if the âAllow customers to use sets when they install WordPressâ global option is turned off. (EXTWPTOOLK-2693)
- Users can now clone WordPress installations located in a subdirectory to the virtual folder root of their subscription. (EXTWPTOOLK-2939)
SSL It! 1.0.0
28 May 2019
- Introduced a number of options, which are now available
on Websites & Domains > your domain > SSL/TLS Certificates. It is
now possible to:
- Enhance the security of your websiteâs visitors by setting up a permanent, SEO-safe 301 redirect from the insecure HTTP to the secure HTTPS version of the website. To do so, turn on âRedirect from http to httpsâ.
- (Plesk Obsidian) Enhance the security of webmail connections by setting up a permanent, SEO-safe 301 redirect from the insecure HTTP to the secure HTTPS webmail connections. To do so, turn on âRedirect from http to httpsâ. The webmail protection will be then applied by default. On Plesk Obsidian for Windows, the redirect to HTTPS for webmail connections is enabled by default and no corresponding checkbox is shown in the interface.
- (Plesk Onyx for Linux, Plesk Obsidian) Protect your websiteâs visitors by prohibiting web browsers from accessing the website via insecure HTTP connections. To do so, make sure that your website runs on HTTPS and is secured with an SSL/TLS certificate valid during the selected time period, and then turn on HSTS.
- Ensure that each domain, subdomain, domain alias, and webmail belonging to the subscription is secured with a free valid certificate from Letâs Encrypt. To achieve this, SSL It! can reissue an existing Letâs Encrypt certificate or replace an invalid certificate (expired of self-signed) with a valid one from Letâs Encrypt. To get peace of mind by receiving this all-round protection, turn on the âKeep websites securedâ option.
- Get evaluation of your SSL configuration from SSL Labs, one of the most popular testing services. Go to the âRun SSL Labs Testâ link to check how good the SSL protection of your website is, receive recommendations what can be improved, and follow them to get the highest possible score, A+. By improving your website rank in SSL Labs Test, you improve your website rank in Google.
- Easily upgrade your certificate if it is about to expire or a more advanced certificate is available (OV or EV) by clicking the âUpgrade certificateâ button.
-
(Plesk for Linux) OCSP Stapling can now be turned on and off for websites served by nginx with Apache or solely nginx.
Note: OCSP Stapling may not work for certificates from certain vendors (for example, free certificates from DigiCert) if the complete trust chain is not in place. To check if your certificate supports OCSP stapling, run the SSL Labs test of your SSL configuration by going to Websites & Domains > your domain > SSL/TLS Certificates and clicking âRun SSL Labs Testâ link.
- (Plesk for Linux) It is now possible to enhance the security of connections encrypted with SSL/TLS certificates (website, mail, Plesk, and so on) by choosing the configuration of TLS protocols and ciphers (generated by Mozilla), which will be used by Plesk. Not to lag behind, synchronize with the Mozilla service once every few months by clicking âSync Nowâ.
- The domain screen in Websites & Domains now informs about the security status of a domain by showing a text message next to the SSL It! icon. The message can be âDomain not securedâ, âWebmail not securedâ, and others. Try to get the âSafe and sound!â message, which means all domainâs components are secured and TLS-related options are configured.
- It is now possible to customize the list of SSL/TLS
certificates available for order in SSL It! via the
panel.ini
file. To know whichpanel.ini
settings to edit, install the Panel.ini Editor extension and see the description column of settings under the[ext-sslit]
section. - Added descriptions of new SSL It! settings to Panel.ini Editor. Plesk administrators can use these settings to customize the appearance and configuration of SSL It!. (EXTSSLIT-295)
- SSL It! can now automatically renew free certificates from Symantec. (EXTSSLIT-71)
- If a certificate secures a domain plus a subdomain that is an alias for the domain (alias.example.com), the certificate is now correctly automatically renewed without excluding the alias SAN. (EXTSSLIT-513)
- If the Plesk database contains a corrupted certificate, SSL It! no longer fails with the 500 Internal Server Error. (EXTSSLIT-445)
- The webmail client of an add-on domain is no longer changed to the client of the main domain (or even disabled if webmail was disabled for the main domain) when any of the following actions are done to the SSL/TLS certificate of the main domain: issuing, manual or automatic renewal, enabling âKeep websites securedâ, or unassigning. (EXTSSLIT-173)
Letâs Encrypt 2.8.0
28 May 2019
- ACMEv2 is now used by default. It makes issuing wildcard certificates also available by default with no need to additionally configure the extension to support ACMEv2.
- If ACMEv2 is used, certificates that secure a domain plus webmail are now automatically renewed even if webmail is disabled for the domain.
- If the Plesk database contains a corrupted certificate, the âKeep websites securedâ option and the automatic renewal of certificates now work for all certificates except the corrupted one. (EXTLETSENC-681)
- Access to Plesk Obsidian Preview via 443 port is now automatically secured with a free Letâs Encrypt after the Letâs Encrypt extension is installed (manually or automatically during Plesk installation). (EXTLETSENC-679)
- If the Letâs Encrypt extension fails to issue or renew certificates, Letâs Encrypt challenge tokens no longer pile up and slow down the speed of backing up and restoration. The challenge tokens are now automatically deleted after a defined period of time. (EXTLETSENC-676)
- The extension no longer suggests securing webmail if mail management functions are disabled in Plesk. (EXTLETSENC-674)
- A corrupted certificate in the Plesk database no longer causes unclear error messages in the Letâs Encrypt interface. (EXTLETSENC-659)
- Improved the error message shown when there is an attempt to issue a Letâs Encrypt certificate for a website that cannot pass HTTP challenge. (EXTLETSENC-653)
- The Plesk mail server can now be secured with ECDSA certificates. (EXTLETSENC-650)
- If debug logging was enabled and then the Letâs Encrypt extension was installed while SSL It! was not, excessive messages informing that SSL It! was not installed are no longer shown in logs. (EXTLETSENC-641)
- ECDSA certificates no longer occasionally fail to be issued and installed. (EXTLETSENC-640)
- ECDSA certificates can now be issued for IDN domains. (EXTLETSENC-636)
- If a certificate secures a domain plus a subdomain that is an alias for the domain (alias.example.com), the certificate is now correctly automatically renewed without excluding the alias SAN. (EXTLETSENC-626)
- The âSecure with an SSL/TLS Certificateâ section is no longer shown when wildcard subdomains are created because Letâs Encrypt cannot secure them. (EXTLETSENC-612)
- The âKeep websites securedâ option no longer unnecessarily reissues certificates trying to secure SANs (subdomains, domain aliases, or webmail) that do not exist or cannot pass HTTP challenge. âKeep websites securedâ now checks if there are available SANs that can be secured and only then issues a certificate to secure them. (EXTLETSENC-571)
- A wildcard certificate issued for the main domain no longer occasionally fails to secure a subdomain of the domain. (EXTLETSENC-550)
- Configured Docker Proxy Rules can no longer hinder the performance of the Letâs Encrypt extension. (EXTLETSENC-11)
DigiCert SSL 1.6.0
28 May 2019
- Fixed the extensionâs meta information (the vendor website, Help and Support links).
- Wildcard subdomains can no longer be selected on the extensionâs main page because DigiCert cannot secure them. (EXTPLESK-869)
- Digicert SSL is no longer shown for wildcard subdomains. (EXTPLESK-564)
- Certificate orders for domains which names start with capital letters are now shown in the extensionâs interface. (EXTPLESK-800)
- If debug logging was enabled, the log no longer shows excessive messages about optional extensions (for example, SSL It!) not being installed. (EXTPLESK-632)
Plesk Mobile Center 1.10.0
27 May 2019
- Updated the Plesk Mobile Center extension to use Firebase Cloud Messaging notifications.
DigitalOcean DNS 1.1.3
22 May 2019
- Sync of DNS zones between DigitalOcean DNS and Plesk no longer occasionally fails with the âSOA records are not eligible for deletionâ error. (EXTPLESK-894)
Plesk Obsidian Preview
8 May 2019
- Plesk 17.9 Preview receives the name of Plesk Obsidian Preview.
- Plesk users can now move add-on domains between subscriptions in the Plesk interface.
- File Manager can now search for files by content.
- File Manager now supports uploading and extracting RAR, TAR, TAR.GZ, and TGZ archives.
- It is now possible to select which NS record will be set as a primary name server in the Plesk interface. It can be done using SOA record, for DNS Template - SOA record template.
- Plesk administrators can now turn off âFeedback reminderâ email notifications in Tools & Settings > Notifications and by following the link at the bottom of the notification emails.
- The Plesk UI was updated to modernize it, address several UX issues, and make it visually similar to plesk.com. We streamlined colors and font sizes, and aligned all elements to grid. Check it out!
- Using the XML API operator with the operation node to get the list of users for a particular database no longer results in an error if one or more database users have access to all databases on the subscription. (PPP-41171)
- The
plesk bin extension
CLI utility no longer leaks memory during execution. (PPP-41904) - Customers can now be suspended and activated without issue even if one or more subscriptions owned by the customer have a remote SQL database server configured and that database server is not available. (PPP-37491)
- File Manager no longer displays files owned by a different subscription to users who log in to Plesk via a login link containing a session token. (PPP-41536)
- Restricting access to Plesk to specific IP address in Tools & Settings > IP Access Restriction Management now works correctly even if the specified IP address had the white space character appended in front of it (for example, â 192.0.2.1â). (PPP-41886)
- When a user attempts to remove a domain in Plesk, a warning message is now shown with a list of all domains that would be removed (for example, including all subdomains belonging to the domain). (PPP-40177, PPP-42029)
- The âStart the backup only if your server has the specified amount of free disk space (in megabytes)â field in Tools & Settings > Backup Manager > Backup Settings now accepts values greater than 99999 MB. (PPP-39394)
- Creating backups in remote storage no longer randomly fails with the âThe dump has content errorsâ error. (PPP-40519)
- On newly installed Plesk servers, the âcountryâ field in the Plesk database is set to âUSâ instead of NULL. (PPP-41779)
- Changing the PHP version for a subscription based on a service plan with the âPHP version and handler managementâ permission disabled now correctly locks that subscription. (PPP-41480)
- Users can now change both the status and the hosting type of a website via a single XML API request. (PPP-42014)
- When requesting an SSL/TLS certificate, the contents of the âOrganization name (company)â field are no longer mangled when the field is filled with Chinese characters. (PPP-39069)
Linux
- Significantly reduced the disk space necessary for creating full server backups in remote storage. Now the space necessary for backing up two subscriptions or 2 volumes (for multivolume backups) is enough.
- A subscriptionâs FTP userâs name is now correctly limited to 32 characters both when creating a subscription and when editing the FTP userâs properties. (PPP-41978)
- On CentOS 7 x64 servers, the KAV service now correctly restarts and picks up up-to-date virus definitions after virus definitions are updated. (PPP-41813)
- On CentOS 7 x64 servers with selinux and the Cgroups Manager extension installed and enabled, selinux and PAM errors were being logged during the execution of PHP scripts via the PHP-CGI handler. Plesk selinux policy has been updated to rectify this. (PPP-40800)
- Running the
plesk bin reconfigurator
CLI utility now correctly updates SPF records in domainsâ DNS zones in accordance with the mapping file. (PPP-39286) - Creating backups in remote storage no longer takes up extra disk space on the Plesk server. (PPP-40213)
- Plesk installation no longer fails on Debian 9 x64 servers with absent gnupg packages. (PPP-41511)
- Manually changing the value of the âfsPartnersPasswordâ field in the âsmb_settingsâ table of the Plesk database no longer corrupts backups created in remote storage. (PPP-41108)
- The KAV service no longer sends the Plesk administrator hourly notifications about updates. (PPP-41988)
- On Debian 9 and Ubuntu 18 servers, creating a backup that contains one or more custom buttons with assigned icons no longer causes warnings, and user files with names starting with the â-â character are now correctly included in backups. (PPP-39844)
- Changing the email address of a customer account no longer results in an error if the DNS server component is installed, but was not installed at the moment of the customerâs creation. (PPP-39779)
Windows
- The Plesk database is now managed by MariaDB. Clean Plesk installations use MariaDB right from the start, while exising ones will be switched from MySQL to MariaDB during update to Plesk Obsidian Preview.
- Customers preserves changes made to
%plesk_dir%\Plesk\Databases\MySQL\my.ini
even after Plesk updates or upgrades. - Plesk now prevents users from creating invalid DNS records that could cause the BIND service to crash. (PPP-41780)
- Custom âDumpTempDirâ and âDUMP_Dâ values specified in the Windows registry are no longer reset to default every time the âplesk.msiâ package is upgraded. (PPP-41825)
- Changing the password of a customer account via the CLI no longer results in an error if the username contains international characters. (PPP-41711)
- Users can now unpack archives using File Manager even on servers where cmd.exe is restricted by AppLocker. (PPP-39601)
- Users can now change permissions on the httpdocs directory via File Manager on servers joined to an AD domain if one or more AD users were given permissions to the httpdocs directory. (PPP-41982)
Third-Party Component Updates
- Updated PHP 7.3 to version 7.3.5.
- Updated PHP 7.2 to version 7.2.18.
- Updated PHP 7.1 to version 7.1.29.
Linux
- Updated nginx to version 1.14.2.
- Updated Dovecot to version 2.3.5.1.
- Updated MariaDB to version 10.3.14.
- Updated MariaDB Connector/C to version 3.0.9.
- Updated MariaDB Connector/ODBC to version 3.0.8.
Windows
- Updated Node.js 6 to version 6.17.1.
- Updated Node.js 8 to version 8.15.1.
- Updated Node.js 10 to versions 10.15.3.
- Updated Git to version 2.21.0.
- Updated the Plesk Perl package to version 5.28.1
- Updated Microsoft ODBC Driver 17 for SQL Server to version 17.3.1.1.
- Removed Microsoft ODBC Driver 13 for SQL Server from the default set of components.
- ionCube Loader is now shipped with PHP 7.3.
- Microsoft Drivers for PHP for SQL Server is now shipped with PHP 7.3.
- php_sqlsrv_73_nts_x64 and php_pdo_sqlsrv_73_nts_x64 extensions are now shipped with PHP 7.3.
- Updated Microsoft Drivers for PHP 7.1/7.2 for SQL Server to version 5.6.1.
- Updated Microsoft Drivers for PHP 7.0 for SQL Server to version 5.3.
- Updated Microsoft Drivers for PHP 5.4 for SQL Server to version 3.2.
WordPress Toolkit 4.0.1
8 May 2019
- WordPress Toolkit now displays a correct error message when users are trying to install WordPress 5.2 or update their WordPress to version 5.2 on a domain with PHP version older than PHP 5.6. (EXTWPTOOLK-2902)
DigitalOcean DNS 1.1.2
16 April 2019
- Sync of DNS zones between DigitalOcean DNS and Plesk no longer fails with the âname already existsâ error. (EXTPLESK-832)
Domain Connect 1.3.1
11 April 2019
- If a domain cannot be resolved, this event is now logged
as a warning in
/var/log/plesk/panel.log
(Plesk for Linux) and%plesk_dir%\admin\logs\php_error.log
(Plesk for Windows). (EXTPLESK-619) - Domain Connect no longer suggests configuring DNS settings for a domain when the domainâs DNS hosting is configured in Plesk. (EXTPLESK-590)
Plesk Onyx 17.9 Preview 13
9 April 2019
- If a Plesk Installer process is launched when another one is still running, Plesk now gracefully stops the running process if it is possible. Then Plesk Installer is stopped without negative impact on the server.
- Improved the design of email notifications sent to
customers. The default look of the email notifications is now
defined by the HTML template
/usr/local/psa/admin/conf/email_notification_template.html.sample
. To customize the default look, change the default HTML template or upload a custom one. If you upload the custom HTML template, name it/usr/local/psa/admin/conf/email_notification_template.html
and keep the message body placeholder. - Plesk administrators can now preview email notifications sent to customers in Tools & Settings > Notifications by clicking the Preview button next to the desired event. This makes it easier to customize the default look of email notifications by previewing the result and making necessary adjustments before sending.
-
Increased the maximum length of database usernames. This improves migration because long database usernames migrated from the source can now be created in Plesk.
New lengths vary depending on the database management system:
- MariaDB version 10.0 and higher - 80 characters
- PostgreSQL version 7.3 and higher - 61 characters
- PostgreSQL versions lower than 7.3 - 31 characters
- Microsoft SQL (all versions) - 128 characters
- MySQL version 5.7.8 and higher - 32 characters
- Percona version 5.7 and higher - 32 characters
- Other database management systems - 16 characters
- If the default domain of a subscription is selected for removal, the removal confirmation message now shows the list of all subscriptionâs domains that will be removed as well. This helps users not remove the default domain by mistake. (PPP-40177)
- Full scheduled server backups can no longer be created instead of incremental server backups. (PPP-41247)
- If the limit on outgoing email messages of an email account exceeds the server-wide limit on outgoing messages from a mailbox, the email accountâs settings can now be changed by a customer. (PPP-41235)
- IP addresses are now sorted correctly in Tools & Settings > IP Address Banning (Fail2Ban) > the âBanned IP Addressesâ tab. (PPP-41361)
- Full server backups stored in remote storage no longer fail to be restored with the âUnable to import file as dump: The file you are trying to upload is not a valid backup fileâ error when the server has an extension installed that contains non-UTF-8 characters in its settings. (PPP-41505)
Linux
- Additional nginx directives configured in service plans are now correctly applied to subdomains belonging to subscriptions based on those service plans. (PPP-40605)
- After the name of a domainâs protected directory
/plesk-stat
was changed, the domainâs web statistics can now be accessed. (PPP-41275) - After switching from the Dovecot IMAP/POP3 server to Courier, the âMaximum number of connections (IMAP, POP3, IMAP over SSL, or POP3 over SSL)â and âMaximum number of connections per IP addressâ server-wide mail settings keep the default Dovecot values (1024 and 10 respectively). (PPP-39435)
- If a full server backup contains a customer, whose name contains German characters, the customersâ backup is now created correctly and can be opened without any issues. (PPP-41532)
- When multiple long tasks are launched at the same time, they are now queued and processed correctly: each task is run and just once. (PPP-34433)
- Removed the confusing âWARNING: For PHP 7 the module name
in the line below need to be modified!â line from the
/etc/apache2/plesk.conf.d/roundcube.htaccess.inc
file. (PPP-41131) - The
plesk bin extension
utility no longer throws an error when used to register custom DNS backend. (PPP-39754) - Plesk can now be installed (including via Plesk Web Installer) on Debian 9 Minimal. (PPP-41511)
- Plesk updates no longer fail when Plesk legitimate NFS share is used as DUMP_D. (PPP-41230)
- After the upgrade to Plesk version 17.5 and later, the limit on simultaneous POP3/IMAP4 login processes for the Dovecot IMAP server is now set correctly. (PPP-39914)
Windows
- Plesk administrators can now create domain backups using REST API. (EXTREST-91)
- The
plesk sbin statistics.exe --calculate-one --domain-name=example.com
command again calculates disk usage of a domain mailbox. (PPP-41557) - Improved the error message shown if a broken custom
security file was uploaded into the
%plesk_dir%\etc\disksecurity
folder. The error message now shows a path to the broken file. (PPP-40898)
Third-Party Component Updates
- Updated PHP 7.3 to version 7.3.4.
- Updated PHP 7.2 to version 7.2.17.
- Updated PHP 7.1 to version 7.1.28.
WordPress Toolkit 4.0.0
25 March 2019
- Beta version of Remote Management functionality is now available. Go to the Servers tab and add any Linux-based remote server with WordPress sites to manage them from a single place. This functionality will stay free for a limited time during the Beta stage. A notification will be shown in advance regarding the switch from the free Beta stage to the Release stage that will require a separate license. Your feedback and input regarding this feature would be highly appreciated.
- Smart Update procedure became more transparent, displaying specific steps and their progress. Now at least youâll know which steps are taking so long!
- Database server info was added to the Database tab of the WordPress site card.
- Various links created by WordPress Toolkit on Websites & Domains screen are now directing users to the new UI.
- Users can see the physical path of WordPress sites when cloning them or copying data from one site to another.
- WordPress Toolkit is now much better prepared both physically and mentally for handling users who try to clone their WordPress site to a destination where another WordPress site already exists.
- Removing a subdomain in Plesk will not remove WordPress installation anymore if this subdomainâs docroot was pointing to another domain with WordPress installed. This also covers the use of wildcard subdomains. (EXTWPTOOLK-2580)
- WordPress Toolkit now properly notifies users why Smart Update could not be performed in certain cases. (EXTWPTOOLK-2573)
- The description of Turn off pingbacks security measure now explains what will happen if pingbacks are turned off (spoiler: they stop working). (EXTWPTOOLK-2563)
- The em dash punctuation mark is now correctly displayed in plugin and theme names. (EXTWPTOOLK-1990)
DigitalOcean DNS 1.1.1
15 March 2019
-
Updated the authorization token necessary for the extension to operate correctly. If you used the extension earlier than version 1.1.1, you may face issues with existing domains activated in DigitalOcean DNS.
How do I know if my domains were affected?
- On the âOverviewâ tab of the extension, the domains are now marked as âDisabledâ under âDigitalOcean DNS Zoneâ.
- On the âDigitalOcean Authorizationâ tab of the extension, you see the âInvalid authorization token. Unable to authenticate youâ error.
How can I make my domains and extension operational again?
Please do the following:
- Update the DigitalOcean DNS extension to version 1.1.1 (if it is not done yet).
- On the âDigitalOcean Authorizationâ tab of the extension, click Authorize.
This will restore the domains and the extension to operation.
Panel.ini Editor 3.2.0
14 March 2019
-
Plesk administrators can now edit descriptions of the Panel.ini Editor settings:
- (Plesk 17.9 and higher) In Panel.ini Editor if they want these changes for personal use. Then the changes will be saved on the server only.
- By creating pull requests with the changes to our GitHub repository to share these descriptions with other Panel.Ini Editor users. We regularly review pull requests and approve good ones. New released versions of Panel.Ini Editor will include these approved descriptions.
-
Improved a number of descriptions of SSL It! settings. (EXTPLESK-695)
Plesk Onyx 17.9 Preview 12
12 March 2019
-
Plesk Administrators can now move add-on domains between subscriptions via the CLI by running the following command:
plesk bin site --move addon_domain.com -webspace-name target_subscription.com
- File Manager now has search: users can recursively search files and folders by names.
- Plesk can now reconfigure the local MySQL server to actually allow remote connections from any host when the corresponding option is selected in Tools & Settings > Database Servers (under âApplications & Databasesâ).
- Increased the maximum length of FTP usernames to 32 characters.
- Improved the error message shown in Plesk CLI and API if a Plesk license could not be updated because the license server ka.plesk.com could not be accessed: the message now contains the KB article link to help troubleshoot the issue.
- ModSecurity and Fail2Ban are now installed and enabled by default.
- Added new event handlers and actions to Action Log about SSL/TLS certificates on domain/webmail/mail server/Plesk assigned or unassigned.
- For Plesk administrators, SPF, DKIM, and DMARC are now enabled by default for incoming and outgoing emails.
- It is now possible to add a DNS record that contains the
<subdomain>
placeholder to the DNS template. (PPP-33102)
Linux
- Plesk can now be installed (including via Plesk Web Installer) on Minimal Ubuntu and Debian 9 Minimal. (PPP-40844, WI-388)
- Logs now display the customized SPF explanation text instead of the default â5.7.1 Command rejectedâ error. (PPP-40884)
- DKIM signing no longer uses the length tag in headers. (PPP-40448)
- After upgrading from Plesk 12.0.18 on a Debian-based operating system, Plesk no longer has the /etc/sw-cp-server/conf.d/apsc.conf file and no longer listens to port 6308. (PPP-37560)
Windows
- It is now possible to set up a MySQL data folder in a custom location using Plesk (all necessary permissions and adjustments will be configured automatically according to the custom path).
- HTTP connections to webmail that is secured with an SSL/TLS certificate are now automatically redirected to HTTPS.
Third-Party Component Updates
- Updated PHP 7.3 to version 7.3.3.
- Updated PHP 7.2 to version 7.2.16.
- Updated PHP 7.1 to version 7.1.27.
Linux
- Updated Dovecot to version 2.3.4.1
Windows
- Updated MySQL 5.6 to versions 5.6.43.
- Added support for ASP.NET Core 2.2.2.
- Dropped support for ASP.NET Core 2.0.
- Updated ASP.NET Core 2.1 to version 2.1.8.
- Updated ASP.NET Core 1.1 to version 1.1.11.
- Updated ASP.NET Core 1.0 to version 1.0.14.
WordPress Toolkit 3.6.3
6 March 2019
- Cloning procedure now works correctly if the
proc_close
orproc_open
PHP functions are disabled. (EXTWPTOOLK-2533) - WordPress Toolkit now shows a warning before cloning that
the
mysqlcheck
utility has detected a database error, so cloning might not work correctly. Users who have not read this warning can continue the cloning procedure. (EXTWPTOOLK-2541) - The last remnants of upsell prompts for Maintenance Mode were eradicated from the old WordPress Toolkit UI. (EXTWPTOOLK-2540)
Export lists to CSV 1.1.1
6 March 2019
- Fixed compatibility issues with Plesk 17.9: the button for exporting lists to CSV is visible again and JavaScript errors were fixed. (EXTPLESK-603)
Domain Connect 1.3.0
6 March 2019
- The extension now adds the
nameServers
key to JSON returned to a domainâs third-party service. This helps the service provider identify that Plesk is the authoritative DNS provider for the domain.
WordPress Toolkit 3.6.0
21 February 2019
- Cloning UI was redesigned for improved responsiveness and consistency.
- The UI for copying data (a.k.a. syncing) between installations was redesigned, also for improved responsiveness and consistency. As a side-effect, the procedure formerly known as Sync was renamed to Copy Data, so users should not be confused about what exactly is going on.
- Users can now clone WordPress sites to arbitrary subdirectories on target domains.
- Improved the reliability of screenshot generation for WordPress installations, Part II.
- WordPress Toolkit no longer leaves various useless entries in the logs.
- Improved the handling of broken plugins and themes, reducing the number of esoteric error and warning messages shown to users.
- The âInstallâ button now has the focus by default on the WordPress installation form, so hitting âEnterâ after opening the form should immediately launch the installation process.
- Improved the performance of WordPress installation list if it has a lot of WordPress installations.
- Improved WordPress installation list for viewing on mobile devices.
- WordPress Toolkit database no longer becomes inconsistent when a subscription with two or more WordPress installations is removed. (EXTWPTOOLK-2250)
- Smart Update on Windows servers now checks pages other than the main page. (EXTWPTOOLK-2189)
- Resellers can finally access WordPress Toolkit via the corresponding link in the left navigation panel. (EXTWPTOOLK-1472)
- Users who remove all WordPress installations on the last page in the list of installations are no longer forced to look with despair at the empty screen (unless it was the only page in the list, then yeah). (EXTWPTOOLK-1750)
- Select the âAll Updates checkboxâ on the Updates screen is no longer confused about what it should select after several updates were already applied. (EXTWPTOOLK-2175)
- Toolbar buttons above the list of WordPress installations no longer lose their titles after users minimize then maximize the left navigation panel. (EXTWPTOOLK-1394)
- Server Administrator can now manage the âDisable unused scriptingâ security measure for WordPress installations on locked subscriptions not synchronized with a Service Plan. (EXTWPTOOLK-2178)
- Disable unused scripting languages security measure can now be properly applied to WordPress installations on subdomains and additional domains. (EXTWPTOOLK-2323)
- The username and email for WordPress administrator are properly updated in realtime during the WordPress installation procedure if you are changing the destination domain and it has a different owner. (EXTWPTOOLK-2396)
- WordPress Toolkit now properly shows the theme screenshot if it is in the .jpg format (theme screenshots are displayed if WordPress is installed on a domain that does not resolve yet). (EXTWPTOOLK-1907)
- Hotlink Protection And Additional Nginx Directives: Hotlink Protection security measure no longer overrides the additional nginx directives on a domain. (EXTWPTOOLK-2305)
- Hotlink Protection And Mixed Case Domains: âHotlink Protectionâ security measure now properly works for domains with mixed case names. (EXTWPTOOLK-2337)
- Hotlink Protection And Expire Headers: Hotlink Protection security measure no longer disables Expire headers. (EXTWPTOOLK-2321)
- Update tasks should no longer disappear with cryptic Unable to find the task responsible for the currently running update process message. (EXTWPTOOLK-2231)
- WordPress Toolkit now properly cleans up its database when a subdomain with WordPress installation is removed in Plesk. (EXTWPTOOLK-2454)
- âBlock access to potentially sensitive filesâ security measure no longer prevents File Sharing feature in Plesk from working. (EXTWPTOOLK-2279)
- Dramatically reduced the number of false positives for âBlock access to potentially sensitive filesâ security measure. (EXTWPTOOLK-2247)
- Clone procedure now correctly detects and properly modifies certain encoded URLs in the WordPress database. (EXTWPTOOLK-1789)
- Cloned WordPress installations should no longer share their cache with the source installation (we know sharing is caring, but not this time). (EXTWPTOOLK-1773)
- If WordPress Toolkit cannot change the database prefix for all tables when applying the âDatabase table prefixâ security measure, it will properly roll back the changes to prevent website from being broken. (EXTWPTOOLK-2347)
- When WordPress is installed in a subdomain, WordPress Toolkit no longer offers to install it in a subdirectory by default if the main domain already has WordPress installed. (EXTWPTOOLK-2252)
- WordPress can now be installed via CLI into a path containing multiple directories. (EXTWPTOOLK-2260)
- The error message displayed when users try to install WordPress on a domain without an available database now looks nicer. (EXTWPTOOLK-2440)
DigitalOcean DNS 1.1.0
20 February 2019
- Newly created domains are now automatically activated in DigitalOcean DNS.
- In Plesk 17.9, the icons on the âDNS managementâ tab are now displayed correctly. (EXTPLESK-741)
Advisor 1.5.0
20 February 2019
- The âSwitch to Up-To-Date PHP Versionsâ recommendation now considers PHP versions lower than 7.1 to be outdated.
- Renamed Opsani to Imunify QuickPatch.
- Updated the extensionâs translations.
- The Advisorâs page no longer hangs if a corrupted PHP handler exists. (EXTADVISOR-669)
Repair Kit 1.1.0
19 February 2019
- The extension now collects disk I/O data and shows it on the process list.
- Added the âExclude rootâ/âExclude SYSTEMâ filter on the process list, which hides systemâs power user processes.
- Improved the extensionâs interface by fixing a number of UI/UX issues.
- Added the notification shown if Repair Kit could not fix all detected issues and they must be fixed manually. (EXTPLESK-584)
- If âAuto-update of resource usageâ is turned on, the selected page is now kept after the process list was refreshed. (EXTPLESK-668)
Domain Traffic Monitor 1.3.1
18 February 2019
- The extension no longer fails to start with the following error: âError: Internal error: Failed connect to localhost:8651; Connection refusedâ. (EXTPLESK-698)
Plesk Onyx 17.9 Preview 11
12 February 2019
- Plesk version 12.x can no longer be upgraded to Plesk 17.9. The minimum Plesk version for upgrading to Plesk 17.9 is now Plesk Onyx 17.0.
- The system PHP component is no longer mandatory for
Plesk. It is now possible:
- To install Plesk without the system PHP component.
- To install Horde without the system PHP component.
- To remove the system PHP component after installation of or upgrade to Plesk 17.9.
- To install and use custom PHP builds instead of the system PHP component.
- PHP versions 5.6 and 7.0 are now marked as âoutdatedâ in Plesk and Plesk Installer. These PHP versions were also removed from the default set of components in the stable Plesk release.
- The âSSL/TLS supportâ and âPermanent SEO-safe 301 redirect from HTTP to HTTPSâ options are now enabled by default for new and preset hosting plans and add-on plans as well as for new custom subscriptions. This helps users effortlessly enhance security and improve the Google rank of created websites.
- Email settings shown on the âConfigure Email Clientâ
window (mail server username, incoming and outgoing mail servers,
and supported incoming and outgoing mail protocols) can now be
customized via the
[mail]
section settings in thepanel.ini
file. - Improved the error message shown if a Plesk license could not be updated because the license server ka.plesk.com could not be accessed: the message now contains the KB article link to help troubleshoot the issue.
- Improved UX, names, and descriptions of ModSecurity rule sets. Now it is easier to distinguish between free and paid rule sets, and between Atomic rule sets bought from Plesk and Atomicorp. The description of the Atomic Standard rule set (former Atomic Basic ModSecurity) now contains the procedure how to upgrade the set to Atomic Advanced.
- Made the name âScheduled tasksâ more conventional for Linux users by adding â(cron jobs)â to it. Scheduled tasks can now be found by the keywords âcron jobsâ via search. (PPP-40473)
- File sharing now works even if âPermanent SEO-safe 301 redirect from HTTP to HTTPSâ is enabled for the domain that was selected in âWeb Folder root URLâ. (PPP-31256)
- The
plesk repair
utility can now fix service plans with broken PHP handlers by disabling PHP support for the service plans. (PPP-35949) - Backup Manager no longer attempts to create a scheduled backup in FTP storage if the storage was disconnected. (PPP-39300)
- If a user has two subscriptions and one of them has the âDatabase server selectionâ permission turned off, WordPress can now be installed on the second subscription without any issues. (PPP-39433)
Linux
- Dropped support for Ubuntu 14.04.
- By default, systemd now automatically restarts crashed Plesk services after 5 seconds.
- The ImunifyAV extension is now shipped with Plesk.
- To have HSTS implemented on webmail, added the
pm_Hook_WebServer
hook to Plesk Extensions SDK: the hook adds HSTS headers to webmail configuration files. - Added the support for TLSv1.3 (enabled by default) for customersâ websites that are served by nginx and accessed by HTTPS.
- It is now possible to switch a domainâs PHP handler to a different PHP version even if nginx proxy mode or nginx itself are disabled. (PPP-37847)
- In Plesk on CloudLinux, LVE now can limit how much
resources (CPU, memory, disk I/O, and others) user processes
executed via
filemng exec
can consume. (PPP-39782) - Increased the verbosity of the error message shown if the update of the Atomic rule set fails. (PPP-40492)
- Domains and subscriptions can now be created without any issues after the Postfix postscreen service was enabled. (PPP-40288)
- It is now possible to dist-upgrade to Debian 9 even if a custom MySQL server is installed. (PPP-40329)
- The spam training process no longer consumes resources by creating files if the SpamAssassin spam filter is disabled. (PPP-38192)
- Apache can now process virtual host configuration files that contain more than 1500 web users. (PPP-40575)
- The dist-upgrade from Ubuntu 14.04 to Ubuntu 16.04 no longer fails to update MySQL 5.5 (trying the unsupported update of directly installing MySQL 5.7 over MySQL 5.5) because the dist-upgrade from Ubuntu 14.04 to Ubuntu 16.04 is no longer supported. (PPP-33523)
Windows
- Fixed the website preview on external domain names for Plesk servers behind NAT. (PPP-40063)
- The
plesksrv
service no longer creates zombie processes, which slowed down Plesk and could crash it. (PPP-39953) - It is now possible to get the list of available webmail
clients for Plesk for Windows by running the
mailserver.exe
CLI utility. (PPP-40320) - Plesk Installer now forbids the use of the quotation marks character (â) in the Plesk administrator password. (PI-525)
- Email accounts can now be created in SmarterMail without any issues because the message buffer size was increased to 16 MB. (PPP-39706)
- Subdomains can now be created even if no PHP handlers are installed. (PPP-40417)
Third-Party Component Updates
- Updated PHP 7.3 to version 7.3.2.
- Updated PHP 7.2 to version 7.2.15.
- Updated phpMyAdmin 4.8 to version 4.8.5, which includes fixes for major security issues.
Windows
- Updated MySQL 5.7 to version 5.7.25, which includes fixes for a number of security issues.
- Updated MySQL Connector/ODBC 5.3 to version 5.3.12.
- Added support for Windows Server 2019.
WordPress Toolkit 3.5.6
11 February 2019
- WordPress Toolkit compatibility with Plesk 17.9 Preview releases was improved.
- The limit on WordPress sites with Smart Update in a Service Plan is now correctly applied to each subscription instead of being shared between all subscriptions on this plan. Decommunization is important, comrades. (EXTWPTOOLK-2429)
Domain Traffic Monitor 1.3.0
11 February 2019
- Dropped support for Plesk 12.5.
- Updated the backend Go compiler:
- Updated its version to 1.11.5.
- The Go backend is now compiled as a 64-bit executable file instead of 32-bit.
- Changed to the three digit versioning scheme (x.y.z).
- The status of
hosts-traffic-monitor
is now detected more precisely: the extension can no longer be falsely shown as running whenvhosts-traffic-monitor
is stopped. (EXTPLESK-720)
Amazon Route 53 2.7.2
7 February 2019
- The extension now applies the TTL value of the DNS zone (instead of a default value) to all its DNS records.
Letâs Encrypt 2.7.3
24 January 2019
- The âKeep your websites secured with free SSL/TLS certificatesâ option no longer occasionally incorrectly prolongs an issued SSL/TLS certificate.
Linux
- Increased stability of issuing ECDSA certificates.
Amazon Toolkit 1.1.1
22 January 2019
Windows
- Amazon S3 Backup can now be configured after being installed from the Amazon Toolkit extension. (EXTPLESK-675)
Amazon S3 Backup 1.3.0
21 January 2019
- Added the ability to configure the Amazon S3 Backup storage via the Amazon Toolkit extension.
- Added the ability to resume failed uploads/downloads. (EXTPLESK-563)
Amazon Route 53 2.7.1
21 January 2019
- The extension can now sync DNS zones with a large number of DNS records (more than 100). (EXTPLESK-393)
DigiCert SSL 1.5.1
18 January 2019
- Internal security improvements. We highly recommend that you update the extension.
Letâs Encrypt 2.7.2
17 January 2019
- Improved the âAdding Your Own Subscriptionâ screen: the âSecure the domain with Letâs Encryptâ section is now placed correctly. (EXTLETSENC-633)
Linux
-
In Plesk 17.8 and later, the extension now supports issuing ECDSA certificates. To have the extension issue certificates signed with ECDSA, add the following lines to the
panel.ini
file:[ext-letsencrypt] key-algorithm = ECDSA ecdsa-curve-name = prime256v1
Plesk Onyx 17.9 Preview 10
15 January 2019
- The Plesk administrator can now bypass the two-factor
authentication by Google Authenticator by running the
plesk login -support
command, which generates a one-time login link for logging in to Plesk. - Sped up removing backups from FTP and remote cloud storage. The total time of backup removal is now more than 4 times faster (9 seconds against 43 seconds earlier).
- If the âPHP version and handler managementâ permission is selected in a service plan, a subscription under this service plan is no longer locked for sync after changing the domainâs PHP version. (PPP-39395)
- If the default domain of a subscription is selected for removal, the removal confirmation message now shows the list of all subscriptionâs domains that will be removed as well. This helps users not remove the default domain by mistake. (PPP-28784)
Linux
- Users can now gracefully stop Plesk Installer by running
plesk installer stop
. This command stops Plesk Installer only when it is safe to do so and with no negative impact on the server. You can also stop Plesk Installer by running theplesk installer stop --terminate
. This command stops Plesk Installer at once but it can have negative impact to the server. - Webmail clients now use modern PHP 7.3 shipped with
Plesk. We update PHP within 2 business days, which allows us to
promptly fix security issues.
- Webmail clients on existing domains will be automatically switched to use plesk-php73 fastcgi.
- Webmail clients on newly created domains will use plesk-php73 fastcgi right from the start.
- The Horde and Roundcube components in Plesk Autoinstaller now require the plesk-php-7.3 component.
- Incremental multivolume backups can now be again restored. (PPP-36269)
- After restoring a number of domains from a backups, SSL/TLS certificates securing these domains are now restored and no issues with the Apache config file occur. (PPP-39613)
- On Ubuntu 16.04, the
apt-get update
andapt-get upgrade
commands can now be executed without any issues if the sasl2-bin package is installed. (PPP-39711) - Web statistics is now calculated once a day. (PPP-40074)
- On Debian 9,
sw-engine-kv
no longer slows down the server reboot. (PPP-38825) - The
plesk repair fs
utility no longer shows false positive detection of incorrect ownership of subdomainsâ directories. (PPP-35591)
Windows
- An SSL/TLS certificate that secures a subdomain is no longer unassigned after restoring the subdomain from a backup. (PPP-38372)
Third-Party Component Updates
- Updated PHP 7.3 to version 7.3.1.
- Updated PHP 7.2 to version 7.2.14.
- Updated PHP 7.1 to version 7.1.26.
- Updated PHP 5.6 to version 5.6.40.
Linux
- Updated libcurl to version 7.63.0.
Windows
- Updated BIND to version 9.12.3.
WordPress Toolkit 3.5.5
10 January 2019
- Improved the reliability of screenshot generation for WordPress instances.
Plesk Onyx 17.9 Preview 9
18 December 2018
- The Plesk administrator can now change passwords of customers, resellers, and additional users by automatically sending them an email with a password reset link.
- During the holiday season, users can select the Christmas theme in Skins and Color Schemes.
- The Plesk login pages (
https://<...>:8443
) are no longer indexed by crawlers. - Improved error messages shown when sync of subscriptions with the corresponding service plans fails. (PPP-39627)
- Backups created before the change of the Plesk administrator GUID are now rotated. (PPP-38837)
- Custom home directories can now be created when adding an additional FTP account. (PPP-16280)
- It is no longer possible to create an NS record without a corresponding A record via the CLI. (PPP-39509)
Linux
- If a mail client is used, emails are now sent and the Sent folder is now created without any issues. (PPP-39376)
- Improved the error message shown if the
psa.conf
file cannot be parsed. The message now shows the complete path/etc/psa/psa.conf
and the invalid line. (PPP-36385) - On Debian 9.5, the
plesk-dovecot
andplesk-courierimap
jails now work correctly in Fail2Ban. (PPP-37682)
Windows
- Starting with MailEnable version 10.20, users can secure mail for a domain with individual SSL/TLS certificates. It is particularly useful for those, who use Apple Mail to access mail on Plesk for Windows. They can now access mail via SSL/TLS connection and without the warning that the SSL/TLS certificate securing the mail server cannot be verified.
- Websites with enabled SSL/TLS support can now be reconfigured without any issues. (PPP-39580)
- A VPS license can now be installed on a QEMU KVM server without any issues. (PPP-39785)
- Logs that contain comments are now displayed correctly in the Plesk interface. (PPP-39532)
- The web statistics generation can no longer fail with the error âThe system cannot find the file specified. (Error code 2)â. (PPP-39648)
- Subscriptions can now be created even if IIS already has an application pool with the same domain name. (PPP-39617)
Third-Party Component Updates
- Updated phpMyAdmin to version 4.8.4, which includes fixes for multiple security issues. We highly recommend that you update Plesk. However, note that phpMyAdmin 4.8.4 cannot execute stored procedures.
- Updated PHP 7.3 to version 7.3.0.
- Updated PHP 7.2 to version 7.2.13.
- Updated PHP 7.1 to version 7.1.25.
- Updated PHP 7.0 to version 7.0.33.
- Updated PHP 5.6 to version 5.6.39.
Linux
- Updated collectd to version 5.8.1.
- Updated nginx to version 1.14.1, which supports HTTP/2 Server Push.
Windows
- Web Deploy 4.0 is now shipped with Plesk.
- Updated MailEnable to version 10.20.
- Updated libcurl to version 7.62.0.
Plesk Onyx 17.9 Preview 8
20 November 2018
- Users can now add nested routes using the extensions SDK.
- PHP 7.3 RC is now shipped with Plesk.
- APS catalog is no longer empty if libcurl version 7.61 or later is installed on the server. (PPP-39356)
- Encrypted files are now opened correctly in File Manager. (PPP-36641)
- Incremental multivolume backups can now be again restored. (PPP-39144)
- Improved the web usersâ description by adding the following: âIf scripting is enabled, web users can access all files of a subscription.â. (PPP-39080)
- The Perl or Python components enabled for a hosting plan no longer stops sync of subscriptions with the hosting plan. (PPP-39073)
- Failure in the
OptimizeStatistics
task of Daily Maintenance Task no longer stops execution of subsequent tasks. (PPP-39142)
Linux
- Backups restoration no longer fails if the directory for
temporary backup files and
/usr/local/psa/
are located on different drives. (PPP-39061) - The clear error message is now shown when backup process fails because the backup upload to FTP storage was interrupted. (PPP-39301)
- The command
plesk installer --install-component base --reinstall-patch
now installs microupdates only if Plesk packages are up to date. (PI-496) - On CentOS7, users are now protected from starting
named.service
by mistake, which breaks DNS configuration. Theservice named start|restart
commands do not now startnamed.service
, and theservice named status
command logs the warning to usenamed-chroot.service
instead. (PPP-37339) - Plesk installation no longer occasionally hangs on certain environments (for example, OpenVZ). (PPP-38528)
- Successful Watchdog security scan no longer occasionally finishes with a misleading âScanning process was interruptedâ error message. (PPP-39222)
- The PHP-FPM service from OS vendor is now disabled on clean Plesk installation if no PHP-FPM pools are configured. (PPP-38714)
- Scheduled tasks with the âFetch a URLâ type no longer treat returned 2xx or 3xx HTTP status codes as errors and do not send email notifications each time the task is executed. (PPP-39206)
- Configured additional Apache directives for HTTP no longer disappear from Apache configuration after âPermanent SEO-safe 301 redirect from HTTP to HTTPSâ was enabled. (PPP-38364)
- Installation of a license for Advanced ModSecurity Rules by Atomicorp no longer overwrites installed Atomic Secured Linux license. (PPP-35935)
Windows
- PHP extensions designed for WordPress hosting (sodium, exif, and fileinfo) are now precompiled into PHP engines shipped with Plesk.
- Plesk installation no longer fails if the administrator password contains certain special and non-Latin characters. (PI-463)
Third-Party Component Updates
- Updated PHP 7.2 to version 7.2.12.
- Updated PHP 7.1 to version 7.1.24.
Linux
- Updated Roundcube to version 1.3.8.
- Updated libcurl to version 7.61 in Plesk Installer.
- Updated OpenSSL to version 1.1.1.
Windows
- Updated MailEnable to version 10.19.
Plesk Onyx 17.9 Preview 7
23 October 2018
- Users can now create email addresses for subdomains.
- Users can now remove the Plesk mail service for a domain or choose not to create it when a domain is created. This is useful when using a remote mail service - mail to domains hosted in Plesk will no longer be delivered locally.
- The SEO Toolkit extension is now installed by default with Plesk.
- Multiple stability improvements in restart of PHP-FPM services.
- Improved the âChange Your Passwordâ screen: password strength is now checked on the fly, plus users can now create a strong password with one click using the âGenerateâ button.
- The names of new Plesk editions (for example, âPlesk WordPress Editionâ) are now shown correctly in Plesk and on its login page.
- The webmail client of an addon domain is no longer changed to the client of the main domain when an SSL/TLS certificate is issued for the main domain. (PPP-38950)
- It is now possible to remove MX DNS records via the CLI. (PPP-38994)
- It is now possible to add DNS records that contain the underscore character (_). (PPP-37846)
- It is now possible to change the owner of the additional user account via the CLI. (PPP-38599)
- If the Webalizer or AWStats component calculated a main domainâs statistics and then the component was removed, a subdomain or an addon domain can now be created without errors. (PPP-38706)
- If Plesk is opened in Firefox, the âLearn about secure hosting settingâ link is now opened (the link is shown on the âHosting Parametersâ tab when creating hosting plans). (PPP-36238)
- Scheduled tasks created by extensions are now run as the
psaadm
user. (PPP-34285) - The daily maintenance script is now run as the
psaadm
user. (PPP-38199)
Linux
- The Plesk administrator can now select the type of Apache restart (graceful or normal) in âTools & Settingsâ > âApache Web Serverâ (under âGeneral Settingsâ).
- PHP-FPM for PHP versions 7.1 and 7.2 no longer occasionally hangs during its reload or restart.
- Added the Comodo Free ModSecurity rule set, which provides a starter version of the Comodo ModSecurity rules.
- Updated Fail2ban to version 0.10.3.1. Fail2ban now protects against attackers with IPv6 addresses.
- Dropped support for the Plesk VPN component.
- Plesk Migrator no longer fails if the source server has customized SSH config and allows only new secure MACs. (PPP-36076)
- Improved performance of the
postconf
utility shipped with Plesk. (PPP-38498) - The âIP addresses were anonymizedâ message is no longer shown when IP addresses anonymization is not selected and server settings are applied for the first time. (PPP-38705)
Windows
- The
plesk repair --repair-webspace-security -webspace-name example.com
command now repairs permissions for thehttpdocs
folder. (PPP-37376) - The
statistics.exe
utility is now located in the %plesk_cli% folder. (PPP-35824) - Running the
pleskbackup
utility no longer occasionally deletes already created backups. (PPP-37161) - Advanced permissions are no longer occasionally displayed incorrectly in File Manager. (PPP-35402)
Third-Party Component Updates
- Updated PHP 7.2 to version 7.2.11.
- Updated PHP 7.1 to version 7.1.23.
Linux
- Updated Phusion Passenger to version 5.3.5, which includes fixes for certain security issues.
Windows
- Updated SpamAssassin to version 3.4.2.
- Updated libcurl to version 7.60 in Plesk Installer.
Plesk Onyx 17.9 Preview 6
25 September 2018
- Added REST API landing page to Tools & Settings, from
which users can:
- Read the REST API guide.
- Visit the REST API reference and playground.
- See the Swagger scheme and an example of a REST API call using curl.
- Now the MySQL fork (MariaDB or Percona) actually installed on the server is shown in the Plesk interface.
- Mail users and additional users can now specify an external email address, which will be used to reset the password if they lose access to the primary email address.
- For security reasons, the âUpload Extensionâ button is
now hidden in the Plesk interface by default. To install extensions
from a
file,
use the
extension
utility or make the button visible by editing thepanel.ini
file. - A custom âUnsupported Browserâ page is now shown if Plesk is opened in an outdated browser that is no longer supported.
-
Reduced the disk space necessary for restoring particular objects from backups stored in remote storage. Now only the backup of the object being restored is imported to the server storage (before this change, the whole server backup was imported).
Note: The improvement works if you restore a single object only. If you restore multiple objects at a time, the whole backup is imported to the server storage.
- Backup Manager no longer attempts to create a scheduled backup in a remote storage if the storage was disconnected or if the corresponding extension was removed. (PPP-37294)
- Dropbox Backup no longer shows an error when backups created more than 30 days ago are stored in Dropbox. (EXTPLESK-463)
- Iframes opened by custom buttons are now correctly resized to fit the contents of the HTML file. (PPP-38388)
- Joomla! instances on subscriptions with PHP 7.0.x can now be updated. (PPP-38503)
- Wrong breadcrumbs (for example, Home > Extensions > WordPress) are no longer displayed to customers. (PPP-36068)
- The size of a MySQL database is now calculated correctly even if the database name contains the hyphen character (-). (PPP-35684)
Linux
- On Debian 9 and Ubuntu 18, the OWASP ModSecurity rule set is now selected by default. The Atomic ModSecurity rule sets (both free and paid) are not shown any more because they are not supported by these operating systems.
- The PageSpeed module is now precompiled with nginx.
- Added support for managing IP addresses via Netplan.
- Users can now again create, edit, and publish websites with Web Presence Builder. (PPP-38382)
- If the configured Sieve rules copies an email with a PDF attachment to another mailbox on the same server, the PDF file is no longer corrupted. (PPP-36408)
- Plesk Update Manager can now be completely disabled. (PPP-38272)
-
psa-pc-remote
no longer fails with a segfault. (PPP-33599) - The Wdcollect service is now stopped correctly. It is no longer killed instead of being stopped and the system reboot time is not increased by 90 seconds. (PPP-36948)
- Postfix local now reports an error when Dovecot experiences issues delivering emails. (PPP-36108)
- Auto-reply no longer fails with an error if the response frequency is reached. (PPP-36512)
- Deferred emails are now visible in the Plesk interface. (PPP-37117)
- An IP address added to Plesk via the CLI is now shown right away. (PPP-35951)
Windows
- Additional Expires headers can now be configured in the IIS settings.
- If the
%plesk_dir%\admin\repository\registry.xml
file is corrupted, Plesk now continues working and shows a clear error message instead of crashing with an HTTP Error 500.0. (PPP-37309) - Domain statistics and traffic usage are still calculated
even if
statistics_collector.exe
finishes with errors. (PPP-37435) - An external mail server configured for a domain now correctly handles mail even if SmarterMail version 14.3 and later is used. (PPP-26788)
- Plesk is now initialized correctly. (PPP-38267)
Third-Party Component Updates
- Updated PHP 7.2 to version 7.2.10.
- Updated PHP 7.1 to version 7.1.22.
- Updated PHP 7.0 to version 7.0.32.
- Updated PHP 5.6 to version 5.6.38.
- Updated phpMyAdmin to version 4.8.3.
Linux
- Updated Dovecot and Pigeonhole to versions 2.3.2 and 0.5.2 respectively.
Windows
- Updated MySQL 5.7 to version 5.7.23.
Plesk Onyx 17.9 Preview 5
28 August 2018
- Users can now access Plesk by
https://<host-name-or-IP>
without specifying the TCP port 8443. On new instances with Plesk 17.9 Preview 5 and later, this feature is available by default. On instances upgraded from earlier Plesk versions, the feature is enabled by running the following command:plesk bin admin --enable-access-domain
. - Added an ability to apply SOA settings changes to all existing domains. The Plesk administrator can now choose the email address of a person responsible for the domainâs DNS zone (RNAME email address), which will be applied to all domains in Plesk. Additionally, the Plesk administrator can prohibit changing the RNAME email address on a per domain basis.
- Users can now access the REST API auto-generated
reference and execute API calls by browsing
https://<host-name-or-IP>/api/v2/
. - Users can now execute CLI utilities via the REST API
interface by using a new REST API endpoint
/cli
. - Cleaned up APS catalog leaving only most popular and important applications.
- Backups which size is more than 20 GB can now be restored from Microsoft OneDrive Backup storage. (EXTPLESK-448)
- Improved an error message in Plesk Installer. (PI-472)
- Backups stored on the server are now rotated if backups were configured to be stored in âBoth server storage and Google Drive at My Drive/mybackupsâ. (PPP-37283)
- The âDefine IP Addresses Mappingâ screen no longer appears during restoration of the domain which IP address does not match that configured for outgoing mail. (PPP-35576)
Linux
- PHP extensions designed for WordPress hosting are now precompiled into PHP engines shipped with Plesk.
- Websiteâs statistics (âWebâ in the âUsage by servicesâ
pie chart) is now shown correctly: the
web_users
folder is not calculated twice. (PPP-36183) - Auto-reply mail handler now correctly processes incoming messages without final multipart boundary. (PPP-37667)
- Plesk no longer removes the MySQL root user and log rotation is performed correctly. (PPP-37427)
- Calling the
mchk
utility no longer disables the usage of short mail account names in Postfix. (PPP-30487) - Supscriptionsâ owners can no longer see the Postfix mail queue. (PPP-36711)
- When restoring a subscription with scheduled tasks from a backup, users no longer see the warning âusr/bin/bash: Cannot open: File existsâ. (PPP-37007)
- Backing up is no longer terminated when the sw-engine process is restarted (for example, when packages are updated). (PPP-37337)
- The OK button now works on the âDefine IP Addresses Mappingâ screen if Plesk is opened in Internet Explorer 11. (PPP-37723)
-
statistics_collector
on domains with a large number of files (around 1000000 files on 2-3 domains) now consumes a correct amount of memory becausestatistics_collector
no longer stores the list of checked inodes for each domain. (PPP-37742)
Windows
- Improved chances of successful data recovery after the server crash.
- Plesk 17.5 with installed ODBC driver version 3.51.30 32-bit can now be upgraded to Plesk 17.8 without errors. (PPP-36554)
-
interface_async_executor.exe
processes no longer hinder Plesk work. Now they do not hang if one of them hangs and hung processes are closed. (PPP-36536) - 32-bit and 64-bit MySQL ODBC connectors now work correctly, when they are both installed on Plesk. (PPP-35368)
Third-Party Component Updates
- Updated PHP 7.2 to version 7.2.9.
- Updated PHP 7.1 to version 7.1.21.
Windows
- Added support for ASP.NET Core 2.1.
Plesk Onyx 17.9 Preview 4
31 July 2018
- The Plesk administrator can now allow or forbid customers and resellers to store backups in a specific remote cloud storage. To enable this feature, purchase Cloud Pro and install the corresponding cloud storage extension.
- It is now possible to manage Plesk extensions via REST
API. Here is what you can do:
- Get the list of installed extensions.
- Get detailed information about an installed extension.
- Install an extension (by code or by URL).
- Enable or disable an installed extension.
- Uninstall an installed extension.
- It is now possible to define what features and controls both the main administrator and additional administrators can access using Restricted Mode (known before as Custom View). Unlike Custom View, Restricted Mode applies both in Service Provider view and Power User View. Restricted Mode can be applied during the creation of additional administrator accounts, and can also be applied to all Plesk administrators via the following CLI command: # plesk bin poweruser âoff -simple true -lock true.
- The Domain Connect extension is now installed by default with Plesk.
- The Domain Connect extension can now connect Office 365 to Plesk. (PPP-37436)
- Plesk can now store backups in Google Team Drives via the Google Drive Backup extension. (PPP-36528)
- If users scheduled incremental backups with a weekly full backup, a full backup is now created after 6 incremental backups instead of 7. (PPP-35904)
- TXT records longer than 255 characters can now be added. (PPP-37618, PPP-36838)
Linux
- Emails received from senders with long names (when the
âFromâ field takes several lines) no longer cause a DMARC error
ending up in
/opt/psa/handlers/spool
by mistake. (PPP-32806) - PHP-FPM settings configured in
panel.ini
no longer replace the link of the Help button (marked with ? character) with a wrong link. (PPP-35857) - Now if qmail is installed, the auto-reply forwarding works correctly: the auto-reply message is sent to the sender and the original email is sent to the specified mail address. (PPP-36511)
- Now when upgrading Plesk 17.5 with installed qmail to
Plesk 17.8, no error mentioning
master.cf
appears. (PPP-37373) -
php_settings -u
now updates PHP settings without errors. (PPP-28164) - When the âAnonymize IP addresses during log rotation and collecting of web statisticsâ option is enabled, the administrator no longer receives daily error notifications if no logs for rotation exist. (PPP-37612)
Windows
- Additional HTTP headers can now be configured in IIS settings.
- Dropped support for Windows 2008 R2.
- MailEnable Professional and Enterprise can now be secured with SSL/TLS certificates. (PPP-36740)
- In Plesk on Portuguese, filesâ permissions can now be changed in File Manager. (PPP-36405)
Third-Party Component Updates
- Updated PHP 7.2 to version 7.2.8.
- Updated PHP 7.1 to version 7.1.20.
- Updated PHP 7.0 to version 7.0.31.
- Updated PHP 5.6 to version 5.6.37.
Windows
- Updated libcurl to version 7.61.
Plesk Onyx 17.9 Preview 3
2 July 2018
- As a part of GDPR compliance changes: added the âForce daily log rotation for all domainsâ option in Tools & Settings > Server Settings and as the corresponding CLI command.
- As a part of GDPR compliance changes: added the ability to set the email of the administrator responsible for a DNS zone to âSOA Records Templateâ.
- Added the ability to store scheduled backups of subscriptions in remote cloud storage as a premium feature. You can purchase it in the Plesk Online Store. The purchase of the feature unlocks the ability to use all cloud storages.
- Plesk no longer fails to back up a subscription to remote storage if the subscription was created under a hosting plan without the selected âBackup and restoration of subscription data using remote storageâ option. (PPP-37009)
- Customers can now discard the âSubscribe to our newslettersâ pop-up message by clicking âNo, thanksâ.(PPP-37057)
- Actions initiated by
pmmcli_daemon
are now logged properly with details. (PPP-37160) - Plesk no longer assigns an outdated PHP version to created domains. (PPP-35860)
- Scheduled tasks no longer show the misleading tooltip âRun a commandâ implying that clicking the scheduled task will run it. (PPP-35936)
- Restoring a full server backup no longer results in warnings if specific configuration lines were added to the [php] section of the panel.ini file prior to the creation of the backup. (PPP-36132)
- Users now can submit file names containing the hyphen (-) character when configuring custom index files. (PPP-37315)
Linux
- Security improvements.
- As a part of GDPR compliance changes: removed the
ServerAdmin directive
from Apache configuration. To remove theServerAdmin
directive from the configuration files of existing domains, run theplesk sbin httpdmng --reconfigure-all
command. - As a part of GDPR compliance changes: improved IP address anonymization by removing IP addresses from web statistics.
- In case of decreasing a maximum number of log files in log rotation settings, excessive logs are now removed immediately.(PPP-37016)
- The PostgreSQL database no longer fails to be restored from a backup if the database has objects owned by any database user. (PPP-36922)
- Plesk no longer creates backups with the warning if they contained empty archives and the âDo not compress backup filesâ option is selected in the server backup settings. (PPP-29832)
- Excessive notifications regarding missed service command from KAV update are no longer sent. (PPP-36395)
- Creating a scheduled task in Plesk and configuring the time it must be run in cron format no longer results in an error when a decimal number is used. (PPP-34022)
- Incoming email messages that fail to pass DMARC authentication are no longer indefinitely stored in the /opt/psa/handlers/spool/ directory. (PPP-32807)
- Filters in Roundcube now work correctly if the specified destination folderâs name is in Russian. (PPP-30445)
- PHP Settings are no longer reverted to default ones if they were applied via the CLI, and then the subscription was customized. (PPP-34306)
- Fixed the website preview on external domain names for Plesk servers behind NAT. (PPP-36151)
- Now, after clicking âCheck for Updatesâ (in Tools & Settings > System Updates), the correct date and time of the latest update check is displayed even if no updates were available. (PPP-30352)
- The âAnonymize IP addresses during log rotationâ checkbox no longer remains selected if IP anonymization was not actually enabled due to backend errors. (PPP-36813)
Windows
- The
php-cgi.exe
process is no longer terminated with the0xc0000409
exception. (PPP-36404)
Third-Party Component Updates
Linux
- Added support for MariaDB versions 10.2 and 10.3.
Windows
- Updated 7zip to version 18.05.
- Updated MySQL Connector/ODBC to version 5.3.10.
- Updated Plesk SQL Server to version 5.7.22.
- Updated MySQL to version 5.7.22.
- Microsoft ODBC Driver 17 for SQL Server is now shipped with Plesk.
- Updated the Plesk Perl package to version 5.26.2.
- Added support for the SQLSRV driver for PHP 7.1 and 7.2.
- Removed duplicates of
%plesk_dir%\bin
utilities from%plesk_dir%\admin\bin
. If you have integrations configured with these utilities, please use now%plesk_dir%\bin
.