Fixed Product Issues

• The website preview thumbnail now gets rendered correctly. (PPPM-14221)
• Backing up a domain with no hosting no longer completes with the “Unable to back up domain keys. Error: Unable to find service node for web service on domain with id=4” error. (PPP-63365)

Linux

• ModSecurity no longer automatically updates the “Atomic Standard” and “Atomic Advanced” rule sets ignoring the Plesk settings. (PPPM-14222)
• The System Updates tool can now be used on Plesk running on Ubuntu 18.04 with Ubuntu Pro. (PPP-63371)
• Improved detection of the KVM hypervisor. (PPP-63387)

Fixed Product Issues

• The “Websites & Domains” screen now opens again when an add-on domain has an alias. (PPPM-14216)

Linux

• Checking configurations using Webserver Configuration Troubleshooter no longer fails. (PPPM-14219)

What’s New?

• It is now possible to change the Plesk Administrator username.
• The Sitejet Builder, Node.js Toolkit, and Laravel Toolkit extensions are now shipped with Plesk by default.

• Added the Welcome Panel to make it easier for new users to quickly build websites. It offers many choices to create a website with just one click (like Sitejet, WordPress, Laravel, Node.js, and more). The panel pops up for users who just got hosting with a ready-to-use domain or picked Blank website or Upload files when creating a website. If they close the Welcome Panel, they can still find all the website-making options under the Create Website button on the domain card.

• The latest update of the DNS integration for Cloudflare extension got the following new features:

  • Added the ability to remove a domain from Cloudflare when removing it from Plesk.
  • Added the option to enable/disable export of NS records from Plesk to Cloudflare.

Linux

• Plesk will now compare and show Time To First Byte (TTFB) before and after optimizations made by Performance Booster (Tools & Settings > Performance Booster (under “General Settings”)). The TTFB comparison helps to estimate the achieved performance speedup for a website.
• Debian 12 is now supported.

• Until September 2024 (the Extended Support end date), Plesk continues to deliver new versions of Plesk Obsidian for Ubuntu 18.04. It includes delivering new features and security updates if they do not contradict the software delivered by the OS vendor.

  We strongly recommend using Extended Support from the OS vendor, which is called Ubuntu Pro, until you upgrade to Ubuntu 20.04 or migrate to another supported OS.

  Note: If Ubuntu Pro is not used, Plesk is not responsible for any functional or security issues caused by the outdated software from the OS vendor.

• Prepared a script to automate dist-upgrade from Ubuntu 18 to Ubuntu 20.

  Learn how to dist-upgrade to Ubuntu 20.

Windows

• Remote PostgreSQL database servers are now supported. It is now possible to use them to manage, back up, and restore databases.

  Note: The size of remote PostgreSQL databases is now calculated and added to the disk usage statistics.

• .NET 8.0 is now supported.

Feature Improvements

• Buttons on the “Adding New Domain” and “Install an Application” drawers now support the Vimium Chrome extension. This improvement makes it possible to create a website with a desired appication using only a keyboard and hotkeys.

• Aligned the view and layout of the domain list in Service Provider view with that of Dynamic List in Power User view:

  • The “Domain” column now shows favicons, the “Copy domain name” links, and reflects domains’ hosting types (“forwarding” or “no hosting”).
  • Added the “Status” column, which shows a domain’s status (active, suspended, or disabled).
  • Added the “File Manager”, “Mail Accounts”, “Databases”, and “Hosting Settings” buttons. These buttons provide quick access to the corresponding menus. The exact set of buttons depend on a domain’s configuration.

  • The “Setup Date”, “Expiration Date”, and “Rank Tracker” (the SEO Toolkit extension feature) columns are now hidden by default. To show them on the domain list, add the following lines to the panel.ini file:

    [domainManagement]
    showColumnSetupDate = true ; shows the "Setup Date" column
    showColumnExpirationDate = true ; shows the "Expiration Date" column
    showExtensionsColumns = true ; shows the "Rank Tracker" column 
    

• Added the “Disk Usage” and “Traffic” columns to Dynamic List in Power User view. Using the columns, it is also possible to sort domains by used disk space and generated traffic.
• The dropdown menu with a domain status (active, suspended, or disabled) now shows a hint with a link to the documentation, which describes these statuses.

• The latest update of the Sitejet Builder extension got the following improvements and new features:

  • In the domain card a comment now explains when a website has been published the last time.
  • New Website Template: https://www.template-estator.de.rs/.
  • New Website Template: Johanna James.
  • We updated the Icon Library, offering hundreds of new icons including icons for X (formerly Twitter).
  • The Collections Manager was completely redesigned for a better experience.
  • We added many more languages to translate websites.
• In the latest update of the Node.js Toolkit, the Passenger module for nginx and Apache is now disabled by default and will be enabled on the first activation of a Node.js application.

Windows

• Revoked the db_backupoperator Microsoft SQL Server role from database users created in Plesk. Learn how to bring back the role to database users created in Plesk.

Deprecated and Removed Items

• PHP 8.0 reaches end of life on November 26, 2023. Made the following changes to stay on track with the schedule:

  • Switched Roundcube to PHP 8.2.
  • Marked PHP 8.0 as deprecated in Plesk Autoinstaller and the Plesk interface.
  • Removed PHP 8.0 from the Recommended and Full presets in Plesk Autoinstaller.
  • Added PHP 8.1 and 8.2 to the Recommended preset.

Windows

• Dropped support for Windows Server 2012 and Windows Server 2012 R2:

  • Plesk can no longer be installed on Windows Server 2012 or Windows Server 2012 R2.

  • If you have a previous version of Plesk installed on Windows Server 2012 or Windows Server 2012 R2, you cannot upgrade to the latest Plesk version.

    Either migrate to a supported OS using Plesk Migrator or perform an in-place OS upgrade.

Fixed Product Issues

• It is now possible to store backups in FTP storage points whose number of connections is limited to 1 or 2. (PPPM-8749)
• When the “Apply individual settings to spam filtering” setting is disabled in Tools & Settings > Spam Filter (under “Mail”) and an email address is blacklisted on the server level, mail from the email address is rejected or sent to spam as expected. (PPPM-13601, PPPM-14040, PPPM-10722)
• The Reset Search button in Websites & Domains > domain > Password-Protected Directories again works. (PPPM-14192)
• Plesk can again generate DKIM and DNS record if the BIND DNS server component is not installed. (PPPM-14176)
• Items in rows shown on the Domains screen in Service Provider view are now horizontally aligned. (PPP-62830)
• Log rotation is again unavailable on the domain level when the server-wide “Force daily log rotation for all domains” setting is enabled. (PPPM-14157)
• Changing a domain name or the document root name to those with trailing spaces no longer produces errors. (PPPM-14155)
• Autofill for the document root now works when a domain is being added to a subscription that has an international domain name (IDN). (PPP-60070)
• Autofill for the document root now works when a subdomain is being added to an IDN domain. (PPP-60070)
• Password reset and activation emails are no longer sent from the default email address if a custom one is specified in the senderAddress setting of the panel.ini file. (PPPM-14183)

Linux

• The SpamAssassin spam filter no longer writes unclear error messages to panel.log. (PPPM-14174)
• Setting “Default limit on outgoing messages from a subscription (per hour)” in Tools & Settings > Mail Server Settings (under “Mail”) no longer triggers false-positive warnings in the Plesk interface about exceeding the default limits on outgoing messages from a mailbox and a domain. (PPPM-14168)
• Installing WordPress on a blank website no longer fails under specific circumstances if the following installation method is used: domain > Create Website > More Apps > “Featured Applications” > the arrow icon next to Install next to WordPress > Install Version > . (PPPM-14094)
• It is no longer possible to set the nginx cache size to 0, which caused issues with the permanent clearance of the cache. (PPPM-14201)
• It is no longer possible to add a DNS record with the asterisk * character in the middle of it (for example, webmail.*.example.com.) because it does not work as a wildcard DNS record and breaks BIND. (PPPM-14186)

Windows

• If a folder name contains whitespace characters, it no longer makes the corresponding folder in Virtual Directories unaccessible. (PPPM-14129)
• If Plesk has Microsoft SQL Server and a locally installed MariaDB 10.6 as an external database server with the localhost as its hostname, it is now possible to select MariaDB (localhost) from a dropdown menu when creating a database. (PPPM-14077)
• It is again possible to enable “Redirect to an external mail server with the IP address” for a domain. (PPPM-14200)
• Plesk now detects the server virtual environment even if the zvutil64.exe utility is missing. (PPPM-14199)
• It is again possible to change the password of the database user account with administrative rights for Microsoft SQL Server. (PPPM-14197)
• Renamed the “log files and statistic reports” checkbox in Tools & Settings > Server Settings (under “General Settings”) to “log files” because only they can be excluded from the disk space usage calculation. (PPPM-14191)

Changes in Third-Party Components

Linux

• Updated ProFTPD to version 1.3.8a.
• Updated libcurl to version 8.4.0.

Windows

• Updated Git to version 2.42.0.2.
• Updated Node.js 18 to version 18.18.2.
• Updated Node.js 16 to version 16.20.2.
• Updated ASP.NET Core 7.0 to version 7.0.13.
• Updated ASP.NET Core 6.0 to version 6.0.24.

Changes in Third-Party Components

Linux

• Updated Roundcube to version 1.6.5.

Fixed Product Issues

• The “Backup to Cloud Pro” banner no longer mistakenly appears when the Plesk administrator tries to create a scheduled server backup in remote storage. The issue was spotted in Plesk Obsidian 18.0.56. (PPPM-14179)

Linux

• In Plesk Obsidian 18.0.56 (including Updates 1 and 2), changing Apache from listening on localhost to listening on the server IP address no longer breaks nginx when its “Proxy mode” is on. (PPPM-14178)

  Note: To fix the issue if you were affected by it, update your Plesk to version 18.0.56 Update 3, and then run the following command: plesk bin apache --listen-on-localhost false or plesk bin apache --listen-on-localhost true.

• If you have Plesk Obsidian 18.0.56 (including Updates 1 and 2) that is not running on CentOS 7 or does not use the FastCGI PHP handler, enabling Apache to listen on localhost no longer breaks PHP scripts that use the $_SERVER["SERVER_ADDR"] PHP variable. (PPPM-14184)

  Note: To fix the issue if you were affected by it, update your Plesk to version 18.0.56 Update 3, and then run the plesk bin apache --listen-on-localhost true command.

Fixed Product Issues

Linux

• Websites and web applications that analyze client IP addresses now work properly again when Apache is listening to localhost. (PPPM-14170)

  To update the malfunctioning configuration, run the following command:

  plesk bin apache --listen-on-localhost true
  
  grep RemoteIPInternalProxy /etc/httpd/conf/plesk.conf.d/server.conf
  
  RemoteIPInternalProxy 127.0.0.1
  

• Private DKIM keys are now preserved when disabling DKIM signing for a domain. (PPP-62757)
• For security reasons, it is no longer possible to manage WP Toolkit settings when logged in to Plesk using the mail credentials of an additional user. (PPPM-14172)

Changes in Third-Party Components

Linux

• Updated Roundcube to version 1.6.4.
• Updated Roundcube to version 1.4.15.

Fixed Product Issues

Linux

• Restoring a backup created in Plesk Obsidian 18.0.55 or earlier on a Plesk Obsidian 18.0.56 server no longer fails with the “Incorrect format of the backup file. Dump has critical errors.” error. (PPPM-14162)
• Clicking Ok on the “Tools & Settings” > “Spam Filter” screen no longer results in the “Variable “$input” got invalid value N at “input.requiredHits”; String cannot represent a non string value: N” error. (PPPM-14163)

What’s New?

• Starting from Plesk Obsidian 18.0.56, the Sitejet Builder extension is installed by default. If for some reason, you want to disable the extension, add the following lines to the panel.ini file:

  [extensions]
  blacklist = plesk-sitejet
  

• Starting from Plesk Obsidian 18.0.57 (November 21), the Laravel Toolkit and Node.js Toolkit extensions are installed by default. If for some reason you want to disable the extensions, add the following lines to the panel.ini file:

  [extensions]
  blacklist = laravel,nodejs
  

• The SSL It! extension now supports DNS-based Authentication of Named Entities (DANE) that ensures reliable encryption for email transport. When a Let’s Encrypt certificate is being issued, TLSA DNS records of email services will now automatically contain information about the certificate.

• It is now possible to change the default DKIM selector to a custom one for a single domain or all new domains hosted on the server.

  You specify a custom DKIM selector for a domain in the domain’s mail settings. To specify a custom DKIM selector for all new domains, add lines of the following pattern to the panel.ini file:

  [mail]
  dkimDefaultSelector = newselector
  

• We are glad to inform you that the DNS Integration for Cloudflare extension is production-ready. Empower your experience with simplified DNS synchronization, enhanced website security, effortless subdomain creation, and smoother workflows. Use Cloudflare CDN, which distributes content around the world to speed up websites.

  • Connect your existing Cloudflare account to Plesk.
  • Import DNS records from Cloudflare to Plesk.
  • Export DNS records from Plesk to Cloudflare (both manually and automatically).
  • Enable/disable Proxy Mode.

Linux

• Returned support for Ubuntu 18.04 until September 2024.

  Until September 2024 (the Extended Support end date), Plesk continues to deliver new versions of Plesk Obsidian for Ubuntu 18.04. It includes delivering new features and security updates if they do not contradict the software delivered by the OS vendor.

  • Plesk continues to accept technical support requests from Plesk Obsidian on supported product versions on Ubuntu 18.04 without any restrictions.
  • Plesk reserves the right to warn Ubuntu 18.04 administrators about risks of an outdated OS using any channels including in-product notifications.

  We would like to make the following recommendations to our customers:

  • Upgrade to Ubuntu 20.04 using dist-upgrade or migrate to a supported OS using Plesk Migrator before the Extended Support end date (September 2024).
  • Do not deploy/use new installations of Plesk on Ubuntu 18.04. For all new installations, Plesk will show an unremovable banner with a warning about Extended Support from the OS vendor.

• To enhance security, Apache now listens to only the loopback IP address (also called localhost) when Apache runs with nginx as a reverse proxy.

  This feature is turned on by default on new Plesk installations. To enable it on existing installations, run the following CLI command: plesk bin apache --listen-on-localhost true. For information on the feature, see the KB article.

Feature Improvements

• Improved the logic of the Monitoring button shown on the domain card:

  • The Monitoring button is not displayed when it is not needed (a user chose to monitor a website themselves and did not connect the website to 360 Monitoring).
  • Connecting a website to 360 Monitoring brings back the Monitoring button to the domain card.
  • If a website is connected to 360 Monitoring, clicking the Monitoring button now opens the 360 Monitoring data of the website.

• The icon of the Monitoring button on the domain card is now dynamic: it reflects the current status of Monitoring for a domain.

Linux

• alt-php handlers are no longer misleadingly marked as “Outdated” in Plesk. On the contrary, they are supported and actively developed by CloudLinux.
• Decreased the disk space the ModSecurity database consumes.

Deprecated and Removed Items

• The following SDK functionality will be deprecated and removed in Plesk Obsidian 18.0.57. These are legacy functions and classes exposed in the pm.php file:

  • Functions: pm_alert(), pm_warning(), pm_comm_button(), pm_get_gpc(), pm_isset_gpc(), pm_set_gpc(), pm_get_locale(), pm_go_to(), pm_go_to_uplevel(), pm_ldate(), pm_ltime(), pm_ldatetime(), pm_link_button(), pm_lmsg(), pm_plesk_mail(), pm_psaerror(), pm_safetyhtml(), pm_size_b_printing(), pm_size_kb_printing(), pm_size_mb_printing(), pm_size_pretty_printing(), pm_topnote(), pm_util_exec(), pm_util_io_exec().
  • Classes: pm_errHandler, pm_Checker, pm_cList, pm_Form, pm_CustomButton, pm_CustomButtonManager.

  We would like to make the following recommendations:

  • If you have Plesk extensions published in the Plesk Extension Catalog, then we have already checked that the extensions do not use those legacy functions and classes.
  • If you have Plesk extensions not published in the Plesk Extension Catalog, check if your extensions use the modern SDK.

Fixed Product Issues

• Domains > domain > FTP > FTP account name again opens the Hosting Settings drawer of the system user. (PPPM-14140)
• A domain restored from a backup now preserves the configuration of the home path for additional FTP users. (PPPM-14114)
• If Plesk Premium Antivirus is installed, the “Configure antivirus” permission of the “Application Iser” role is again sufficient for managing the antivirus settings and displaying the “Antivirus” tab. (PPPM-14119)
• The selected Dark Mode is now preserved and no longer expires together with a browser session. (PPPM-14151)
• The action log now contains more detailed entries about mailbox password changes. (PPPM-14146)

Linux

• The systemd/journalctl logs in Plesk on Ubuntu 22.04 no longer contain unnecessary “Standard output type syslog is obsolete” warnings. (PPPM-14138)
• An attempt to connect via FTP to Plesk with the psa-proftpd package from Atomic Secured Linux (ASL) no longer fails with the unknown configuration directive 'ClamServer' on line 101 of '/etc/proftpd.conf' error in /var/log/messages. (PPP-62527)
• When a user tries deleting a directory they have no permission to read, Plesk now shows an actual error message instead of an error message placeholder. (PPPM-14128)
• Plesk now validates a domain’s DNS zone before adding or updating the zone. This prevents BIND from crashing because of the invalid DNS zone. (PPP-62058)
• The dnf update command again works in Plesk on AlmaLinux 8 if the SOGo Webmail extension is installed. (EXTPLESK-4933)
• The NTP Timesync extension now syncs time even if the chrony package is removed or not installed. (EXTPLESK-4596)
• The IP address drawer (Tools & Settings > IP Addresses > IP address) is now opened in Firefox 118.0.1 without any issues. (PPPM-14153)
• The --set-custom-config command again works with the plesk bin server_dns utility. (PPPM-14149)
• DKIM signing of outgoing mail is now disabled for subscriptions created via the CLI or API if no DNS server is installed or DKIM signing is disabled for the whole server. (PPPM-14134)
• Attempts to add particular configurations to the “Additional Apache directives” text field no longer result in false positive errors about not closed Location tags. (PPPM-14132)
• SSH Terminal now works when PermitRootLogin is set to no in /etc/ssh/sshd_config. (PPPM-14124)
• Cgroups Manager can now manage CPU usage of a subscription in Plesk on AlmaLinux 8 when multipathd.service is enabled. (PPPM-14047)

Windows

• Plesk Task Manager can now handle and write exceptions to panel.log when it fails to flush old tasks. (PPPM-14122)
• It is now possible to create a backup when a Microsoft SQL database has the AUTO_CLOSE=on option. (PPPM-13922)

Changes in Third-Party Components

• Updated ModSecurity 2.9 to version 2.9.7.
• Updated OWASP ModSecurity CRS to version 3.3.5.

Linux

• Updated ModSecurity 3.0 to version 3.0.10.
• Updated Roundcube to version 1.6.3.
• Updated Courier-IMAP to version 5.2.5.
• Updated Kaspersky Anti-Virus SDK to version x64-8.9.2.824.
• Updated Kaspersky Anti-Virus SDK to version x86-8.9.2.595.

Windows

• Updated ASP.NET Core 7.0 to version 7.0.11.
• Updated ASP.NET Core 6.0 to version 6.0.22.
• Updated BIND to version 9.16.44.

• Security improvements.

Fixed Product Issues

• The content of email notifications is once again rendered correctly. (PPPM-14130)

Linux

• It is once again possible to switch to Dynamic List view after updating to Plesk Obsidian 18.0.55. (PPPM-14123)

Windows

• Creating a mail user with a strong password on a Plesk server with the SmarterMail Build 8629 installed no longer fails with the “Invalid parameters: SYSADMIN_SECURITY_PASSWORD_REQUIREMENTS” error. (PPPM-14120)

What’s New?

• Starting from Plesk Obsidian 18.0.55, the Sitejet Builder extension will be installed by default for all new Plesk installations. If for some reason you want to disable the feature, add the following lines to the panel.ini file:

  [extensions]
  blacklist = plesk-sitejet
  

  We are constantly working on the extension, so the latest update got the following new features:

  • Clicking Publish now automatically saves the website. This makes sure that the latest version of the website will be published.
  • Added new website templates: MakeIt Agency and LumeDeAqua.
  • Added support for website migrations, making it possible to migrate Sitejet websites between Plesk servers.
  • We’ve given our template selection a stylish makeover to make it even more enjoyable to browse.
  • Fixed a critical issue where some pages were not being indexed by search engines.
  • We now allow cross-origin requests for www-prefixed domains allowing forms to work properly.
  • In our continuous effort to improve performance, we’ve made the publishing process even faster.
• During the update to Plesk Obsidian 18.0.56 and later, the Sitejet Builder extension will be enabled by default for all existing Plesk installations.

• We are thrilled to introduce the Flexible Backups feature, which enables you to do the following:

  • Establish multiple backup schedules with different destinations at once to get a flexible and robust backup policy.

  Establishing multiple backup schedules at once is a part of a license to the Backup to Cloud Pro extension. The extension is included to Plesk Hosting Pack.

  • Schedule frequent (several times a day or even on hourly) backups for critical data with one click from the Plesk interface.

  By default, the ability to schedule hourly backups is only enabled for Plesk administrators. To enable resellers and customers to do so as well, go to Tools & Settings > Backup Manager, click Settings, select the “Allow customer and reseller accounts to schedule hourly backups” checkbox, and then click OK.

• Backing up only databases. Previously, it was possible to back up databases together with files only.

• To ensure better protection of emails from unauthorized changes and impersonation, we added support for 2048-bit DKIM keys. Starting from Plesk Obsidian 18.0.55, such keys will be used for all new Plesk installations by default.

  • To enable the feature on existing domains, follow the steps described in the KB article.

  • To switch back to 1024-bit DKIM keys, as a Plesk administrator, add the following lines to the panel.ini file:

    [mail]
    dkimKeySize = 1024
    

• On the domain card, we added the Performance Booster icon that indicates if the website’s performance can be optimized at the moment. The feature is supported in Plesk Obsidian 18.0.55 and later by default. To enable the feature in Plesk 18.0.54 and earlier, add the following lines to the panel.ini file:

  [ext-performance-booster]
  domainButtonEnabled=true
  

• Performance Booster can now detect custom gzip-related directives and suggest applying the optimal configuration excluding these directives.
• In the Firewall extension, we added indicators to the firewall rules’ descriptions. These indicators show you if a rule allows all traffic or denies some of it.

• Starting from Plesk Obsidian 18.0.55, Plesk can automatically identify the following:

  • Technologies (PHP, Ruby, Python, .NET, Node.js, Composer).
  • Top PHP frameworks (Laravel, Symfony, CodeIgniter, CakePHP, Yii).
  • CMS (WordPress, Joomla!, Drupal, PrestaShop, TYPO3).

  In Dynamic List view, Plesk adds a corresponding icon to the domain card so that you can figure out which application is installed on a domain at glance. In case Plesk has a matching tool for the used technology (for example, WordPress, Joomla!, .NET, Node.js, Laravel Toolkits, Composer), you can open the corresponding configuration page by clicking the icon. In addition, Plesk published Wappspector, an open-source CLI utility based on this functionality. The utility can analyze the file structure of a web hosting server and identify the frameworks and CMS used on websites that are hosted on the server. For more information on Wappspector, see our Github repository.

• (Plesk for Windows) Added support for the DNSSEC extension that allows signing DNS zones. DNSSEC stands for Domain Name System Security Extensions and represents a set of DNS protocol extensions that were introduced by IETF with the goal of signing DNS data to secure the domain name resolving process. Please pay attention that if you want to secure Plesk services with DANE, you have to sign a DNS zone using DNSSEC.

• (Plesk for Windows) It is now possible to load the user profile for IIS application pools. That way you ensure better security and isolations of web applications.

  In the Plesk interface, you can enable the feature using the “Load user profile” option on the following pages:

  • Tools & Settings > IIS Application Pool
  • Domains > Domain_name > Hosting & DNS > Dedicated IIS Application Pool for Website
  • Service Plans > Service_Plan_(or_addon)_name > Performance
  • Customers > Customer_name > IIS Application Pool
  • Resellers > Reseller_name > IIS Application Pool

  Via the CLI, you can enable the feature by adding the -load-user-profile flag option to the following commands:

  • The whole Plesk server: plesk bin server_pref --set-iis-app-pool-settings -load-user-profile true
  • Service plans: plesk bin domain_template -u <service_plan_name> -load-user-profile true
  • Add-on service plan: plesk bin domain_addon_service_plan -c <addon_name> -iis-app-pool true -load-user-profile true
  • Per domain: plesk bin domain -u example.com -load-user-profile true
  • Customers/Resellers options: plesk bin client_pref --set-iis-app-pool-settings <customer_name> -iis-app-pool-turned-on true -load-user-profile true
  • Customers only: plesk bin client -u <customer_name> -iis-app-pool true -load-user-profile true
• In March 2024, Active List view will be deactivated in domain cards. All customers will be automatically switched to Dynamic List view. See Feature Deprecation Plan for details.

Feature Improvements

• In Dynamic List view, made a number of improvements to domain cards:

  • Based on your numerous requests, we colored and redesigned the icon set in the domain cards. That way you can find the desired feature with less cognitive load.

  • We renovated the “Statistics” part of the domain cards:

    • Moved the “Data Transfer”, “FTP Transfer report”, “Disk space and traffic”, and “Web Statistics SSL/TLS” links to the new “More statistics” drop-down list.
    • The “Open in web” and “Preview” buttons now appear when you hover the cursor over the website’s screenshot.
  • Improved the UI of the “Hosting Settings” drawer.
  • The PHP Composer extension button is now hidden if PHP is disabled in the domain’s settings.

• (Plesk for Linux) We prepared Plesk QCOW2 images based on AlmaLinux 9 to replace those based on CentOS 7 because it reaches EOL on June 30, 2024.

Fixed Product Issues

• Creating an FTP user account via REST API no longer fails with the “code: 1014” error. (EXTREST-158)
• Opening the “Scheduled Backup Settings” page in the Scheduled Backup List extension no longer results in a blank screen. (PPP-61987)
• Customers and resellers can open the “Hosting Settings” page of subscriptions in Mozilla Firefox version 114 or earlier without errors. (PPPM-14086)
• The Plesk feedback form now opens correctly in Service Provider view. (PPPM-14093)
• Hosting Plan Exporter now correctly exports and imports additional PHP directives of hosting plans. (EXTPLESK-4898)
• Removed the confusing duplicate “IP addresses” title from the “Hosting Settings” page of a domain when logged in as a customer. (PPPM-14074)
• The Firewall extension is now enabled on Safari browser on the first try. (EXTPLESK-4908)

Linux

• Opening Backup Manager no longer fails with the “utf-8’ codec can’t decode byte 0xfa in position 850: invalid start byte” error if a customer’s login contains a special character. (PPPM-13939)
• Now enabling or disabling an extension in a custom PHP handler does not unintentionally affect the state of the extension in other custom handlers. (PPPM-14081)
• Customers can now again open the “Mail Settings” page of a domain without an error. Previously, the error occurred when the Plesk administrator enabled the “Disabled for incoming mail” option in the domain’s mail settings. (PPPM-14065)
• Changing the preferred domain via the CLI now works correctly. (PPPM-14082)
• Added a more specific error message for cases when Website Log Check detects the “403 Forbidden” error related to the .htaccess and .htpasswd Apache files. (PPPM-14089)
• Removing domains with the “Send from domain IP addresses and use domain names in SMTP greeting” outgoing mail mode selected no longer results in overuse of server resources. (PPPM-13851)
• DKIM keys no longer unintentionally change when updating the mail settings of a domain. (PPPM-14098)
• When switching a domain to the “Website” hosting type, Plesk now shows the confirmation message. (PPPM-14105)
• Adding an IP address to the primary DNS server via the CLI no longer fails with the “Unsupported DNS record type” error. (PPPM-14107)
• Fixed the issue where particular customers could not add domains because of the “Cannot read properties of undefined (reading ‘split’)” error. (PPPM-14112)
• Fail2ban now again bans IP addresses from which the specified number of failed login attempts was exceeded. (PPPM-14116)
• On Plesk servers running on AlmaLinux 8 with SOGo Webmail installed, running the dnf update command no longer fails with an error. (EXTPLESK-4933)
• Plesk Firewall is no longer shown as installed after removing it via Plesk Installer. (PPPM-13980)
• Adding a range of IPv6 addresses to the Fail2Ban whitelist in the Plesk interface no longer fails with the “The provided IP address, network address, or hostname is invalid” error. (PPPM-14073)
• Now the update period is set to “None” when switching via the CLI to a rule set that does not suppport update periods. (PPPM-14084)
• It is now more reliable to manually run scheduled tasks on CloudLinux servers without CageFS configured. (PPPM-14111)

Windows

• The plesk repair web example.com command now again fixes the .NET CLR version if ASP.NET version 4.x is selected in the corresponding subscription’s settings. (PPPM-14088)
• 32-bit applications of a service plan can now be again managed via the CLI. (PPPM-14058)
• Backup Manager no longer creates a text database dump instead of a binary one during the scheduled backing up if the “Use native MS SQL backup functionality” option is enabled. (PPPM-14072)
• When clicking the “/swagger/index.html” path on the “Logs” page of a subdomain, the error is now shown with the correct path. (PPPM-14079)

Changes in Third-Party Components

Linux

• Updated Fail2ban to version 1.0.2.

Windows

• Updated Kaspersky Anti-Virus SDK to version 8.10.0.511.
• Updated ASP.NET Core 7.0 to version 7.0.10.
• Updated ASP.NET Core 6.0 to version 6.0.21.
• Updated Node.js 16 to version 16.20.1.
• Updated Node.js 18 to version 18.17.0.

Fixed Product Issues

• Resellers can once again change the IP addresses of subscriptions owned by their customers. (PPP-62277)
• Resellers can once again manage hosting settings of subscriptions in Dynamic List view. (PPPM-14102)

Linux

• Trying to restore one or more MySQL databases from a Plesk backup on a server with MySQL 8 installed no longer fails with the “Execution failed with return code 2” error. (PPPM-14100)

Fixed Product Issues

• Customers and resellers can now again open the hosting settings of their subscriptions. (PPPM-14086)

Linux

• Creating and updating a domain’s mailbox via the GUI is now again recorded in the Plesk log files. (PPPM-14090)
• Adding a primary DNS server for a domain no longer fails with the “TypeError: Plesk\Smb\Form\Final\DnsZone\Record\Data::__construct()” error. (PPPM-14091)

Feature Improvements

• Internal improvements for scheduled backups.

Fixed Product Issues

• (Plesk for Linux) Temporary domains now open correctly again after updating to Plesk 18.0.54 Update 1. (PPP-62056)
• (Plesk for Windows) It is now again possible to change the version of ASP.NET in a domain’s hosting settings. (PPP-61995)

Fixed Product Issues

• Opening the “Home” page in the Scheduled Backup List extension no longer fails. (PPP-62003)
• Domain cards now open correctly on mobile devices again. (PPP-61957)

Linux

• Restoring IDN websites using the pleskrestore utility no longer fails with an error. (PPP-61938)

Windows

• The “ASP.NET Server-Wide Configuration” page now opens correctly again. (PPP-62010)

What’s New?

• We are excited to introduce the Sitejet Builder extension, our new website builder for Plesk powered by WebPros. This extension is provided free of charge, allowing you and your clients to effortlessly create modern and stunning websites without any coding skills. Here are some of the key features of our new website builder:

  • Drag & Drop Website Builder
  • 140+ Website Templates
  • 120+ Section Templates
  • Responsive Settings (Flexbox)
  • AI Text Generator
  • SEO Settings
  • Dynamic Content (for example, Blog Feature)
  • E-Commerce
  • Multi-language websites
  • Free Stock Photos & Videos
  • Image Editing
  • Website Backups
  • Full Design Flexibility (HTML, CSS, JS)
  • And many more…

  Once installed, the Sitejet Builder is available in the setup wizard when adding a new domain, but also visible for all other domains on the domain card under ”Install Application”, and also as an option for the “Add Domain” action.

  We would love to hear your feedback about this extension at feedback@plesk.com.

• Added the ability to tune the MySQL/MariaDB server performance in Tools & Settings > Performance Booster (under “General Settings”).
• Added the ability to add Transport Layer Security Authentication (TLSA) DNS records to domains’ DNS zones in Plesk. Such records are most commonly used to implement DNS-based Authentication of Named Entities (DANE).
• Added the ability to back up databases separately from other website content by splitting the “User files and databases” checkbox into separate “Databases” and “User files” checkboxes in Backup Manager.

• Added the ability to schedule hourly backups in Backup Manager. To enable the feature, add the following lines to the panel.ini file:

  [pmm]
  allowHourlyTask = on
  

  By default, the ability to schedule hourly backups is only enabled for Plesk administrators. To enable resellers and customers to do so as well, go to Tools & Settings > Backup Manager, click Settings > select the “Allow customer and reseller accounts to schedule hourly backups” checkbox, and then click OK.

• Based on Beta users feedback we are glad to announce that our tool to convert your CentsOS 7 server to AlmaLinux 8 is now Production ready! The ready to use CLI tool is available in our GitHub repository.

• Added a number of features to the DNS integration for Cloudflare extension (the extension is still in beta).

  • The extension now allows to enable & disable CDN (proxy mode).
  • Plesk administrator can now manage all domains on the server and enable/disable the integration for the domains owned by customers.
• In Plesk for Windows, it is now possible to integrate your server with 360 Monitoring, a new tool present in the Plesk 360 cloud service. 360 Monitoring brings a couple of useful features, for example, monitoring of website availability, various notification channels, and more.

Feature Improvements

• It is now possible to set Dark Mode by default in Plesk. To do so, add the following lines to the panel.ini file:

  [branding]
  theme = "dark"
  

• We made a number of improvements to the way icons are placed on the domain card in Dynamic list view:
  • Changed the way icons are aligned to grid.
  • Limited the number of icons in a row to three.
  • Increased the icon size from 16px to 24px. These changes make the domain card easier to read, and help you locate specific icons more quickly regardless of your viewport size.
• In Dynamic List view, we merged the “Hosting Settings” and “Web Hosting Access” into a single drawer accessible right from the domain card.

• Made a number of improvements to Dynamic List view:

  • When set to “On a separate page”, you can now see websites’ root folders. To enable the feature, add the following lines to the panel.ini file:

    [dynamicList] showColumnHostingLocation = on

  • When set to “In an expanded row”, clicking the “Expand all/Collapse all” button now completely expands or collapses the entire list of domains and subdomains.
  • Removed the separate “Hosting Settings” page for domain aliases. Controls for most settings can now be found right on the alias card. The option to rename a domain alias was moved to the hamburger menu in the top right corner of the alias card.
• Added support for nightly packages in Plesk on RHEL 9 and its derivatives to the “SOGo Webmail” extension.

• Added the -auto-confirm-this-may-lock-me-out-of-the-server option to the plesk ext firewall command line utility. The option can be used with the --apply and --enable commands, and removes the need to run the --confirm command in a separate SSH session when applying a new firewall configuration.

  This option must only be used for automated Plesk deployments. Using this option may result in being permanently locked out of the server if the applied firewall configuration is misconfigured.

Fixed Product Issues

• Running the plesk bin site --show-php-settings or plesk bin domain_template --show-php-settings commands now shows the PHP settings correctly. (PPPM-14009)
• Entries about mailbox quota changes are now added to the action log. (PPPM-13934)
• Updating customer information no longer fails with the “TypeError: rewind(): Argument #1 ($stream) must be of type resource, array given” error. (PPPM-14038)
• SSL/TLS certificates securing webmail no longer become unassigned when migrating domains from a Plesk Onyx server to a Plesk Obsidian server, or when restoring a backup created on a Plesk Onyx server on a Plesk Obsidian server. (PPPM-14014)
• Switching to a different domain on the “PHP Settings” page now correctly shows the PHP handler for the latter domain. (PPPM-14041)
• Searching for the name of a removed domain using the search bar no longer results in errors. (PPPM-14013)
• Restoring a MariaDB database from a backup now aborts and shows an error if the backup cannot be restored correctly because it was created on a MariaDB with an earlier version. (PPPM-14012)
• The contents of a backup file are now shown in Backup Manager if the <storages> section of the backup_info XML file is empty. (PPPM-14045)
• Summary reports are no longer sent to customer accounts converted from reseller accounts. (PPPM-14032)

Linux

• The Plesk GPG key no longer disappears from the /etc/apt/trusted.gpg.d/ directory after installing or updating Plesk. (PPPM-14016)
• Installing the SOGo Webmail extension on a Plesk server with MySQL 8 installed no longer fails with an error. (EXTPLESK-4458)
• The SOGo Webmail extension no longer creates its own spam directory, separate from the Plesk spam directory. (EXTPLESK-4732)
• Postfix no longer fails on Plesk servers without the mariadb-connector-c package package installed. (PPPM-13724)
• Incremental backups created in the remote FTP storage no longer have the same size as full backups. (PPPM-13957)
• Creating a backup in the remote storage no longer fails with the “Repository error: The volumes number is not equal to expected number” error under specific circumstances. (PPPM-14023)
• It is now possible to remove TXT DNS records containing values in uppercase using the plesk bin dns command line utility together with the -txt and/or -domain options. (PPPM-13976)
• The plesk repair mail command now correctly processes mailboxes with encrypted passwords. (PPPM-14050)
• It is now possible to remove the firewall rule that was added most recently. (EXTPLESK-4720)
• Plesk mail handlers no longer convert the “from” header, regardless of the capitalization (for example, “from”, “From”, and “fRom” are now treated the same). (PPPM-14037)
• Creating firewall rules using a country code as the source on the first day of the month no longer fails with the “The requested URL returned error: 404” error on Plesk servers using geolocation data provided by DB-IP. (EXTPLESK-4813)
• Installing Plesk on Red Hat Enterprise Linux 8 servers no longer fails with the “No matching repo to modify” error. (PPPM-14017)
• Logging in to Plesk no longer results in the “HTTP 500 Server Error” error. (PPPM-14036)
• Opening Backup Manager no longer fails with the “stat: path should be string, bytes, os.PathLike or integer, not NoneType” error under specific circumstances. (PPPM-14044)
• Creating a backup no longer fails if there is one or more custom buttons with custom images created for the domain(s) being backed up. (PPPM-13938)
• On Ubuntu 22 servers, registering the PHP 7.0 FPM handler using the “php7.0-fpm” service name no longer fails with an error. (PPPM-14054)
• Importing one or more firewall rules with multiple destination addresses no longer breaks the Firewall interface. (EXTPLESK-4796)
• Applying a new firewall configuration no longer fails with the “HTTP 502 Bad Gateway” error when applying the configuration takes longer than expected. (EXTPLESK-4804)
• Enabling HTTP/2 no longer results in the “protocol options redefined” warning. (PPPM-14042)
• Opening a file containing one or more multibyte characters in HTML Editor no longer results in the “DOMDocument::loadHTML():Argument #1 ($source) must not be empty” error. (PPPM-13961)

Windows

• Running the plesk repair web command now also fixes the Default Web Site in IIS. (PPPM-12727)
• Timestamps in log files now use the time zone set in Tools & Settings > System Time instead of UTC. (PPPM-14051)

Changes in Third-Party Components

Linux

• Updated Postfix to version 3.5.20.
• Updated Dovecot and Pigeonhole to versions 2.3.20 and 0.5.20, respectively.
• Updated Courier-IMAP to version 5.2.4.
• Updated courier-authlib and courier-unicode to versions 0.72.0 and 2.2.6, respectively.
• Updated ProFTPD to version 1.3.8.
• Updated Dr.Web to version 6.0.2.

Windows

• Updated ASP.NET Core 7.0 to version 7.0.9.
• Updated ASP.NET Core 6.0 to version 6.0.20.
• Updated OpenSSL used by Plesk and Plesk Installer to version 3.0.9.
• Updated BIND to version 9.16.42.
• Updated MailEnable Standard to version 10.46.
• Updated Dr.Web to version 12.0.

Fixed Product Issues

• It is again possible to manage user roles if an APS application is installed. (PPPM-14031)

Linux

• Nginx configuration is again correct if the “Plesk Premium Email, powered by Kolab” extension is installed. (PPPM-14026)
• It is again possible to secure temporary domains with SSL/TLS certificates from Let’s Encrypt. (PPP-61697)

Fixed Product Issues

• Summary Report and Traffic History (in Tools & Settings > the “Statistics” section) work again. (PPP-60003, PPP-61636)

Linux

• Updating Plesk no longer fails with the “An error occurred during the signature verification” error caused by the Plesk GPG key misconfiguration. (PPPM-14016)
• Domains’ logs again have correct timestamps. (PPP-61654)

Windows

• It is again possible to fix the “Default Web Site” settings in IIS using the plesk repair web -y command. (PPPM-12727)

What’s New?

• It is now possible to use Hosting Plan Exporter to export reference hosting plans from one Plesk server and spread them to other servers via the CLI. That way you can keep hosting plans on your Plesk servers unified and up-to-date, as well as quickly deliver them to a newly deployed Plesk server.

  To export several hosting plans via the CLI, run the following command:

  plesk ext hp-exporter --export -plan 'name1, name2...' 
  

  To import hosting plans from a local file, remote storage, or a URL via the CLI, run the following command:

  plesk ext hp-exporter --import -config path_to_source
  

• To prevent temporary domains from being used for phishing and fraud, we added a banner that appears the first time you visit a temporary domain.

Linux

• Added the ability to export and import a firewall rules configuration from a Plesk server to other Plesk servers.

• Based on your feedback, we have published the new 0.2.0 version for the public beta CLI script that in-place converts your Plesk server on CentOS 7 to AlmaLinux 8. We recommend that you use the script to convert your Plesk server and check the result before CentOS EOL on June 30, 2024. That way we will be able to take into account the specifics of your server’s configuration in the stable release.

  Please report any issues related to the conversion on GitHub. We have assigned a developer to process your feedback there. While this script is in beta, we do not provide help with the conversion via Plesk Support.

Feature Improvements

• In Websites & Domains in Dynamic List view, it is now possible to create a staging website for testing purposes using the “Website Copying” button.
• The Git extension now respects the selected branch when requesting a webhook.

Linux

• Now you can configure the Plesk mail server to issue a 5yz response code for emails that fail the DMARC check.

• Introduced the following improvements for Performance Booster:

  • Now the “Set optimized PHP settings” option cannot be selected if custom PHP settings are applied in the panel.ini file.
  • Added an ability to gauge the performance of a website before and after its optimization.
  • Added a description for the “Performance Booster” page (in Tools & Settings).

Deprecated and Removed Items

• Dropped support for Ubuntu 18.04 because it has reached EOL on May 31, 2023. You can either migrate to a supported OS using Plesk Migrator or run dist-upgrade to upgrade your Ubuntu 18.04 instance.

• (Plesk for Windows) myLittleAdmin has been removed from Plesk because the vendor stopped providing support for it. Therefore, it was out of date and had security issues.

  Instead of myLittleAdmin, you can now use local database clients (for example, HeidiSQL and SQL Server Management Studio (SSMS)).

Fixed Product Issues

• Fixed the issue where an external IP address was added to the BIND allow-transfer in case Plesk worked behind NAT. (PPPM-12126)
• In Power User view, it is now again possible to open images of domains using File Manager. (PPPM-13971)
• The desktop version of a website no longer unintentionally opens from a mobile device. (PPPM-13973)
• The “Add Domain” button works correctly when the browser window is scaled down. (PPPM-13981)
• Added the missing hint for the Disable Node.js button. (PPPM-13983)
• In the CLI, viewing information about a hosting plan with the enabled -ssi support no longer results in the “Undefined array key “ssi_html” error. (PPPM-13985)

Linux

• Horde works correctly after reinstallation. (PPPM-12017)
• In Plesk on RHEL 8, the Imagick module no longer crashes if gssproxy is installed. (PPPM-13689)
• When updating some PHP settings of a subscription from a file via the CLI, the remaining PHP settings are no longer reset to default. (PPPM-13910)
• During installation or upgrade of Plesk on CentOS 7, the Plesk installer no longer shows the misleading “Unable to create yum cache for ‘*epel’ OS repository.” error. (PPPM-13946)
• Fixed the issue where a custom 403 error page was not shown on the RHEL-based Plesk servers under some circumstances. (PPPM-13958)
• Assigning a domain to a customer no longer results in the JavaScript error if an IPv6 address is removed. (PPPM-13972)
• When sending emails from Plesk with the configured Roundcube, the misleading “PHP Error: Detected ‘temp_dir’ change” error is no longer logged. (PPPM-13977)
• The “phpinfo()” page for a custom PHP handler now opens correctly. (PPPM-13986)

• New custom PHP handlers added using the plesk bin php_handler --add CLI command will now restart correctly again. (PPPM-13995)

  To fix the existing custom PHP handlers added that way, run the following command:

  plesk bin php_handler --update
  

• It is now possible to use more than 64 characters in passwords to an external SMTP server. (PPPM-13999)

Windows

• The plesk repair command now again fixes issues found in the IIS settings of a domain. (PPPM-12727)

• If a Plesk server had 32 CPU threads or more, the backing up process could be complete with an error. (PPPM-13989)

  To fix the issue, limit the number of CPU threads that the backing up process can use. For example, you can set the limit to 16 threads by adding the following lines to the panel.ini file:

  [pmm]
  archiverMaxThreads = 16
  

Changes in Third-Party Components

• Updated PHP used by Plesk to version 8.2.6.

Windows

• Updated Git to version 2.40.1.
• Updated MariaDB 10.3 to version 10.3.39.
• Updated MariaDB 10.5 to version 10.5.20.
• Updated MariaDB 10.6 to version 10.6.13.
• Updated MariaDB 10.11 to version 10.11.3.

Fixed Product Issues

Windows

• Plesk cloud images are again correctly deployed. (PPP-61323)

Fixed Product Issues

Windows

• Customers and resellers can now again open the “ASP.Net Settings” page of their domains. (PPPM-13979)

Fixed Product Issues

Linux

• It is again possible to install the Slave DNS Manager extension. (PPPM-13974)

What’s New?

• (Plesk for Linux) It is now possible to block countries using the Plesk Firewall. The feature works out of the box.

  By default, the feature uses the free version of the DB-IP geolocation database. You may want to use geolocation databases from MaxMind (GeoLite2 or GeoIP2), for example, because they are updated more frequently than DB-IP. GeoLite2 is free, while GeoIP2 is paid, but both require a license key. Learn how to switch from DB-IP to MaxMind.

• (Plesk for Linux) We are thrilled to introduce the websites’ performance optimization feature. At the moment, it is possible to optimize PHP and nginx settings for one or more websites.

  The feature is available in Tools & Settings > Performance Booster (under “General Settings”). In the next Plesk versions, we aim to introduce MySQL settings optimization and some tweaks to the existing settings for an even greater speed boost.

• (Plesk for Linux) CentOS 7 reaches end of life on June 30, 2024. We have prepared a public beta CLI script that in-place converts your Plesk server on CentOS 7 to AlmaLinux 8. You can use the script to convert your Plesk server and check the result before CentOS EOL.

  Please report any issues related to the conversion on GitHub and/or send us feedback to beta-extensions@plesk.com. While this script is in beta, we do not provide help with the conversion via Plesk Support.

• MariaDB 10.11 is now supported. It is the latest “long-term support” version from the vendor.

• Plesk now supports secure MySQL connections. The Plesk administrator can now connect to a remote database securely via SSL/TLS and prohibit using a non-secure connection.

• (Plesk for Linux) Ruby 2.7, 3.0, 3.1, and 3.2 are now supported.

Feature Improvements

• Updated the Node.js Toolkit extension (former Node.js) to version 2.3.0:

  • Added quick access to File Manager.
  • You can now call npm/yarn commands from the “Run Node.js commands” tab in the extension interface.
  • You can now install/remove Node.js versions available on a Plesk for Linux server in the extension interface.
  • Renamed the Node.js extension to Node.js Toolkit.
• Added the “Ruby” button to the “Adding New Domain” drawer. After a domain with the selected “Ruby” option is created, Plesk offers the necessary toolkit to manage the domain with Ruby right away. It is now easy to enable Ruby at the same time as adding a domain.
• Modified the “Install Application” drawer:
  • Moved the “Install Application” button to the bottom of a domain card.
  • Moved the “Git” and “Website Importing” buttons from the drawer to a domain card.
  • After an application was installed on a domain, the corresponding application buttons now remain in the drawer.
• Improved visibility of the global search bar.
• Global search now shows the most recent results at the top.

• To bring Plesk in line with the evolving industry-standard vocabulary, added aliases of the following CLI options:

  The dns utility

  • --set-master > --set-primary
  • --set-slave > --set-secondary

  The service_plan utility

  -dns_zone_type (master|slave) > -dns_zone_type (primary|secondary)

  Note: This improvement does not affect existing integrations that use the old CLI options. They continue to work.

Linux

• Converted the Plesk Firewall module to an extension. It is now possible to update the firewall separately from Plesk.
• Converted the Premium Antivirus for Servers component to an extension. It is now possible to update the antivirus separately from Plesk.
• It is now possible to clone MySQL databases that have stored procedure triggers with DEFINER.

Windows

• MyLittleAdmin is scheduled for removal in June 2023 (Plesk Obsidian 18.0.53).

  We have prepared a KB article with the instructions on how to download, install, and configure local database clients (for example, HeidiSQL and SQL Server Management Studio (SSMS)) and added the link to the article to the Plesk interface.

  The Plesk administrator can replace the default link with a custom one via the panel.ini file:

  [databaseManagement] 
  features.dbclient.info = "https://support.plesk.com/hc/en-us/articles/13302777933719" ; the default link
  

Deprecated and Removed Items

• Ubuntu 18.04 reaches end of life on May 31, 2023. The OS vendor plans no security updates since that date. Plesk Obsidian 18.0.52 on Ubuntu 18.04 is the last Obsidian release on this OS.

Fixed Product Issues

• Fixed the description of the Git button on the “Adding New Domain” drawer. (EXTGIT-306)
• The panel.ini file configured to hide all Plesk promos now also hides the Dynamic View promo. (PPP-60603)
• The plesk bin service_plan -i command now correctly shows information about service plans. (PPPM-13955), (PPPM-13953)
• The AdBlock for Firefox extension no longer blocks the “Branding” page in Plesk in Tools & Settings. (PPP-60600)
• The Plesk page with the URL of the https://<IP_address>:8443/login_up.php/<anything> pattern no longer reloads continuously. (PPPM-13931)
• In Tools & Settings > DNS Settings (under “General Settings”), setting a TTL value of a DNS record no longer populates an empty TTL field of the next opened DNS record with this value. (PPPM-13944)
• The underscore is now used as a delimiter when a custom prefix is set for database user names in Tools & Settings > Database Hosting Preferences (under “Applications & Databases”). (PPPM-13945)
• Passwords of a Plesk administrator account and an internal email address set in the Plesk administrator profile are no longer in sync: changing one does not change the other. (PPP-57040), (PPP-60820)
• Reinstalling an application via the Application Catalog no longer fails with an HTTP error 500. (PPP-60954)
• The Plesk firewall rules (including custom ones) can now be backed up and restored. (PPPM-12676)
• The started Dynamic list tour no longer results in a blank page for the “Dynamic list view - show websites on a separate page” view. (PPPM-13967)

Linux

• It is again possible to change the location of virtual hosts using the transvhosts.pl utility. (PPPM-13949)
• If “FPM application served by nginx” or “Dedicated FPM application served by nginx” was selected in a domain’s PHP settings and the corresponding PHP handler was then deleted, the “PHP settings” page of the domain is now opened without any issues. (PPPM-13941)
• Inserting images to an HTML file via HTML Editor in File Manager no longer fails with the “Error Call to undefined function get_magic_quotes_gpc()” error. (PPPM-13901)
• If debug mode is enabled with the show.util_exec_io option, operations that trigger the DNS update task no longer hang. (PPPM-13908, PPPM-13963)
• If a specific IP address version (IPv4 or IPv6) is set for a domain, Plesk now sends mail from the domain only via this IP address. (PPPM-13770)
• Adding or removing mail forwarding via XML API now works. (PPPM-13933)
• A Plesk administrator account password can now contain up to 255 characters. Previously the password longer than 158 characters caused an error. (PPPM-13965)
• The “SSH/Shell access” button is again shown for a domain whose owner is allowed SSH access. (PPPM-9970)
• It is now possible to access files in password-protected directories when “Smart static files processing” and “Proxy mode” are enabled in the “Apache & nginx” settings. (PPPM-13942)
• Customers with Plesk on the EOL Debian can now update Plesk to the latest availiable version using the plesk installer upgrade <version> ---source <source> command. (PI-763)

Windows

• If the “Keep secured” feature is enabled, it automatically renews an expired SSL/TLS certificate for FTP in IIS. (PPP-60650)
• Creating an address book in Horde no longer fails with the “$name must be a string” error. (PPPM-13919)
• The CLI now supports the set subcommand of the -forwarding-addresses option of the mail utility. (PPPM-13950)
• It is now possible to create a mail user in SmarterMail 100.0.8495 or later. (PPPM-13966)

Future Plans

• In the nearest future, we plan to switch PHP used by Plesk to PHP 8.2. This is because security support for PHP 8.0 will end in November 2023. If you are running any custom extensions, you will need to update them to support PHP 8.2 to avoid potential issues.

  This change is currently scheduled to take place with the release of Plesk Obsidian 18.0.53 (early June 2023).

Changes in Third-Party Components

Windows

• Updated Horde Turba to version 4.2.29.
• Microsoft Drivers for PHP for SQL Server are now shipped with PHP 8.2.
• Updated ASP.NET Core 7.0 to version 7.0.5.
• Updated ASP.NET Core 6.0 to version 6.0.16.

Fixed Product Issues

• The ProcessAutoreports subtask no longer runs for long periods of time while consuming a large amount of RAM without sending summary reports. (PPPM-13951)

Windows

• Let’s Encrypt SSL/TLS certificates securing FTP connections are now correctly renewed in IIS. (PPPM-13940)

What’s New?

• Introducing Dark Mode in Plesk for when you want to rest your eyes in a low-light environment. Dark Mode can be enabled by clicking the ‘crescent’ icon in the upper corner of the screen.

  Note: Dark Mode in Plesk uses cookies and works on per session basis.

• We are glad to introduce the Sophos Anti-Virus for Servers extension. The extension supports Plesk for Linux, including ARM-based servers. Here’s how it helps to protect you from malicious emails:

  • Scans incoming and outgoing mail.
  • Scans all archive and compressed archive file formats.
  • Scans file formats that contain an executable stub that automatically decompresses the body of the file.
  • Rejects malicious and potentially dangerous e-mail messages.
  • Features CX-Mail, a context-aware setting that enables more aggressive detection rules specifically designed for email traffic.
  • Automatically updates virus signatures.

  We would love to hear your feedback about this extension at feedback@plesk.com.

• We are glad to introduce the production version of the SOGo Webmail extension. Added the following improvements to the extension:

  • It is now possible to customize the service configuration templates.
  • The SOGo database is now backed up daily.
  • The extension has been translated into 32 languages.

• We are glad to introduce the beta version of the DNS integration for Cloudflare extension. The extension automates the provisioning of DNS records from Plesk to Cloudflare, simplifying this routine to a couple of clicks.

  • Connect your existing Cloudflare account to Plesk.
  • Import DNS records from Cloudflare to Plesk.
  • Export DNS records from Plesk to Cloudflare both manually and automatically.

  We would love to hear your feedback about this extension at beta-extensions@plesk.com.

• The Website Log Check is no longer in beta. Learn more about Website Log Check. To enable the feature, add the following lines to the panel.ini file:

  [websitesDiagnostic]
  enabled = true
  

• We are glad to introduce the result of our research into the possibility to deploy a high-availability Plesk cluster using two new features:

  • Centralized database, which is no longer in beta as of this Plesk release.
  • Centralized storage based on NFS. Learn how to configure centralized DB and storage

  We built a proof-of-concept high-availability Plesk cluster with active and passive nodes. Read the step by step guide and testing result for such a cluster.

  We would love to hear your feedback about these features and the high-availability cluster on the Plesk forum.

• Added the ability to recalculate disk space and traffic usage data for individual domains to the Plesk interface.

Feature Improvements

• Classic list view has been updated to appear and function more closely to Dynamic list view, and also renamed to “Dynamic list view - show websites on a separate page”. If you used Classic list view in the past, “Dynamic list view - show websites on a separate page” should provide a similar, but improved experience.
• Made a number of improvements to Dynamic list view:
  • Updated the layout of the list of hosted domains in Dynamic list view to make it easier to tell domains from subdomains and to make managing large numbers of domains easier in Dynamic list view.
  • Added the ability to search for domains to Dynamic list view.
  • Updated the Dynamic list view tour to highlight the changes and improvements made to Dynamic list view in Plesk Obsidian 18.0.51.
  • Changed the icon of the “View on a separate page” button for better legibility, and also added a “Copy domain name” button in Dynamic list view.
  • Added the Install application button in the Dynamic list view, under “Dev Tools”. Clicking it opens a drawer from which you can install web applications, such as Laravel, Node.js, and Ruby, on your domain. The list of available applications depends on what extensions are installed in Plesk.
• Reworked the mail service options for individual domains. The available options are now “the domain can both send and receive email”, “the domain can send, but not receive email”, and “the domain can neither send nor receive email”. Selecting the latter option also removes all existing mailboxes for the domain together with all incoming and outgoing mail.
• Updated the links on Plesk error pages to avoid confusion.
• To bring Plesk in line with the evolving industry-standard vocabulary, the following changes were made to the terms used in Plesk:
  • “Master DNS server/zone” > “Primary DNS server/zone”
  • “Slave DNS server/zone” > “Secondary DNS server/zone”
• Illustrations in Plesk have been redone in a unified style for consistency, visual integrity, and emotional response based on our target audience opinions and identified by tests.
• Requests from the Plesk Screenshot Service to websites hosted in Plesk are now marked by the custom “Plesk screenshot bot” User-Agent header.
• Plesk Premium Antivirus has been converted from a Plesk component to an extension.

Fixed Product Issues

• Updated the default DMARC DNS TXT record to make it RFC compliant. (PPPM-13892)
• Restoring from a backup stored in remote FTP storage now fails with an error instead of hanging indefinitely if the backup is invalid. (PPPM-13925)
• Information about the availability of WP Toolkit Deluxe for the installed Plesk license can now be found in Tools & Settings > License Information. (PPP-60387)
• It is now again possible to retrieve the list of all hosted databases via the REST API “databases” endpoint. (PPPM-13917)
• Removed email forwarding addresses no longer reappear after restoring from a backup. (PPPM-13862)
• It is now possible to create certificate signing requests with key sizes other than 1024 and 2048 bits via the RPC API. (PPPM-13918)

Linux

• Removing PHP 8 via Plesk Installer no longer results in an error when browsing Tools & Settings > PHP Settings. (PPPM-13850)
• Websites using PHP 8.1 and 8.2 with the PHP-FPM handler no longer randomly throw “HTTP 503 Service Unavailable” errors due to the handler process experiencing a segmentation fault. (PPPM-13872)
• Enabling debug logging in Plesk no longer makes the Plesk GUI inaccessible with the “HTTP 502 Bad Gateway” error. (PPPM-13885)
• Entering a custom TTL value for a PTR record in Plesk DNS settings now results in the custom value correctly taking effect. (PPPM-13776)
• Running the plesk repair all -y or plesk sbin fsmng --fix-plesk-packages commands on a Plesk server with the Imunify360 extension installed and the default OS locale changed no longer fails with the “ERROR:’ascii’ codec can’t decode byte 0xc5 in position 1934: ordinal not in range(128)” error. (PPPM-13860)
• Running the plesk repair mail command on a Plesk server using Postfix as the mail server no longer enables the mail service if it was intentionally disabled. (PPPM-13859)
• Websites using PHP 8.1 and 8.2 with OPcache enabled no longer randomly throw “HTTP 503 Service Unavailable” errors due to child processes terminating themselves unexpectedly. (PPPM-13876)
• On Plesk servers using Postfix as the mail server, securing mail with a TLS/SSL certificate may fail if multiple different end of line sequences (for example, both “\r\n” and “\n”) are used in the certificate body. (PPPM-13887)
• Running the plesk repair installation command on a Plesk server with phpMyAdmin installed no longer breaks phpMyAdmin configuration. (PPPM-13902)
• Watchdog will now monitor the correct ploop device after host node reboot if Plesk is installed in an OpenVZ 7/Virtuozzo 7 container. (PPP-57361)

Windows

• Removing all registered database servers from Tools & Settings > Database servers no longer makes it impossible to add new ones. (PPPM-13893)
• It is now again possible to change a website’s document root directory via the RPC API. (PPPM-13915)
• Exporting a database to PDF in phpMyAdmin no longer fails with the “HTTP 500 Server Error” error. (PPPM-13823)

Future Plans

• In the nearest future, we plan to switch PHP used by Plesk to PHP 8.2. This is because security support for PHP 8.0 will end in November 2023. If you are running any custom extensions, you will need to update them to support PHP 8.2 to avoid potential issues.

  This change is currently scheduled to take place with the release of Plesk Obsidian 18.0.53 (early June 2023).

• In the nearest future, we plan to stop shipping MyLittleAdmin with Plesk. This is because MyLittleAdmin is not in active development, and has known security issues. Instead, Plesk will provide links to downloadable clients and instructions on how to connect the client to the Plesk server.

  This change is currently scheduled to take place with the release of Plesk Obsidian 18.0.53 (early June 2023).

Changes in Third-Party Components

• Updated PHP 8.0 used by Plesk to version 8.0.28.

Linux

• Webalizer can now be installed on servers running Red Hat Enterprise Linux 8 and its derivatives.
• Updated phpMyAdmin to version 5.2.1.

Windows

• Updated Git to version 2.39.2.
• Updated BIND to version 9.16.38.
• Updated OpenSSL used by Plesk and Plesk Installer to version 1.1.1t.
• Updated ASP.NET Core 7.0 to version 7.0.3.
• Updated ASP.NET Core 6.0 to version 6.0.14.
• Updated Node.js 18 to version 18.14.1.
• Updated Node.js 16 to version 16.19.1.

Fixed Product Issues

• Backing up to FTP storage no longer fails with the “Curl error: (28) Timeout was reached” error when FTPS mode is enabled. (PPPM-13895)

Fixed Product Issues

• Creating a custom button with the “#” character in place of the URL no longer results in the Plesk interface becoming unavailable. (PPPM-13878)
• Fixed the issue with checkboxes’ alignment on multiple Plesk screens. (PPPM-13884)
• Accessing the Plesk interface on an unstable network connection no longer results in intermittent HTTP 500 errors. (PPP-59897, PPP-59956)

Linux

• Trying to manage greylisting settings via the plesk bin grey_listing CLI utility no longer fails with the “array_keys(): Argument #1 ($array) must be of type array, null given” error. (PPP-60083)
• Enabling the Plesk debug mode no longer results in the Plesk interface becoming unavailable with the HTTP 502 error. (PPPM-13885)
• Enabling the “Enable nginx caching” option no longer breaks the Plesk UI layout. (PPPM-13884)

What’s New?

We are glad to release the anniversary version Plesk Obsidian 18.0.50. To all our customers, we thank you for your loyalty!

We have prepared a small gift for you. Are you intrigued? Follow the cat paw prints in Tools & Settings > About Plesk (under “Plesk”).

• Added support for queue workers to the Laravel Toolkit extension. Laravel website owners can now manage queue jobs out of the box: schedule, monitor, remove, rerun, and so on.

  To enable queues in your Laravel project, follow the instructions.

• Customers can now create database users on the default server and servers where they already have databases (even if customers do not have the “Database server selection” permission).
• Introduced the new SSL It! main screen, which offers a bird’s view of all domains, installed certificates (if any), the certificates’ expiration dates, and certificate authorities. It is now also possible to filter domains by status (valid, expired, self-signed, and so on) and certificate authority.

• In the Git extension, added the ability to select users who can access a local repository via HTTP/HTTPS.

  Previously, only the system user had access to all repositories in a subscription. You can now select additional users when creating a local repository or changing the settings of an existing one. These users can pull and push to a local repository via HTTP/HTTPS using their credentials.

• The Git extension now correctly handles moving domains between subscriptions and places the Git directory to the appropriate subscription afterward.

  Note Moving domains between subscriptions changes the plesk-git directory password because it must be synced with the subscription’s system user password.

• Due to increased phishing attacks, creating websites with publicly resolvable temporary domain names is available only for paid licenses from now on.

Windows

• Microsoft SQL Server 2022 is now fully supported. Plesk can now detect Microsoft SQL Server 2022 installed locally and allows to create and manage user databases. It is now also possible to do the following:
  • Use Microsoft SQL Server 2022 as a remote database server.
  • Install Microsoft SQL Server 2022 locally using Plesk Installer.
  • Import and export Microsoft SQL Server 2022 databases via the Plesk interface.

Feature Improvements

• New domains now sign outgoing mail with DKIM. This improvement protects against email spoofing.

  DKIM helps to verify that an email was indeed sent from the domain and no one tampered with the email content in transit. Previously, DKIM was not enabled by default for domains. Spoofed email messages with ‘From address’ forged to display a Plesk domain could pass DKIM and DMARC validation and were not filtered. New domains now have the “Use DKIM spam protection system to sign outgoing email messages” option selected by default.

  Note: This improvement works only for new domains that have their DNS and mail hosting in Plesk.

• New domains now use the DMARC quarantine policy by default. This improvement protects outgoing mail against email spoofing.

  The DMARC policy defines how the receiver should treat email messages depending on the results of DKIM and SPF checks. The new default DMARC policy (v=DMARC1; adkim=s; aspf=s; p=quarantine) strictly enables DKIM and SPF checks. Emails that do not pass these checks are now put in quarantine (moved to the spam folder or flagged as suspicious).

  Note: This improvement works only for new domains that have their DNS and mail hosting in Plesk.

• When migrating to a server with a Plesk Web Admin license installed or installing the license, the previous subscription limits are now ignored and treated as unlimited.
• Decluttered Dynamic List view and made it easier to navigate through multiple domains:
  • Introduced icons for no-hosting domain types (alias, forwarding, no hosting).
  • Removed the “Type” column.
• Plesk now better handles domains with modern applications installed (for example, Laravel, .NET, and Node.js) while moving the domains between subscriptions.
• SSL It! now shows recommended extensions and TLS versions in the “Settings” drawer.
• Significantly improved backup performance for backups stored in the FTP storage: backup upload speed is now ~1.6 times faster, while CPU load decreased by a factor of two.

Linux

• It is now possible to use Atomic Standard and Atomic Advanced ModSecurity rule sets in Plesk on RHEL 8, CloudLinux 8, AlmaLinux 8, and Rocky Linux 8. To enable these rule sets, add the following lines to the panel.ini file:

  [modSecurity]
  ruleSet.tortix = true ; enables the Atomic Standard rule set
  ruleSet.atomic = true ; enables the Atomic Advanced rule set
  

Deprecated and Removed Items

• VPS Optimized has been deprecated and will be removed in Plesk Obsidian 18.0.51. Learn more.

Fixed Product Issues

• Customers can now access the administrative interface of applications installed via APS Catalog. (PPPM-13842)
• Improved the error message shown when Plesk cannot define the server hostname while creating a server backup. (PPPM-13814)
• The “Scheduled Tasks” model dialog box now correctly shows special characters. (PPPM-13817)
• The “Scheduled Tasks” model dialog box now again has the scroll bar and the “Close” button. (PPPM-13820)
• Dynamic List view now shows favicons set up with the “Favicon by RealFaviconGenerator” WordPress plugin. (PPP-59576)

Linux

• It is now possible to add the listen.backlog PHP-FPM setting in the Plesk interface. (PPPM-11945)
• It is now possible to reset password using the Plesk username. (PPPM-13839)
• It is now possible to use custom PHP-FPM handlers with a systemd unit in /etc/systemd/system/. (PPPM-11570)
• The text in Tools & Settings > Database Servers (under “Applications & Databases”) > Settings no longer misleads users about remote access support of PostgreSQL. (PPPM-13718)
• Changing the interface language of Plesk no longer resets that of the Horde webmail to the default English language. (PPPM-13828)
• Fixed the help of the Plesk Firewall command line utility. (PPPM-13833)
• Backup Manager can now be opened without any issues in Plesk with a large number of customers (more than 995). (PPPM-13845)

Changes in Third-Party Components

• Updated PHP 8.0 used by Plesk to version 8.0.27.

Windows

• Node.js 18.12.1 is now supported and shipped with Plesk.
• Updated MailEnable Standard to version 10.43.
• Updated ASP.NET Core 7.0 to version 7.0.2.
• Updated ASP.NET Core 6.0 to version 6.0.13.
• Dropped support for ASP.NET Core 3.1, which reached end of life.
• Updated Git to version 2.39.1.

Linux

• Trying to open Tools & Settings > Interface Management on a Plesk Obsidian server with no mail server installed no longer results in the “500 GraphQL Permission denied” error. (PPPM-13849)
• After updating to the latest Plesk Obsidian version, the Plesk daily task no longer erases ModSecurity configuration when it runs. (PPPM-13843)

• Updating to Plesk Obsidian 18.0.49 no longer causes social login buttons to disappear from the login page. (PPP-59460)

• We are glad to introduce the beta version of the SOGo Webmail extension. SOGo is a groupware server that provides a rich AJAX-based Web interface and offers your users a uniform and complete interface to access their information.

• Website favicons are now shown next to website names in Plesk to make it easier to tell them apart. To disable this feature, add the following lines to the panel.ini file:

      [domainManagement]
      settings.favicons = false
  

  If no favicon can be found for a website, Plesk automatically generates an icon from the first letter(s) of the domain’s name.

• It is now possible to add and remove DNS records in a DNS zone via REST API.
• In Dynamic list, for every user session and individual domain, Plesk now keeps open the tab (“Dashboard”, “Hosting & DNS”, “Mail”) that was last selected manually during the session instead of always reverting to the “Dashboard” tab.

• When adding a new domain, the “IPv6 address” field can now be prefilled with an IPv6 address. The feature is disabled by default. To enable it, add the following lines to the panel.ini file:

      [domainManagement]
      settings.autoSelectIpv6 = on
  

• Removed the distracting illustrations that accompanied the “Add Domain” wizard to help you focus on the task at hand.
• Removing all records from the DNS zone records template no longer results in the “Add Record” button disappearing from the UI. (PPPM-13783)
• The daily maintenance task no longer runs indefinitely without terminating under specific circumstances. (PPPM-13808)
• Trying to reset a Plesk administrator’s password via the “Forgot Your Password?” link now results in an email being sent with instructions on resetting the password. (PPPM-12977)
• It is no longer possible to change a website’s document root to a directory whose name contains one or more white space characters via XML-RPC. (PPPM-13777)
• Moving a domain between subscriptions no longer results in the domain’s databases becoming unassigned. (PPPM-13780)
• After uploading one or more files and/or directories using the “upload via URL” option in File Manager, the screen is now refreshed so that the uploaded files and/or directories can be shown. (PPPM-13787)
• Updating Plesk if the admin/conf/templates/custom directory exists on the server but is empty no longer results in a misleading error message being shown. (PPPM-13806)

Linux

• Added the ability to run Plesk with a centralized database. The feature is currently in Beta.

• Added the ability to install extensions for PHP 7.3 and later handlers using PECL. You can manage PHP extensions in Tools & Settings > PHP Settings > choose the desired handler > Manage PECL Packages.

  To disable this feature, add the following lines to the panel.ini file:

      [php]
      pecl.enabled = off
  

• You can now install ionCube PHP Loader for PHP 8.1 and later using PHP extensions installer.

• Using NFS shares to store hosted websites’ vhost directories is now supported. To enable this feature, add the following lines to the panel.ini file:

      [webserver]
      syncModeOnRemoveConfiguration = true
  

• The list of domains in Plesk no longer takes an excessive amount of time to load. (PPPM-13804)
• Creating a backup of the Plesk server no longer fails under specific conditions. (PPPM-13765)
• On Debian-based OS, removing the “PHP by OS vendor” component via Plesk Installer no longer results in the /var/lib/php/sessions directory being removed. (PPPM-13781)
• On Red Hat Enterprise Linux 9, certain CLI utilities no longer fail due to incorrect OS detection. (PPPM-13794)
• Removing a subscription should no longer result in errors and inconsistencies in the Plesk database if one or more processes owned by the subscription’s system user are running at the moment of removal. (PPPM-13811)
• Installing the “Comodo (free)” ModSecurity rule set via the CLI no longer fails with the “modsecurity_ctl failed: Failed to download comodo rule set” error. (PPPM-13792)
• Updating Plesk if the default Plesk directory is a symlink to a different directory should no longer cause issues under specific circumstances. (PPP-59354)

Windows

• SpamAssassin no longer creates its temporary files in the C:\Windows\Temp directory instead of the proper one. (PPPM-13782)
• When editing a TXT record in the DNS zone records template, it is no longer necessary to manually select “TXT” from the “Record type” drop-down list. (PPPM-13784)
• Adding a TXT record to the DNS zone records template no longer fails with the “Field value.type of required type DnsRecordTypeEnum! was not provided” error. (PPPM-13785)
• Changing the maximum message size in SpamAssassin using the plesk bin spamassassin CLI utility no longer fails. (PPPM-13793)
• Clicking Refresh on the Tools & Settings > Server Components screen now results in the list of installed components being updated as intended. (PPPM-13797)
• The “System Health Monitor” service no longer fails if Google Drive for desktop is installed on the server. (PPPM-13800)
• Specifying port 465 in Tools & Settings > External SMTP Server no longer makes resetting a user’s password via the “Forgot Your Password?” link fail. (PPPM-12755)

Third-Party Component Updates

• Marked PHP 7.4 as outdated because it has reached end of life and removed it from the “Recommended” preset.

Linux

• Roundcube 1.5.x and later now runs on PHP 8.0.

Windows

• .NET 7.0 is now supported.
• Updated ASP.NET Core 7.0 to version 7.0.1.
• Updated ASP.NET Core 6.0 to version 6.0.12.
• Updated ASP.NET Core 3.1 to version 3.1.32.
• Updated PHP 7.4 to version 7.4.33.
• Updated PHP used by Plesk to version 7.4.33.
• Updated Node.js to version 16.18.1.
• Updated OpenSSL used by Plesk and Plesk Installer to version 1.1.1s.

• Enhanced the Help menu to make it easier to find Help articles. It is now possible to browse them by categories and search for them directly from the Plesk interface.
• Added the “Access to Laravel Toolkit” and “Access to .Net Toolkit” permissions to service plans. The respective permissions allow customers to use Laravel Toolkit and .Net Toolkit for their websites.
• The Plesk Repair feature in the UI (“Repair All” in Tools & Settings > Diagnose & Repair) and the CLI (plesk repair web) now repairs all websites without making all of them unavailable. Only the website with issues goes offline until it is repaired.
• A custom sender address no longer blocks Plesk notifications from being delivered to certain mail servers (for example, Amazon Simple Email Service). (PPPM-13719)
• It is now possible to change custom email addresses of recipients for Plesk automatic email notifications. (PPPM-13769)
• Backup restoration no longer fails because of a big configuration file of an extension (more than 10 MB) contained in a backup. (PPPM-13707)
• It is no longer possible to create an additional administrator password that will not work because it contains unsupported characters. (PPPM-13756)
• Plesk again prevents the administrator from removing the only NS record from the DNS zone when DNS is disabled. (PPPM-13774)
• Domain Log Browser no longer crashes if the passenger.log file of a domain is too big (200 MB or more). (PPPM-13698)
• If a reseller does not have the “Hosting settings management” permission, creating an add-on domain for the customer’s subscription no longer unsyncs it. (PPPM-12083)
• Help us to make Dynamic List view better by sharing your thoughts in this survey.

Linux

• Added support for AlmaLinux 9 and Red Hat Enterprise Linux 9.

• The Plesk administrator can now install PECL extensions for Plesk and system PHP handlers via the CLI. To see the exact commands, run plesk bin php_handler –-help.

  Note: It is possible to install only those extensions that do not require additional dependencies and are not already provided by Plesk or system packages of the OS vendor.

• Dropped support for Ubuntu 20.04 LTS on the ARM architecture. You can use Ubuntu 22.04 LTS instead.
• Updating Plesk on Cloud images from Ubuntu 20.04 to Ubuntu 22.04 LTS. The update will take place gradually after release 18.0.48.
• It is now possible to update Plesk even if some repositories are unavailable. Plesk Update Manager detects and can ignore broken repositories if they are not essential for Plesk to work.
• Removing a PHP handler used by a website no longer blocks users from managing PHP settings. Plesk now also informs about the broken PHP handler on the “PHP settings” screen of the affected domain, in Tools & Settings > PHP settings, and via Plesk UI notifications.
• In Fail2ban, it is now possible to add descriptions to trusted IP addresses.
• Security improvements. Special thanks to Patrick William (rack911labs.ca) for reporting the issues.
• The -drop-if-exists option of the plesk bin ipmanage --auto-remap command can now reuse IP addresses that already exist in the Plesk database. (PPPM-13467)
• Manual remapping to IP addresses that already exist with a different netmask in the Plesk database no longer fails with an integrity constraint error. (PPPM-13506)
• Improved how Plesk syncs the spam filter sensitivity value between the Plesk database and the UI:
  • The UI does not show the default value if it is missing from the database.
  • The plesk repair mail utility sets the default value in both the database and the UI. (PPPM-7118)
• Plesk no longer fails to secure mail with an SSL/TLS certificate if the default locale is changed and the Postfix configuration file contains UTF-8 characters. (PPPM-13743)
• Plesk Installer no longer shows a warning about the missing amazon-id plugin if it is not installed. (PPPM-13760)
• Plesk no longer fails to create a PostgreSQL database if the database name and database user name differ only by a prefix (for example, test and prefix_test respectively). (PPPM-13768)
• Improved the “terminate called without an active exception” error message shown when, under certain circumstances, installation of an application package fails. (PPPM-13730)
• Plesk logs no longer contain multiple Sanitizer errors that could appear after a Plesk license key was updated. (PPPM-13762)
• Plesk Firewall now shows a warning that enabling the firewall or applying its changes will overwrite firewall rules added manually via iptables. (PPPM-12190)
• Backing up can no longer fail with the ‘Document is empty, line 1, column 1 (, line 1)’ and ‘None (line 0)’ errors. (PPPM-13765)

Windows

• Installing the Kaspersky Anti-Virus SDK component (former Kaspersky Anti-Virus) now also automatically installs the Kaspersky Anti-Virus for Servers extension. This change helps to avoid confusing UX when the antivirus tab is not shown in the mailbox menu because the component is installed while the extension is not. (PPPM-13753)

Third-Party Component Updates

• Updated PHP used by Plesk to version 7.4.32.
• Updated OWASP ModSecurity CRS to version 3.3.4.

Linux

• Updated ModSecurity 3.0 to version 3.0.8.
• Updated ModSecurity 2.9 to version 2.9.6.

Windows

• Updated Node.js 16 to version 16.17.1.
• Updated MailEnable Standard to version 10.42.
• Updated ASP.NET Core 6.0 to version 6.0.10.
• Updated ASP.NET Core 3.1 to version 3.1.30.
• Updated BIND to version 9.16.33.
• Updated zlib to version 1.2.13.

• DNS events are now logged correctly again. (PPPM-13766)

• Now Plesk Backup Manager can again open a server backup that has customers or resellers with names that contain non-ASCII characters. (PPPM-13757)

Windows

• Running the plesk repair fs -plesk-files-consistency command no longer results in the “There are corrupted files in plesk-python3-package.list” error. (PPPM-13758)
• It is now again possible to open Plesk Backup Manager under an administrator account and get the list of server backups via PMMCli. (PPPM-13754)

Linux

• Custom favicons are no longer reset to the default ones after upgrading Plesk to version 18.0.47. (PPPM-13749)

• Creation of a remote backup with the enabled “Create a multivolume backup, volume size (MB)” option no longer results in the “Error: The backup process failed: expected str, bytes or os.PathLike object, not int” error. (PPPM-13739)

• WordPress Toolkit now works correctly with all locales. (PPPM-13735)

Linux

• Creation of a domain backup no longer fails when the “Exclude log files” or “Exclude specific files from the backup” options are enabled. (PPPM-13733)

• When using the Laravel Toolkit extension, the “Install Composer.json dependencies” step during application deployment is now optional and can be skipped.
• Added the ability to integrate Plesk with different webmail clients to the Plesk SDK.
• Security improvements. Special thanks to Theologos Kokkinellis for reporting the issue.
• Added the ability to see entries from .NET applications’ logs in Plesk Log Viewer to the .NET Toolkit extension.
• After renaming a subscription, the subscription’s old name no longer keeps showing up in Laravel Toolkit. (PPP-57840)
• Plesk database inconsistencies no longer result in a blank page when clicking on a subscription. (PPP-58132)
• When opening the “Limit Outgoing Messages” window for one or more mailboxes, human-readable text is now shown instead of placeholders. (PPPM-13669)
• Trying to open the Tools & Settings > Database Servers page when there are inconsistencies in the Plesk database no longer results in being redirected to the Home page without an error message. (PPPM-13685)
• In Service Provider View, it is once again possible to close the “Add Domain” drawer by clicking the cross icon in the upper right corner. (PPPM-13706)
• It is now possible to see the log check results for more than ten websites at once when using the “Website Log Check” feature. (PPPM-13684)
• Custom page titles containing the hyphen (-) character are no longer cropped. (PPPM-12271)
• Plesk has changed its trial license limits on September 27. All trial licenses created after that date will be limited to managing three (or less) of the following: domains, domain aliases, mailboxes, mail accounts, user accounts, and web users. You can purchase non-trial Plesk licenses without these limitations.

Linux

• Plesk Obsidian is now available as a cloud image on the Oracle Cloud Marketplace. The image is based on Ubuntu 22 and uses the ARM CPU architecture to lower hosting costs.
• Published a new Plesk Obsidian cloud image on Amazon Marketplace. The image is based on Ubuntu 22 and uses the ARM CPU architecture to lower hosting costs.
• On CentOS 8 servers, creating an additional FTP account for a domain no longer results in incorrect ownership being set on the domain’s files and directories. (PPPM-12524)
• The “Default domain, DNS zone of domain alias updated” Event Manager event no longer fires when the DNS zone of the primary domain is modified, but the option “Synchronize DNS zone with the primary domain” for that domain’s alias is switched off. (PPPM-13646)
• Running the plesk repair mail -y command no longer adds unnecessary entries to the data.db file. (PPPM-13693)
• Updating from Plesk Onyx to Plesk Obsidian no longer fails with the “Exception: Failed to solve dependencies” error because one or more necessary repositories are not configured. (PPPM-10923)
• Installing Plesk Obsidian on a Red Hat Enterprise Linux 8 server using Amazon RHUI repositories no longer fails with the “Failed to check system configuration” error. (PPPM-12538)
• Opening Log Browser no longer results in an endless “loading” screen under specific circumstances. (PPPM-13697)
• Specifying a custom sender address for Plesk email notifications in the panel.ini file is now correctly used in notification emails. (PPPM-13686)
• A comprehensible error message is now shown when updating Plesk fails because there are one or more unsupported repositories configured on the server. (PPPM-13716)
• On Debian-based servers, the fsmng command line utility no longer fails when run. (PPPM-13691)
• On Ubuntu 22 servers, enabling the pagespeed module via the plesk sbin nginx_modules_ctl -e pagespeed command no longer results in an error. (PPPM-13699)
• Applying changes made to the SOA template no longer also applies the default DNS template to domains with custom DNS records. (PPPM-12685)
• When adding one or more custom headers to a website, the trailing double quote (“) character is no longer removed. (PPPM-13695)
• On Ubuntu 22 servers, connecting to websites over SSL/TLS via PHP code no longer fails with the “OpenSSL Error messages: error:0A000126:SSL routines::unexpected eof while reading” error. (PPPM-13710)
• When creating a domain with mail service or adding mail service to a domain, mail service creation no longer fails with the “ERROR:main:UNIQUE constraint failed” error. (PPPM-12229)

• Installing Plesk with MariaDB 10.6 inside a Virtuozzo container no longer fails. (PPPM-13640)

  **Note:** Plesk Obsidian is installed inside a Virtuozzo container with MariaDB 10.3. To use a different MySQL implementation, pre-install it before installing Plesk.
  

• When updating to Plesk Obsidian 18.0.46, the awstats-icon alias is now correctly updated for websites set as default sites for one or more IP addresses. (PPPM-13703)
• Running the apt update command after an unsuccessful attempt to install a Plesk extension no longer fails. (PPP-58250)
• The “Remove alias” button is now shown for all mail aliases belonging to a mailbox, including the first one in the list. (PPPM-13721)

Windows

• The .NET Toolkit extension is now available in Plesk for Windows.
• Running the plesk bin repair --web -sslcerts command now correctly repairs webmail SSL certificates. (PPP-57692)
• Renaming a subscription now fails with a human-readable error message if the home directory for one or more of that subscription’s additional FTP accounts is missing. (PPPM-13657)
• When updating a Plesk Obsidian server with the Git extension installed to the latest version, the misleading “ERROR: The process “git-cmd.exe” not found.” error message is no longer shown. (PPPM-13688)
• On Plesk servers with a custom favicon configured, updating to the latest Plesk version no longer results in it being replaced with the default one. (PPPM-13705)

Third-Party Component Updates

Linux

• Updated Courier-IMAP to version 5.1.8.
• Updated Roundcube to version 1.6.0.
• Updated ProFTPD to version 1.3.7e.
• Updated libcurl to version 7.85.0.
• Updated Turba to version 4.2.29.

Windows

• Updated MariaDB 10.6 to version 10.6.9.
• Updated MariaDB 10.5 to version 10.5.17.
• Updated MariaDB 10.3 to version 10.3.36.
• Updated boost to version 1.80.0.

• When clicking checkboxes, they are now selected or cleared correctly again. (PPP-58373)

• It is now again possible to add a CNAME record with underscore symbols on the “DNS Settings” screen. (PPP-58251)

• A number of improvements were made to the Laravel Toolkit extension:

  • Added the ability to turn maintenance mode off (php artisan down) and on (php artisan up) on the “Dashboard” tab in the extension interface.
  • Added the ability to automatically turn maintenance mode on and off for the duration of the application deployment.
  • Added the ability to manage deployment steps of the application on the “Deployment” tab in the extension interface.

  • Added the ability to switch between the automatic and manual deployment modes of the application on the “Dashboard” tab in the extension interface.

    If you select the automatic deployment mode, the application will be automatically deployed after a push to the repository (if the repository is local) or a webhook call (if the repository is remote). If you select the manual deployment mode, the application will be deployed when you click the Deploy button in the Laravel Toolkit or the Git extension interface.

  • A single webhook is now used for the Git and Laravel Toolkit extensions.

• A number of improvements were made to the Git extension:

  • The extension now deploys files to production websites asynchronously if the deployment was triggered by a webhook.
  • Added the run-actions option to the createand update API methods, which enable/disable execution of additional deployment actions.
  • Added the async-deploy method to the CLI and XML API. The method invokes the asynchronous deployment of files to the production website.
  • Fixed removal of additional deployment actions after disabling them in the Plesk interface.

• A number of improvements were made to the Transfer of DNS Records extension:

  • It is now possible to perform DNS record lookup.
  • The extension now supports DNS templates for the Google Workspace and Office 365 services.
  • Improved DNS records import algorithm.
  • Running the import CLI command no longer fails in Plesk on CentOS.

• A number of improvements were made to the Plesk Mobile Center extension:

  • Added support for Android 13.
  • Improved work with the mobile version of Plesk.
  • Improved app stability.
  • Fixed bugs related to the accessibility of the Plesk extension logs.
  • (Plesk for Linux) Fixed the issue where logs for the latest Plesk versions were not displayed.
• Added the “Reset admin’s password on the next login” checkbox (cleared by default) to the Plesk initialization screen.
• Added the ability to hide the entire “Assistance & Troubleshooting” section of the Tools & Settings menu in Restricted Mode.
• When a subdomain for a website with a resolvable domain name is created, SSL It! now waits for the subdomain name to become resolvable as well before trying to secure it with a Let’s Encrypt SSL certificate. This prevents situations where a newly created subdomain could not be secured with the “The domain is not resolvable” error. (PPPM-12892)
• The “Interface Controls Visibility” tab has been removed from the Tools & Settings > “Interface Management” menu because most of the controls found on the tab were obsolete. The “Hide controls for rejection messages for non-existent mail addresses” checkbox has been renamed to “Hide bounce controls” and moved to the “Interface Views” tab.
• Updated the appearance of pie charts used to show domains’ disk and traffic usage information.
• Updated the interface of the Tools & Settings > Services Management menu to make it easier to read the current status of services at a glance. (PPPM-13598)
• Incremental server backups created in remote storage no longer take an unreasonably long time to finish. (PPPM-13635)
• Creating a subscription using a private IPv6 address mapped to a public IP address in Tools & Settings > IP Addresses no longer results in the private IP address being used in the domain’s DNS records instead of the public IP address. (PPPM-13650)
• Removing a user with the “WebMaster” role no longer fails with the “Error 500: Unable to find instance with id in database” message. (PPPM-13655)
• Sorting scheduled tasks in Tools & Settings > Scheduled Tasks (Cron jobs) by “Schedule” now works properly. (PPPM-13661)
• The plesk db command line utility no longer uses the --no-defaults option when calling the mysql or mysqldump commands. (PPPM-10414)
• It is no longer possible to create a CNAME DNS record using an IP address as the canonical name. (PPP-57900)

Linux

• We are glad to introduce the production version of the .NET Toolkit extension. Added the following improvements to the extension:

  • It is now possible to manage installed versions of the ASP.NET Core Runtime.
  • It is now possible to create a website running on ASP.NET Core with just a few clicks (Websites & Domains > Add Domain > .NET site).
  • Added the ability to restart the application.
  • .NET Toolkit configuration is now included in Plesk backups.

• A number of improvements were made to the Log Browser extension:

  • It is now possible to view the systemd/journalctl logs in the Plesk interface.
  • The extension can now filter logs by priority.
  • Redesigned the log filter form.
  • The extension now uses journalctl as the default source of mail logs.

• We are glad to announce official support of ARM-based servers:

  • Plesk can now be installed on ARM-based servers running on Ubuntu 22.
  • The SSH Terminal extension can now run on ARM-based servers.
  • SFTP Backup can now run on ARM-based servers.
• nginx shipped with Plesk is now compiled with ngx_http_geoip2_module out of the box. This makes it possible to use MaxMind Geo IP databases to detect visitor’s geographical location by their IP address. This, in turn, makes it possible to limit access to websites to visitors from certain countries, or to automatically redirect them to country-specific URLs.
• The plesk repair sysusers CLI utility can now be used to repair system users on Plesk for Linux servers.
• Reports sent by Watchdog by mail no longer arrive incomplete if the report length exceeds 131072 chatacters. (PPPM-13474)
• Running the plesk repair web command no longer produces an error for every disabled Apache PHP module if the mpm_event module is enabled. (PPPM-13512)
• AWStats now correctly calculates the stats for the last day of the month if nginx is disabled on the server. (PPPM-13568)
• On Plesk servers running on Red Hat Enterprise Linux 8 and its derivatives with the Extra Packages for Enterprise Linux (EPEL) repository configured, running the dnf update command now properly updates the “plesk-phpXX-imagick” packages. (PPPM-13570)
• Plesk Premium Antivirus no longer fails to start on Plesk servers with TLSv1.x protocols disabled for the Plesk web server. (PPPM-13576)

• On Plesk servers running on Red Hat Enterprise Linux 8 and its derivatives with the Extra Packages for Enterprise Linux (EPEL) repository configured, installing AWStats packages from the EPEL repository no longer results in AWStats being non-functional.(PPPM-13617)

  Note: If you have disabled the installation of AWStats packages from the EPEL repository, you need to undo the changes, or else future Plesk updates will fail.

• Restoring one or more subscriptions from backup that had their hosting type changed from forwarding to physical hosting after the backup was created no longer results in unnecessary email notifications. (PPPM-13630)
• Misleading “Warning: Extension “Laravel Toolkit” Unable to back up extension.” message is no longer shown when creating a backup on a Plesk server with the Laravel Toolkit extension installed. (PPPM-13632)
• Disabling the DNS service for a domain no longer removes the Add Record button in Hosting & DNS > DNS Settings. (PPPM-13643)
• The Event Manager “Default domain, DNS zone of domain alias updated” event no longer triggers when the DNS zone of a domain with one or more domain aliases with the “Synchronize DNS zone with the primary domain” option disabled is modified. (PPPM-13646)
• Postfix shipped with Plesk is once again compiled with MySQL support. (PPPM-13665)
• Removing a mail address from SpamAssassin’s black or white list in Plesk no longer results in the address being removed from the list in Plesk but not in the SpamAssassin’s configuration files. (PPPM-13670)
• It is once again possible to send mail without authentication using the sendmail -bs command. (PPPM-13584)
• Emoji characters stored in MySQL databases are now backed up and restored properly. (PPPM-10414)

• Starting from Plesk 18.0.48 (November 8th, 2022), Ubuntu 20.04 LTS on the ARM architecture will no longer be supported.

  We do recommend that you either migrate to a supported OS using Plesk Migrator or run dist-upgrade to upgrade your Ubuntu 20.04 instance.

Windows

• Node.js 16 is now supported.
• To help Plesk users in India comply with the new data law, Plesk now provides a script that can be used to copy Plesk log files to a different server for long-term storage. Learn more and download the latest version of the script here.
• Internal server errors caused by running PHP CLI utilities are now caught and reported properly. (PPP-57663)
• Renaming a subscription whose main domain is disabled no longer makes the domain’s directory inaccessible for additional FTP users. (PPPM-13654)
• Scheduled backups no longer result in an email notification warning about the “Extra content at the end of the document” error being sent under specific circumstances. (PPPM-9405)

Third-Party Component Updates

Linux

• Updated sw-engine PHP to version 7.4.30.
• Updated Roundcube to version 1.5.3 (for OSes other than Red Hat Enterprise Linux 7, CentOS 7, CloudLinux 7.1, and Ubuntu 18.04).
• Updated Dovecot and Pigeonhole to versions 2.3.19.1 and 0.5.19, respectively.
• Updated RRDtool to version 1.8.0.

Windows

• Updated Node.js 16 to version 16.16.0.
• Node.js 4, 6, 8, 10, and 12 are no longer shipped with Plesk.
• Updated ASP.NET Core 6.0 to version 6.0.8.
• Updated ASP.NET Core 3.1 to version 3.1.28.
• Updated libcurl to version 7.84.0.

Linux

• Sending mail via sendmail -bs no longer requires any additional actions from customers. (PPPM-13584)

Linux

• In the Beta version of the “Wesite Log Check” tool, the requests bar is now displayed correctly. (PPP-57762)
• Opening a domain card from the Websites & Domains page no longer results in a blank screen. Previously the error occurred when the “Website Log Check” feature was manually enabled in the panel.ini file. (PPPM-13639)
• It is now possible to send mail via sendmail -bs again. (PPPM-13584)
• Added missing /usr/lib/plesk-9.0/remove_temp_backups to the “plesk-backup-utilities” package. (PPP-57734)

• Added a new feature “Website Log Check” (Beta). You can use it to scan web server logs for evidence of common issues, see how often a specific issue occurs, and get suggestions about ways to resolve them. Learn more about Website Log Check. To enable the feature, add the following lines to the panel.ini file:

  [websitesDiagnostic]
  enabled = true
  

• Plesk administrator can now specify a custom email address to be used as a mail relay (the address will be used as the sender address for all Plesk email notifications found in “Tools & Settings” > “Notifications”). Using an email address with a properly configured domain (DKIM, SPF records, etc.) would ensure that the notifications would not be treated as spam. To do so, add the following lines to the panel.ini file:

  [notification]
  senderAddress=<custom email address>
  

• The new password strength validator is now enabled by default. Learn more about the new password strength validator.
• Added the ability to schedule tasks to the Laravel Toolkit extension.
• Added the ability to run Node.js commands choosing the Node.js version and the package manager (npm/yarn) to the Laravel Toolkit extension (the Node.js extension must be also installed).
• It is now possible to upload a custom favicon in Plesk via the GUI. To do so, go to “Tools & Settings” > “Branding” (under “Plesk Appearance”). In addition, the custom favicon is no longer reset to default when updating Plesk.
• Re-added the ability to sort the list of domains by creation date.
• Additional users restricted to accessing only one specific subscription can no longer see the list of all subscriptions of the customer. (PPPM-13599)
• Emails (sent by Package Update Manager) containing the list of packages with updates available no longer mention packages that have already been updated to the latest version. (PPPM-12733)
• It is now possible to log in to Plesk as an additional user whose password has been reset via a password reset link. (PPPM-13558)
• The website preview thumbnail now gets rendered correctly. (PAUX-5171)

Linux

• We are glad to introduce the beta version of the .NET Toolkit extension. This extension enables you to:

  • Run ASP.NET Core applications on your Plesk for Linux server.
  • Use .NET 6 Core out of the box.
  • View the extension logs in Log Browser.
  • Configure environment variables.
• Added the ability to manually clear nginx cache for websites with nginx caching enabled, both via the GUI and using the plesk bin subscription_settings --clear-nginx-cache <domainName> command.
• Dropped support for Debian 9.
• The nginx ModSecurity ruleset from Comodo in now available in Plesk.
• To help Plesk users in India comply with the new data law, Plesk now provides a script that can be used to copy Plesk log files to a different server for long-term storage. Learn more and download the latest version of the script here.
• Updating to Plesk Obsidian 18.0.44 in unattended mode on a server with a customized Extra Packages for Enterprise Linux (EPEL) repository no longer fails with the “Plesk installation requires ‘epel’ OS repository to be enabled” error. (PPPM-13588)
• Running the plesk bin ipmanage --auto-remap -drop-if-exists command on a server where one or more IP addresses are listed in the Plesk database but are absent from network interfaces now correctly re-maps IP addresses in addition to removing the missing IP addresses from the database. (PPPM-13467)
• Running the plesk bin ipmanage --remap command now correctly updates DNS records for domain aliases. (PPPM-13521)
• Running the plesk sbin fsmng --fix-plesk-packages command on a server with Plesk running on a dpkg-based OS now fixes permissions on directories. (PPPM-13524)
• Disabling SpamAssassin for a mail account with a large number of mail aliases no longer fails with the “ERR [panel.ui] spammng failed:” error. (PPPM-13539)
• Custom error pages are now shown even if the nginx proxy mode is disabled for the domain with configured custom error pages. (PPPM-13542)
• Temporary files created when restoring backups on Plesk servers with Fail2Ban and/or ModSecurity enabled are now cleaned up periodically. (PPP-57024)
• The SSH Terminal extension no longer shows the “Connection broken” error every time the plesk repair web command is run on the server. (EXTPLESK-3509)
• It is now possible to rename a mail account using the name of a previously deleted mail account if that account was deleted after removing SpamAssassin. (PPPM-13567)
• Plesk Health Monitor no longer generates garbage files on Plesk servers with Cgroups enabled when users logged in via SSH perform operations on files stored on loop devices. (PPPM-13573)
• Statistics collection no longer gets stuck under very specific conditions. (PPPM-13581)
• Running the plesk bin service_plan -u 'Default Domain' -nginx-proxy-mode true command no longer results in an error. (PPPM-13586)
• Scheduled tasks fetching an URL containing one or more “%” characters no longer fail when run. (PPPM-13593)
• php-fpm_error.log files can now be opened and viewed in Log Browser. (PPPM-13596)
• Dedicated PHP-FPM processes are now stopped if the corresponding domain is suspended. (PPPM-13597)
• Switching to a different domain owned by the same subscription when on the “Mail Settings” screen no longer results in the “Warning: Possible phishing attempt detected: The link you used attempted to redirect you to another site.” error. (PPPM-13603)

Windows

• Domains are now created approximately 10% faster.
• Removed the Plesk Premium Antivirus component from the “Recommended” preset.
• The current status (enabled/disabled) of the “Deny IP Address based on the number of concurrent requests” and “Deny IP Address based on the number of requests over a period of time” IIS features is now correctly shown in Plesk. (PPPM-13613)
• Selecting either “Preventing DoS attacks by IIS dynamic IP restriction” or “Deny IP addresses based on the number of requests over a period of time” checkbox in the Plesk GUI no longer results in both “Deny IP Address based on the number of concurrent requests” and “Deny IP Address based on the number of requests over a period of time” IIS features being enabled at once. (PPPM-13614)
• Accessing the backups menu when the pmm-ras.exe binary is missing from the server now results in a comprehensible error message. (PPPM-13391)
• Plesk distributive files stored in the “C:\ProgramData\Plesk\Installer\cache” folder during Plesk update are now cleaned up once an update is installed. (PPPM-13572)
• Plesk now correctly shows whether a website’s dedicated IIS application pool is set to 32-bit or not when the Turkish locale is selected. (PPPM-13616)

Third-Party Component Updates

Linux

• Updated Logrotate to version 3.20.1.

Windows

• Updated ASP.NET Core 6.0 to version 6.0.6.
• Updated ASP.NET Core 3.1 to version 3.1.26.
• ASP.NET Core 5.0 is no longer shipped with Plesk.
• Updated PHP used by plesk-engine to version 7.4.30.
• Updated MariaDB 10.6 to version 10.6.8.
• Updated MariaDB 10.5 to version 10.5.16.
• Updated MariaDB 10.3 to version 10.3.35.
• Updated boost to version 1.79.0.
• Updated libcurl to version 7.83.1.
• Updated Turba to version 4.2.27.
• Updated BIND to version 9.16.30.

• Updated Horde Turba to version 4.2.27 to fix the CVE-2022-30287 vulnerability.

  We strongly recommend that you update Plesk.

• It is now again possible to view the list of existing WordPress websites and create new ones in WordPress Toolkit. (PPPM-13587)

Linux

• Plesk migration now restores all the required data and no longer completes with the “PHP Fatal error: Uncaught TypeError: Return value of Plesk\Service\Driver\Dns\Plesk\Core::callDnsmng() must be an instance of Service_Agent_Response_Abstract” error. (PPPM-13580)

Windows

• Adding a MS SQL server no longer fails with the “Class ‘MssqlLocalHost’ not found” error. (PPPM-13578)

Linux

• Sending mail via sendmail -bs is no longer restricted. (PPPM-13584)
• The cloning utility with the -reset-license option now works in Plesk on Ubuntu 22. (PPP-57259)
• Plesk Update Manager now works on Ubuntu 22. (PPPM-13575)

• We are glad to introduce the production version of the Laravel Toolkit extension. Added the following improvements to the extension:

  • Use the extension in Plesk for Windows.
  • Deploy a Laravel skeleton application on a domain.
  • Create a website with the latest Laravel version with just a few clicks (Websites & Domains > Add Domain > Laravel site).
  • Introduced the new “Deployment” section that makes it possible to use custom scripts to deploy applications.
  • View the extension logs in Log Browser.
  • (Plesk for Linux) Run artisan and composer commands without having to specify the whole path.
  • Enjoy smoother transitions between screens with introduced content placeholders. When Plesk loads application cards as well as Composer and Artisan sections, you can now see their rough skeletons.
  • Multiple UX improvements.
• The new “Add Domain” screen is now enabled by default. Learn more about this improvement.
• The /root/.my.cnf file that contains the password for the MySQL console client no longer blocks Plesk automatic updates.
• The interface in Power User View is now always set to “All webspaces” unless users select the desired webspace themselves. As soon as the Plesk administrator creates the second webspace, they now see a hint on how to switch between webspaces.
• Made the transitions between domain cards smoother by introducing content placeholders: when Plesk loads a domain card, users now see its rough skeleton.
• It is now possible to change IP addresses of subscriptions with “Forwarding” and “No hosting” types.
• Made it more clear for users how to add SRV DNS records: the “Service name” and “Protocol” fields now have correct examples. (PPP-56626)
• If Plesk has a subscription with the limit on domain aliases or subdomains set to zero, this no longer prevents the Plesk administrator from creating domain aliases and subdomains in the Plesk interface. (PPPM-13534)
• Specifying empty values of panel.ini settings no longer stops the domains’ “PHP Settings” page from being loaded. (PPPM-13516)
• Subscriptions’ names in Customer Panel are now again sorted in alphabetical order. (PPPM-13517)
• File Manager now correctly uploads directories with empty files or directories inside. (PPPM-13535)
• Clearing the “Mail messages” checkbox in Backup Manager > Back Up no longer resets the backup type to “Incremental”. (PPPM-13503)
• Changing PHP settings of a locked subscription no longer overrides them with the default PHP settings of the service plan the subscription was based on. (PPPM-11555)
• Operations with multiple items selected from the list now again work in Plesk extensions. (PPPM-13548)
• Increased the length of the “TXT record” text field for the following types of DNS records: TXT, MX, DS, and CAA. (PPP-56760)
• Plesk again shows the content of the Application Catalog categories (“All Available Applications” > “Web”, “Collaboration”, and so on). (PPPM-13546)
• Restoring a domain from a backup now preserves custom TTL values of the domain’s DNS records. (PPPM-13426)

Linux

• The console now works using a domain’s PHP version instead of the system PHP. Customers can now run artisan, composer, and other commands without having to specify the whole path.

  To propagate and turn on the feature for all subscriptions, run the plesk bin php_settings --update-all command.

  To use the feature in Scheduled Tasks, prepend the cron command with the following:

  export PATH="/opt/plesk/phpenv/bin:$PATH"; eval "$(phpenv init -)";
  

  To disable the feature and bring back how the console worked before, add the following lines to the panel.ini file:

  [php]
  phpenv = off
  

  Note: The feature works for Plesk PHP handlers only. It does not work for custom PHP handlers and CloudLinux with CageFS.

• Ubuntu 22.04 is now supported, with certain limitations. You can use the dist-upgrade procedure to upgrade your OS from Ubuntu 20.04 to Ubuntu 22.04.
• It is now possible to customize the client_max_body_size nginx directive in the Plesk interface, via the CLI, and via the XML API.
• It is now possible to change a database user password on the remote database server Percona MySQL 8.0.23. (PPPM-13538)
• The “PHP-FPM settings” section in a domain’s PHP settings is now present for custom PHP handlers. (PPPM-13507)
• If Apache-only hosting is turned on, third-party services that use the “Host” header validation (for example, Grafana) now work. (PPP-56778)
• Log rotation now works correctly after updating to Plesk Obsidian 18.0.43 even if /usr/local/psa/etc/logrotate.conf was customized. (PPPM-13519)
• Fixed the error message shown when a password is not complex enough for the the “Very Strong” password strength policy. (PPPM-13550)
• In Plesk on Debian 10 and AlmaLinux 8, a start, stop, or restart of the dedicated PHP-FPM handler no longer fails with the “Unable to stop service: Variable “$actionType” got invalid value “stop”” error. (PPPM-13547)
• It is no longer possible bypass email sending restrictions for Postfix and qmail by using the -bs option with the sendmail wrapper. (PPPM-13497)
• When editing a domain’s PHP settings in the “Common settings” section, the cursor no longer jumps to the end of the text box. (PPPM-13554)
• On certain servers, Plesk no longer runs its Daily Maintenance tasks significantly longer than 24 hours. (PPPM-13532)
• Collecting statistics for a domain with a large number of files (about one million) now consumes significantly less RAM. (PPPM-13415)
• BIND no longer fails to start if Plesk has websites with enabled DNS zones but absent NS records. (PPPM-13468)

Windows

• It is now possible to use the Laravel Toolkit extension.
• Backup restoration no longer fails if the DNS server was deleted from Plesk and a custom DNS service is used (for example, DigitalOcean DNS). (PPPM-13511)
• When users select the “Tradeoff” or “Thorough” configurations in ModSecurity, they now see the confirmation dialog, which informs that these configurations may disrupt operation of WordPress websites. (PPPM-13504)

Third-Party Component Updates

• Updated PHP used by Plesk to version 7.4.29.
• Updated libcurl to version 7.83.0.

Windows

• Updated POCO to version 1.11.2.
• Updated ASP.NET Core 6.0 to version 6.0.5.
• Updated ASP.NET Core 5.0 to version 5.0.17.
• Updated ASP.NET Core 3.1 to version 3.1.25.

• ionCube Loader is no longer shipped with Plesk because of the reorginization of the third-party component shipment with Plesk. ionCube will be automatically installed in one of the upcoming releases in the scope of installation of the PHP components.

  To use ionCube Loader, install it manually.

  Note: The already installed ionCube Loader component continues to work but PHP updates no longer update the component.

• Excluded the myLittleAdmin component from the “Full Installation” preset and marked the component as outdated.

  Note: The vendor does not support myLittleAdmin since 2013. Using outdated components is not secure. You can still install the component at your own risk by doing the following:

  • (During Plesk installation) Select the “Custom” installation type and then select myLittleAdmin.
  • (After Plesk installation) Run the plesk installer add --component mylittleadmin command.

Linux

• Updating Plesk to version 18.0.43 no longer fails when MySQL Community Server is used. (PPPM-13514)

• The new ‘Add Domain’ screen is now enabled by default for new Plesk Obsidian installations. This screen provides additional domain creation options:

  • Create a blank site.
  • Create a WordPress site.
  • Upload content using File Manager after website’s creation.
  • Connect a Git repository.
  • Import website from another hosting.

  To disable it, add the following lines to the panel.ini file:

    [domainManagement]
    applicationWizard.enabled = false
  

• Node.js applications now write their logs to separate log files that can be viewed in the Log Browser. To disable this feature, add the following lines to the panel.ini file:

    [ext-nodejs]
    showApplicationLogs = false
  

• The Node.js extension now automatically cleans up the downloaded archives of minor Node.js versions that are no longer necessary from the extension’s cache.

• Fine-tuned the password strength validator in Plesk to make it better at accurately evaluating strength of passwords generated by third-party applications and services.

  The feature is disasbled by default because it may affect the automatic password generation scripts that must meet the new requirements. To enable the updated password strength validator, add the following lines to the panel.ini file:

    [passwordManagement]
    estimator = zxcvbn
  

  The feature will be enabled by default in Plesk Obsidian 18.0.45. Read more about this feature.

• For customers, who use automatic scripts for subscriptions/customers creation the new “API 1038 error code” was added. This error code will be returned to a 3rd-party system if a used password was not accepted by Plesk so it will be possible to reinitiate the password generation process. It means that customers with a such scenario can update their scripts to reinitiate a password generation and validation process if the previous password was not accepted.
• On Plesk servers using BIND as the DNS server, the “notify-to-soa” option is now in effect. This ensures that the NS server specified as the primary master name server for a DNS zone in the zone’s SOA record is sent NOTIFY messages. This is useful in “hidden master” scenarios where the master NS server is not listed at the registrar and does not have an NS record in the DNS zone, and a slave NS server is listed in the SOA record instead.
• Increased the speed of website preview generation for certain websites.
• Increased the speed of switching between domains by up to 25% while using the File Manager or the domain card.
• When configuring a custom TTL value for a DNS record for a domain, the custom value is also propagated to the DNS zones of all of that domain’s domain aliases. (PPPM-13425)
• Receiving one or more emails with very long subject lines no longer causes some information to not be shown in “Tools & Settings” > “Mail Queue”. (PPPM-13462)
• Clarified the notification shown when one or more backup files in remote FTP storage do not conform to the expected naming conventions. (PPPM-13453)
• When scrolling through the contents of a directory in File Manager, the list of the files can no longer partially be seen through the page’s footer. (PPPM-13374)
• Configuring or attempting to back up to a remote FTP repository hosted on the Azure Blob service no longer fails with the “(SSH_FX_OP_UNSUPPORTED)” error. (EXTPLESK-3418)
• Perl and Python support is no longer listed as available but turned off in “Account” > “Hosting Options” if the corresponding Plesk components are not installed. (PPPM-13456)

Linux

• Indroduced a beta version of the Laravel Toolkit extension that allows you to manage Laravel applications running on your Plesk server:

  • Scan and automatically connect Laravel websites to Laravel Toolkit. That way you can manage them using the Plesk interface.
  • Get your Laravel applications from a remote Git repository and deploy them.
  • Automatically update Laravel applications using Git webhooks.
  • Manage the .env file using the graphical user interface (GUI).
  • Run artisan and composer commands without having to access the shell.

  We would love to hear your feedback about this improvement. Please send us your feedback to feedback@plesk.com.

• Plesk users granted shell access (even chrooted) can now execute certain Node.js commands (like nvm use or npm install) straight from the shell.
• The Node.js extension now supports the Yarn package manager (along with already supported npm).
• When changing the PHP handler to “FastCGI application served by Apache” for a domain owned by a subscription based on a service plan that provides PHP-FPM by default, the PHP handler is now correctly changed to FastCGI. (PPPM-13450)
• Performing dist-upgrade from Debian 10 to Debian 11 no longer results in an outdated version of the “plesk-py27-paramiko” package being installed. (PPPM-13478)
• On Ubuntu 20.04 servers, restarting the nginx service no longer results in the “Unable to restart the service: Failed to fetch” error. (PPPM-13483)
• The BIND service no longer fails to start after updating to Plesk Obsidian 18.0.42.1. (PPPM-13487)
• Clarified the error message shown and logged when subscription creation fails when greylisting is enabled in global spam filter settings, but the /var/lib/plesk/mail/greylist directory is missing. (PPPM-13457)
• Log rotation now works correctly after updating to Plesk Obsidian 18.0.42. (PPPM-13473)
• After updating to Plesk Obsidian 18.0.42, backup creation no longer fails with the “Unable to run the backup agent” error. (PPPM-13492)
• Installing Plesk Obsidian on a server running AlmaLinux 8.4 no longer results in misleading warning messages in the installer log. (PPPM-13485)
• On servers running an RPM-based Linux with Yum, it is no longer possible to run the yum clean all command during the update, which led to the update failing. (PPPM-11218)
• Setting the settings.fpm.pm.process_idle_timeout.values[] and settings.fpm.pm.process_idle_timeout.default PHP parameters to exactly “1” in the panel.ini file no longer prevents users from changing PHP handlers for hosted domains. (PPPM-13484)
• Running the plesk repair web command now also repairs missing PHP modules. (PPPM-13387)
• “Forgot password” emails are now sent in the language matching the user’s language configured in Plesk. (PPPM-13496)

Windows

• Mail sent from IP addresses added to the white list now bypasses DNSBL checks. You can now add and remove IP addresses to/from the white list via the --add-to-white-list and --remove-from-white-list options for the mailserver.exe command.
• When moving a domain from one subscription to another, the list of available target subscription now includes subscriptions whose “Mailbox Size” limit is exceeded by the sum total of disk space taken up by all mailboxes owned by the domain that is being moved. (PPPM-13398)
• Trying to change the value of the ASP.NET “Session Timeout” parameter no longer fails with the “ERR [panel] Site without PhysicalHosting cannot be Webspace” error. (PPPM-13469)

Third-Party Component Updates

• Updated OpenSSL to version 1.1.1n.

Windows

• Updated ASP.NET Core 6.0 to version 6.0.3.
• Updated ASP.NET Core 5.0 to version 5.0.15.
• Updated ASP.NET Core 3.1 to version 3.1.23.
• PHP 5.2, 5.3, 5.4, and 5.5 are no longer shipped with Plesk.
• Updated Node.js to version 12.22.11.
• Updated libxslt to version 1.1.35.
• Updated zlib to version 1.2.12.

• Performing the initial configuration no longer results in a blank screen if the “Enter Plesk” button is clicked before all necessary fields are filled out. (PPPM-13463)

Linux

• Plesk updates no longer fail on Plesk servers that do not have BIND installed and are using a different DNS server. (PPPM-13466)