Change Log for Plesk Obsidian

Read the documentation: Learn how to install Plesk updates

Legend:

new feature

functionality improved

issue resolved

pay attention

Google PageSpeed Insights 2.1.2

  • Fixed the broken links used to download the extension’s packages. (EXTPLESK-4598)

Extensions Catalog 1.16.7

  • Internal improvements.

DNS integration for Cloudflare 0.9.2

  • An active domain is no longer unintentionally disabled while improrting it to Cloudflare from Plesk with enabled proxy mode. (EXTPLESK-4472)

Site Import 1.6.6

  • Internal improvements.

Let's Encrypt 3.1.11

  • Internal improvements.

Git 2.4.10

  • Internal improvements.

Extensions Catalog 1.16.6

  • Internal improvements.

Amazon RDS 1.1.2

  • Internal improvements.

Plesk Obsidian 18.0.52 Update 3

Fixed Product Issues

Windows

  • Plesk cloud images are again correctly deployed. (PPP-61323)

PHP Updates

  • Updated PHP 8.1 to version 8.1.19.
  • Updated PHP 8.2 to version 8.2.6.

Linux

  • (PHP version 8.0, 8.1 and 8.2) The Imagick module no longer crashes if gssproxy is installed. (PPPM-13689)
  • Introduced PHP updates are the last ones for Ubuntu 18.04 “Bionic”. See Feature Deprecation Plan for details.

Hosting Plan Exporter 1.1.0

  • Added support for the export and import commands to the CLI.

Advisor 1.9.12

  • Internal improvements.

SSL It! 1.12.9

  • Internal improvements.

Firewall 2.0.3

  • Updated translations.

Backup Telemetry 1.1.2

  • Fixed downloading of dumps. (EXTPLESK-4608)

Extensions Catalog 1.16.5

  • Internal improvements.

DNS integration for Cloudflare 0.9.1

  • A Plesk administrator can now view all domains on the server by adding the new adminDomainFilters parameter to the panel.ini file. (EXTPLESK-4471)

PHP Composer 1.2.5

  • Internal improvements.

Grafana 1.4.5

Git 2.4.9

  • Fixed processing of webhooks. (EXTGIT-319)

Firewall 2.0.2

  • It is now possible to change the confirmation timeout by adding the following lines to the panel.ini file:

        [ext-firewall]
        confirmTimeout = 15 ; the timeout in seconds before the configuration is rolled back
        confirmTimeoutCli = 60 ; the timeout in seconds for the --confirm CLI command
    
  • Applying configuration is now more tolerant to long-running service restarts and long-running firewall activation scripts. (EXTPLESK-4587)

Plesk Obsidian 18.0.52 Update 2

Fixed Product Issues

Windows

  • Customers and resellers can now again open the “ASP.Net Settings” page of their domains. (PPPM-13979)

Git 2.4.8

  • The extension now respects the selected branch when requesting a webhook.

Plesk Obsidian 18.0.52 Update 1

Fixed Product Issues

Linux

  • It is again possible to install the Slave DNS Manager extension. (PPPM-13974)

Dropbox Backup 4.2.4

  • Fixed the “Unable to create the remote backup” error. (EXTPLESK-4582)

Firewall 2.0.1

  • Rules aimed to deny all incoming/outgoing connections from/to IPv4 or IPv6 addresses on all ports no longer block the other IP address version. git

DigitalOcean DNS 1.3.10

  • The extension again correctly opens the main page with the list of domains. (EXTPLESK-4579)

Amazon RDS 1.1.0

  • Internal improvements.

Node.js Toolkit 2.3.1

  • The extension installation on Plesk earlier than 18.0.50 no longer fails with a ParseError. (EXTNODEJS-298)

Grafana 1.4.4

Plesk Obsidian 18.0.52

What’s New?

  • (Plesk for Linux) It is now possible to block countries using the Plesk Firewall. The feature works out of the box.

    By default, the feature uses the free version of the DB-IP geolocation database. You may want to use geolocation databases from MaxMind (GeoLite2 or GeoIP2), for example, because they are updated more frequently than DB-IP. GeoLite2 is free, while GeoIP2 is paid, but both require a license key. Learn how to switch from DB-IP to MaxMind.

  • (Plesk for Linux) We are thrilled to introduce the websites’ performance optimization feature. At the moment, it is possible to optimize PHP and nginx settings for one or more websites.

    The feature is available in Tools & Settings > Performance Booster (under “General Settings”). In the next Plesk versions, we aim to introduce MySQL settings optimization and some tweaks to the existing settings for an even greater speed boost.

  • (Plesk for Linux) CentOS 7 reaches end of life on June 30, 2024. We have prepared a public beta CLI script that in-place converts your Plesk server on CentOS 7 to AlmaLinux 8. You can use the script to convert your Plesk server and check the result before CentOS EOL.

    Please report any issues related to the conversion on GitHub and/or send us feedback to beta-extensions@plesk.com. While this script is in beta, we do not provide help with the conversion via Plesk Support.

  • MariaDB 10.11 is now supported. It is the latest “long-term support” version from the vendor.
  • Plesk now supports secure MySQL connections. The Plesk administrator can now connect to a remote database securely via SSL/TLS and prohibit using a non-secure connection.

  • (Plesk for Linux) Ruby 2.7, 3.0, 3.1, and 3.2 are now supported.

Feature Improvements

  • Updated the Node.js Toolkit extension (former Node.js) to version 2.3.0:

    • Added quick access to File Manager.
    • You can now call npm/yarn commands from the “Run Node.js commands” tab in the extension interface.
    • You can now install/remove Node.js versions available on a Plesk for Linux server in the extension interface.
    • Renamed the Node.js extension to Node.js Toolkit.
  • Added the “Ruby” button to the “Adding New Domain” drawer. After a domain with the selected “Ruby” option is created, Plesk offers the necessary toolkit to manage the domain with Ruby right away. It is now easy to enable Ruby at the same time as adding a domain.
  • Modified the “Install Application” drawer:
    • Moved the “Install Application” button to the bottom of a domain card.
    • Moved the “Git” and “Website Importing” buttons from the drawer to a domain card.
    • After an application was installed on a domain, the corresponding application buttons now remain in the drawer.
  • Improved visibility of the global search bar.
  • Global search now shows the most recent results at the top.
  • To bring Plesk in line with the evolving industry-standard vocabulary, added aliases of the following CLI options:

    The dns utility

    • --set-master > --set-primary
    • --set-slave > --set-secondary

    The service_plan utility

    -dns_zone_type (master|slave) > -dns_zone_type (primary|secondary)

    Note: This improvement does not affect existing integrations that use the old CLI options. They continue to work.

Linux

  • Converted the Plesk Firewall module to an extension. It is now possible to update the firewall separately from Plesk.
  • Converted the Premium Antivirus for Servers component to an extension. It is now possible to update the antivirus separately from Plesk.
  • It is now possible to clone MySQL databases that have stored procedure triggers with DEFINER.

Windows

  • MyLittleAdmin is scheduled for removal in June 2023 (Plesk Obsidian 18.0.53).

    We have prepared a KB article with the instructions on how to download, install, and configure local database clients (for example, HeidiSQL and SQL Server Management Studio (SSMS)) and added the link to the article to the Plesk interface.

    The Plesk administrator can replace the default link with a custom one via the panel.ini file:

    [databaseManagement] 
    features.dbclient.info = "https://support.plesk.com/hc/en-us/articles/10447261987218" ; the default link
    

Deprecated and Removed Items

Fixed Product Issues

  • Fixed the description of the Git button on the “Adding New Domain” drawer. (EXTGIT-306)
  • The panel.ini file configured to hide all Plesk promos now also hides the Dynamic View promo. (PPP-60603)
  • The plesk bin service_plan -i command now correctly shows information about service plans. (PPPM-13955), (PPPM-13953)
  • The AdBlock for Firefox extension no longer blocks the “Branding” page in Plesk in Tools & Settings. (PPP-60600)
  • The Plesk page with the URL of the https://<IP_address>:8443/login_up.php/<anything> pattern no longer reloads continuously. (PPPM-13931)
  • In Tools & Settings > DNS Settings (under “General Settings”), setting a TTL value of a DNS record no longer populates an empty TTL field of the next opened DNS record with this value. (PPPM-13944)
  • The underscore is now used as a delimiter when a custom prefix is set for database user names in Tools & Settings > Database Hosting Preferences (under “Applications & Databases”). (PPPM-13945)
  • Passwords of a Plesk administrator account and an internal email address set in the Plesk administrator profile are no longer in sync: changing one does not change the other. (PPP-57040), (PPP-60820)
  • Reinstalling an application via the Application Catalog no longer fails with an HTTP error 500. (PPP-60954)
  • The Plesk firewall rules (including custom ones) can now be backed up and restored. (PPPM-12676)
  • The started Dynamic list tour no longer results in a blank page for the “Dynamic list view - show websites on a separate page” view. (PPPM-13967)

Linux

  • It is again possible to change the location of virtual hosts using the transvhosts.pl utility. (PPPM-13949)
  • If “FPM application served by nginx” or “Dedicated FPM application served by nginx” was selected in a domain’s PHP settings and the corresponding PHP handler was then deleted, the “PHP settings” page of the domain is now opened without any issues. (PPPM-13941)
  • Inserting images to an HTML file via HTML Editor in File Manager no longer fails with the “Error Call to undefined function get_magic_quotes_gpc()” error. (PPPM-13901)
  • If debug mode is enabled with the show.util_exec_io option, operations that trigger the DNS update task no longer hang. (PPPM-13908, PPPM-13963)
  • If a specific IP address version (IPv4 or IPv6) is set for a domain, Plesk now sends mail from the domain only via this IP address. (PPPM-13770)
  • Adding or removing mail forwarding via XML API now works. (PPPM-13933)
  • A Plesk administrator account password can now contain up to 255 characters. Previously the password longer than 158 characters caused an error. (PPPM-13965)
  • The “SSH/Shell access” button is again shown for a domain whose owner is allowed SSH access. (PPPM-9970)
  • It is now possible to access files in password-protected directories when “Smart static files processing” and “Proxy mode” are enabled in the “Apache & nginx” settings. (PPPM-13942)
  • Customers with Plesk on the EOL Debian can now update Plesk to the latest availiable version using the plesk installer upgrade <version> ---source <source> command. (PI-763)

Windows

  • If the “Keep secured” feature is enabled, it automatically renews an expired SSL/TLS certificate for FTP in IIS. (PPP-60650)
  • Creating an address book in Horde no longer fails with the “$name must be a string” error. (PPPM-13919)
  • The CLI now supports the set subcommand of the -forwarding-addresses option of the mail utility. (PPPM-13950)
  • It is now possible to create a mail user in SmarterMail 100.0.8495 or later. (PPPM-13966)

Future Plans

  • In the nearest future, we plan to switch PHP used by Plesk to PHP 8.2. This is because security support for PHP 8.0 will end in November 2023. If you are running any custom extensions, you will need to update them to support PHP 8.2 to avoid potential issues.

    This change is currently scheduled to take place with the release of Plesk Obsidian 18.0.53 (early June 2023).

Changes in Third-Party Components

Windows

  • Updated Horde Turba to version 4.2.29.
  • Microsoft Drivers for PHP for SQL Server are now shipped with PHP 8.2.
  • Updated ASP.NET Core 7.0 to version 7.0.5.
  • Updated ASP.NET Core 6.0 to version 6.0.16.

Node.js Toolkit 2.3.0

  • Added quick access to File Manager.
  • You can now call npm/yarn commands from the “Run Node.js commands” tab in the Node.js Toolkit interface.
  • You can now install/remove Node.js versions available on a Plesk for Linux server from the interface.
  • The Node.js extension was renamed to Node.js Toolkit.

Firewall 2.0.0

Linux

  • It is now possible to block countries using the Plesk Firewall.
  • Reworked and modernized the UI for the improved UX.

Google PageSpeed Insights 2.1.11

  • Fixed the visualisation of statistics on a domain’s report page. (EXTPLESK-1432)

.NET Toolkit 2.1.4

  • Fixed the “Failed to get hosting properties: Permission denied” error. (EXTPLESK-4492)

DigitalOcean DNS 1.3.9

  • The extension now correctly handles situations when the rate limit on requests to the DigitalOcean API per hour and/or per minute was exceeded in Plesk. (EXTPLESK-4502)

Transfer of DNS Records 1.1.2

  • Internal improvements.

Premium Anti-Virus for Servers 1.0.1-15

  • Internal improvements.

PHP Updates

  • Updated PHP 8.2 to version 8.2.5.
  • Updated PHP 8.1 to version 8.1.18.

Linux

  • Updated Xdebug to version 3.2.1 for PHP 8.2, 8.1.

Monitoring 2.5.11

  • Fixed broken links to KB articles in Plesk and its documentation.

Let's Encrypt 3.1.10

  • Fixed broken links to KB articles in Plesk and its documentation.

Laravel Toolkit 1.4.5

  • The Laravel toolkit button is once again shown on the domain card if Laravel was activated via the corresponding option in the “Install Application” drawer or Laravel application was found on the domain.

Advisor 1.9.11

  • Fixed broken links to KB articles in Plesk and its documentation.
  • Fixed compatibility issues with Plesk Obsidian 18.0.52.

Site Import 1.6.5

  • Moved the “Website Importing” button from the “Install Application” drawer to the domain card. Also, the button is now shown in domain overview.

Ruby 1.4.5

  • Ruby 2.7, 3.0, 3.1, 3.2 are now supported.
  • The extension can now be installed on Ubuntu 22.04 (both on x86-64 and ARM architectures), Red Hat Enterprise Linux 9, AlmaLinux 9.
  • The Ruby button is once again shown on the domain card if Ruby was enabled during domain creation or via the corresponding option in the “Install Application” drawer.

Joomla! Toolkit 2.5.11

  • Separated buttons for the “Install application” and “Add domain” drawers. Changed mechanism to show ext buttons in the domain overview and header

.NET Toolkit 2.1.3

  • Separated buttons for the “Install application” and “Add domain” drawers. Changed mechanism to show ext buttons in the domain overview and header.

WP Toolkit 6.2.1

  • Login to WordPress from Dynamic List now properly works again. (EXTWPTOOLK-10409)

Monitoring 2.5.10

  • In Plesk 18.0.49 and earlier, the extension no longer crashes with the “An unexpected error occurred” error. (EXTPLESK-4511)

WP Toolkit 6.2.0

  • Added new API methods for working with plugins and themes on an installation.
  • (cPanel) Extended Team Manager feature support.
  • (cPanel) Added AlmaLinux 9 support.
  • Added help output for the updated --clear-cache CLI command.
  • Adjusted the logic of displaying warnings about outdated PHP versions to make sure alt-php doesn’t incorrectly trigger them anymore.
  • (Plesk) Updated integration with Dynamic list to accommodate for corresponding changes in Plesk.
  • WP Toolkit no longer shows Failed to find set with specified ID error when installing WordPress under certain rare circumstances. (EXTWPTOOLK-9898)
  • Unaccessible free trial offer is no longer displayed for Smart Updates. (EXTWPTOOLK-10312)
  • Once mitigated via WP Toolkit, CVE-2022-3590 vulnerability is now always properly shown as mitigated. (EXTWPTOOLK-10298)
  • Smart Update no longer reports certain combinations of square brackets as a false positive “broken shortcode” issue. (EXTWPTOOLK-10050)

Monitoring 2.5.9

  • It is now possible to create an additional agent360 configuration file (/etc/agent360-custom.ini) that will not be overwritten during agent360 upgrades. You can use this file to store custom settings, for example, for plugins.
  • When opening the extension in the left pane, the correct breadcrumbs are now shown. (EXTPLESK-4414)

Let's Encrypt 3.1.9

  • Added support for asynchronous order finalization in the ACME protocol.

Sectigo SSL 1.3.11

  • Newly issued OV/EV certificates now come with a Sectigo Trust Seal. It is a visual stamp displayed on a website indicating that the website is authentic and the identity of the entity operating it has been verified. [Learn more about the Sectigo Trust Seal])https://sectigo.com/trust-seal).

Plesk Obsidian 18.0.51 Update 1

Fixed Product Issues

  • The ProcessAutoreports subtask no longer runs for long periods of time while consuming a large amount of RAM without sending summary reports. (PPPM-13951)

Windows

  • Let’s Encrypt SSL/TLS certificates securing FTP connections are now correctly renewed in IIS. (PPPM-13940)

SSL It! 1.12.8

  • Added support for the Plesk Premium Email (powered by Kolab) extension.

Let's Encrypt 3.1.8

  • Added support for the Plesk Premium Email (powered by Kolab) extension. A certificate can be issued and installed in the webmail client if the SSL It! extension’s version is 1.12.8 or later.

Export lists to CSV 1.2.0

  • The extension can now again be used with Plesk Obsidian 18.0.44 and later. (EXTPLESK-4467)

Plesk eCommerce Toolkit 1.3.4

  • Internal improvements.

Git 2.4.7

  • Moved the “Git” button from the “Install Application’ drawer to the domain card. Also, the button is now shown in domain overview.
  • Added a detailed warning message shown if the extension cannot perform post-deployment actions.

PHP Updates

Linux

  • Fixed the issue where domains using PHP 8.2 could become unavailable due to the “Memory violation” error. (PPPM-13872)

Git 2.4.6

  • Fixed deployment of a new private repository. (EXTGIT-315)

Extensions Catalog 1.16.4

  • The Extension Catalog no longer shows misleading texts for some paid extensions. (EXTCATALOG-663)

Log Browser 1.6.6

  • The extension no longer sends false positive reboot notifications when the system log is rotated. (EXTPLESK-4463)

Git 2.4.5

  • Updated translations of custom buttons in the “Install application” drawer.

SSL It! 1.12.7

  • Users can now again upload .pem certificate files. (EXTSSLIT-1993)

Grafana 1.4.3

  • Internal improvements.

Grafana 1.4.2

  • Internal improvements.

PHP Updates

  • Updated PHP 8.2 to version 8.2.4.
  • Updated PHP 8.1 to version 8.1.17.

Windows

  • Microsoft Drivers for PHP for SQL Server are now shipped with PHP 8.2

Grafana 1.3.7

  • Updated Grafana to version 8.5.21 to fix multiple security issues.

Plesk eCommerce Toolkit 1.3.3

  • Internal improvements.

Grafana 1.4.1

  • Updated Grafana to version 8.5.21 to fix multiple security issues.

Premium Anti-Virus for Servers 1.0.1-1

  • Initial release. The extension works in Plesk Obsidian 18.0.52 and later.

Plesk Obsidian 18.0.51

What’s New?

  • Introducing Dark Mode in Plesk for when you want to rest your eyes in a low-light environment. Dark Mode can be enabled by clicking the ‘crescent’ icon in the upper corner of the screen.

    Note: Dark Mode in Plesk uses cookies and works on per session basis.

  • We are glad to introduce the Sophos Anti-Virus for Servers extension. The extension supports Plesk for Linux, including ARM-based servers. Here’s how it helps to protect you from malicious emails:

    • Scans incoming and outgoing mail.
    • Scans all archive and compressed archive file formats.
    • Scans file formats that contain an executable stub that automatically decompresses the body of the file.
    • Rejects malicious and potentially dangerous e-mail messages.
    • Features CX-Mail, a context-aware setting that enables more aggressive detection rules specifically designed for email traffic.
    • Automatically updates virus signatures.

    We would love to hear your feedback about this extension at feedback@plesk.com.

  • We are glad to introduce the production version of the SOGo Webmail extension. Added the following improvements to the extension:

    • It is now possible to customize the service configuration templates.
    • The SOGo database is now backed up daily.
    • The extension has been translated into 32 languages.
  • We are glad to introduce the beta version of the DNS integration for Cloudflare extension. The extension automates the provisioning of DNS records from Plesk to Cloudflare, simplifying this routine to a couple of clicks.

    • Connect your existing Cloudflare account to Plesk.
    • Import DNS records from Cloudflare to Plesk.
    • Export DNS records from Plesk to Cloudflare both manually and automatically.

    We would love to hear your feedback about this extension at beta-extensions@plesk.com.

  • The Website Log Check is no longer in beta. Learn more about Website Log Check. To enable the feature, add the following lines to the panel.ini file:

    [websitesDiagnostic]
    enabled = true
    
  • We are glad to introduce the result of our research into the possibility to deploy a high-availability Plesk cluster using two new features:

    We built a proof-of-concept high-availability Plesk cluster with active and passive nodes. Read the step by step guide and testing result for such a cluster.

    We would love to hear your feedback about these features and the high-availability cluster on the Plesk forum.

  • Added the ability to recalculate disk space and traffic usage data for individual domains to the Plesk interface.

Feature Improvements

  • Classic list view has been updated to appear and function more closely to Dynamic list view, and also renamed to “Dynamic list view - show websites on a separate page”. If you used Classic list view in the past, “Dynamic list view - show websites on a separate page” should provide a similar, but improved experience.
  • Made a number of improvements to Dynamic list view:
    • Updated the layout of the list of hosted domains in Dynamic list view to make it easier to tell domains from subdomains and to make managing large numbers of domains easier in Dynamic list view.
    • Added the ability to search for domains to Dynamic list view.
    • Updated the Dynamic list view tour to highlight the changes and improvements made to Dynamic list view in Plesk Obsidian 18.0.51.
    • Changed the icon of the “View on a separate page” button for better legibility, and also added a “Copy domain name” button in Dynamic list view.
    • Added the Install application button in the Dynamic list view, under “Dev Tools”. Clicking it opens a drawer from which you can install web applications, such as Laravel, Node.js, and Ruby, on your domain. The list of available applications depends on what extensions are installed in Plesk.
  • Reworked the mail service options for individual domains. The available options are now “the domain can both send and receive email”, “the domain can send, but not receive email”, and “the domain can neither send nor receive email”. Selecting the latter option also removes all existing mailboxes for the domain together with all incoming and outgoing mail.
  • Updated the links on Plesk error pages to avoid confusion.
  • To bring Plesk in line with the evolving industry-standard vocabulary, the following changes were made to the terms used in Plesk:
    • “Master DNS server/zone” > “Primary DNS server/zone”
    • “Slave DNS server/zone” > “Secondary DNS server/zone”
  • Illustrations in Plesk have been redone in a unified style for consistency, visual integrity, and emotional response based on our target audience opinions and identified by tests.
  • Requests from the Plesk Screenshot Service to websites hosted in Plesk are now marked by the custom “Plesk screenshot bot” User-Agent header.
  • Plesk Premium Antivirus has been converted from a Plesk component to an extension.

Fixed Product Issues

  • Updated the default DMARC DNS TXT record to make it RFC compliant. (PPPM-13892)
  • Restoring from a backup stored in remote FTP storage now fails with an error instead of hanging indefinitely if the backup is invalid. (PPPM-13925)
  • Information about the availability of WP Toolkit Deluxe for the installed Plesk license can now be found in Tools & Settings > License Information. (PPP-60387)
  • It is now again possible to retrieve the list of all hosted databases via the REST API “databases” endpoint. (PPPM-13917)
  • Removed email forwarding addresses no longer reappear after restoring from a backup. (PPPM-13862)
  • It is now possible to create certificate signing requests with key sizes other than 1024 and 2048 bits via the RPC API. (PPPM-13918)

Linux

  • Removing PHP 8 via Plesk Installer no longer results in an error when browsing Tools & Settings > PHP Settings. (PPPM-13850)
  • Websites using PHP 8.1 and 8.2 with the PHP-FPM handler no longer randomly throw “HTTP 503 Service Unavailable” errors due to the handler process experiencing a segmentation fault. (PPPM-13872)
  • Enabling debug logging in Plesk no longer makes the Plesk GUI inaccessible with the “HTTP 502 Bad Gateway” error. (PPPM-13885)
  • Entering a custom TTL value for a PTR record in Plesk DNS settings now results in the custom value correctly taking effect. (PPPM-13776)
  • Running the plesk repair all -y or plesk sbin fsmng --fix-plesk-packages commands on a Plesk server with the Imunify360 extension installed and the default OS locale changed no longer fails with the “ERROR:’ascii’ codec can’t decode byte 0xc5 in position 1934: ordinal not in range(128)” error. (PPPM-13860)
  • Running the plesk repair mail command on a Plesk server using Postfix as the mail server no longer enables the mail service if it was intentionally disabled. (PPPM-13859)
  • Websites using PHP 8.1 and 8.2 with OPcache enabled no longer randomly throw “HTTP 503 Service Unavailable” errors due to child processes terminating themselves unexpectedly. (PPPM-13876)
  • On Plesk servers using Postfix as the mail server, securing mail with a TLS/SSL certificate may fail if multiple different end of line sequences (for example, both “\r\n” and “\n”) are used in the certificate body. (PPPM-13887)
  • Running the plesk repair installation command on a Plesk server with phpMyAdmin installed no longer breaks phpMyAdmin configuration. (PPPM-13902)
  • Watchdog will now monitor the correct ploop device after host node reboot if Plesk is installed in an OpenVZ 7/Virtuozzo 7 container. (PPP-57361)

Windows

  • Removing all registered database servers from Tools & Settings > Database servers no longer makes it impossible to add new ones. (PPPM-13893)
  • It is now again possible to change a website’s document root directory via the RPC API. (PPPM-13915)
  • Exporting a database to PDF in phpMyAdmin no longer fails with the “HTTP 500 Server Error” error. (PPPM-13823)

Future Plans

  • In the nearest future, we plan to switch PHP used by Plesk to PHP 8.2. This is because security support for PHP 8.0 will end in November 2023. If you are running any custom extensions, you will need to update them to support PHP 8.2 to avoid potential issues.

    This change is currently scheduled to take place with the release of Plesk Obsidian 18.0.53 (early June 2023).

  • In the nearest future, we plan to stop shipping MyLittleAdmin with Plesk. This is because MyLittleAdmin is not in active development, and has known security issues. Instead, Plesk will provide links to downloadable clients and instructions on how to connect the client to the Plesk server.

    This change is currently scheduled to take place with the release of Plesk Obsidian 18.0.53 (early June 2023).

Changes in Third-Party Components

  • Updated PHP 8.0 used by Plesk to version 8.0.28.

Linux

  • Webalizer can now be installed on servers running Red Hat Enterprise Linux 8 and its derivatives.
  • Updated phpMyAdmin to version 5.2.1.

Windows

  • Updated Git to version 2.39.2.
  • Updated BIND to version 9.16.38.
  • Updated OpenSSL used by Plesk and Plesk Installer to version 1.1.1t.
  • Updated ASP.NET Core 7.0 to version 7.0.3.
  • Updated ASP.NET Core 6.0 to version 6.0.14.
  • Updated Node.js 18 to version 18.14.1.
  • Updated Node.js 16 to version 16.19.1.

SOGo Webmail 1.0.0

  • We are glad to announce that the SOGo Webmail extension has left beta.

DNS integration for Cloudflare

  • Initial beta release.

Ruby 1.4.4

  • Updated custom buttons.

Site Import 1.6.4

  • Internal improvements.

Support SSH Access 1.1.0

  • Dropped compatibility of legacy components.
  • Simplified the process of providing access.
  • The overview screen now shows the list of all licenses with the license support status and a reason why a license is not supported.

SSL It! 1.12.6

  • Added support for the SOGo Webmail extension.
  • Backing up of subscriptions no longer fails if they have a lot of SSL It! orders to issue certificates. (EXTSSLIT-1936)

Node.js 2.2.2

  • Moved the custom button that installs Node.js applications to the installation drawer.

Monitoring 2.5.8

  • The 360 Monitoring agent is now updated correctly even if the server has MariaDB 10.4 or later and invalid mysql.user table. (EXTPLESK-4428)

Let's Encrypt 3.1.7

  • Added support for the SOGo webmail client. A certificate can be issued and installed on the webmail client if the SSL It! extension’s version is 1.12.6 or later.

WP Toolkit 6.1.3

  • --clear-cache CLI command now supports partial (targeted) cache reset.
  • WP Toolkit no longer shows Failed to find set with specified ID error when installing WordPress under certain rare circumstances. (EXTWPTOOLK-9898)
  • Vulnerability warning is no longer displayed for cloned websites with already mitigated vulnerabilities. In addition, email notifications about mitigated vulnerabilities allegedly being active are no longer sent to users. (EXTWPTOOLK-10259)
  • (Plesk) Service Plan limit WordPress websites with Smart Update now works correctly again, as before. (EXTWPTOOLK-10179)

Joomla! Toolkit 2.5.10

  • Internal improvements.

Docker 1.5.9

  • Internal improvements.

DigitalOcean DNS 1.3.8

  • Internal improvements.

Advisor 1.9.10

  • Internal improvements.

Sophos Anti-Virus for Servers 1.0.0

  • Initial release.

SFTP Backup 2.1.1

  • Internal improvements.

.NET Toolkit 2.1.2

Linux

  • Fixed the “dotnet binary not specified” error on Ubuntu 22. (EXTPLESK-4168)

SOGo Webmail 0.2.1

  • Added support for nightly packages on Ubuntu 22.04.

Plesk Obsidian 18.0.50 Web Presence Builder update

  • The Web Presence Builder console of websites that use Google Analytics is again accessible and no longer shows the “Unable to connect to Web Presence Builder server” error. (PPB-4680, PPS-13967)

DigitalOcean DNS 1.3.7

  • Internal improvements.

SSL It! 1.12.5

  • Internal improvements.

SOGo Webmail 0.2.0

  • It is now possible to customize the service configuration templates. For more information, see /usr/local/psa/var/modules/sogo/templates/README.md.
  • Added support for CourierIMAP.

    Note: Features based on the Sieve protocol will be unavailable if CourierIMAP is used.

  • The SOGo database is now backed up daily. SQL dumps are rotated to prevent excessive usage of disk space.
  • Switched the password storage to secure SSHA512 hashes, which enables to store longer passwords.
  • Improved the UI of the extension’s main screen.
  • The installation task now shows correct text upon completion. (EXTPLESK-4202)

Joomla! Toolkit 2.5.9

  • Internal improvements.

Docker 1.5.8

  • Internal improvements.

DigitalOcean DNS 1.3.6

  • The extension now shows the actual status of DNS zones. (EXTPLESK-4374)

PHP Updates

  • Updated PHP 8.0 to version 8.0.28.
  • Updated PHP 8.1 to version 8.1.16.
  • Updated PHP 8.2 to version 8.2.3.

Monitoring 2.5.7

  • Internal improvements

Microsoft Azure DNS 1.1.2

  • Internal improvements.

Joomla! Toolkit 2.5.8

  • Internal improvements.

Monitoring 2.5.6

  • Selecting nine or more subscriptions for comparison on the “Subscriptions” tab no longer results in an error. (EXTPLESK-4395)

Let's Encrypt 3.1.6

  • Internal improvements.

Laravel Toolkit 1.4.4

  • Updated custom buttons.

Git 2.4.4

  • Updated custom buttons.

Dropbox Backup 4.2.3

  • Internal improvements.

Plesk Migrator 2.24.0

  • Internal improvements.

Log Browser 1.6.5

  • Internal improvements.

Google Drive Backup 1.3.5

  • Internal improvements.

Dropbox Backup 4.2.2

  • Internal improvements.

Docker 1.5.7

  • Internal improvements.

Let's Encrypt 3.1.5

  • Internal improvements.

Joomla! Toolkit 2.5.6

  • Internal improvements.

Extensions Catalog 1.16.3

  • Internal improvements.

Site Import 1.6.3

  • Internal improvements.

Plesk Obsidian 18.0.50 Update 2

Fixed Product Issues

  • Backing up to FTP storage no longer fails with the “Curl error: (28) Timeout was reached” error when FTPS mode is enabled. (PPPM-13895)

Joomla! Toolkit 2.5.5

  • Internal improvements.

Git 2.4.3

  • Internal improvements.

Dropbox Backup 4.2.1

  • Internal improvements.

Git 2.4.2

  • Internal improvements.

Monitoring 2.5.5

  • Internal improvements.

Google Drive Backup 1.3.4

  • Internal improvements.

Docker 1.5.6

  • The extension can now be installed if Docker Engine is already installed. (EXTDOCKER-161)

Linux

  • The extension can now be removed, purged, and reinstalled on Ubuntu. (EXTDOCKER-160)

WP Toolkit 6.1.2

  • WP Toolkit is sending notifications about found vulnerabilities again. (EXTWPTOOLK-10169)
  • Copy Data feature is no longer blocked when there’s a remote site connected to WP Toolkit. (EXTWPTOOLK-10212)
  • Addressed unruly behavior of security measure switches in the menu that addresses CVE-2022-3590 vulnerability. (EXTWPTOOLK-10157)

Plesk Obsidian 18.0.50 Update 1

Fixed Product Issues

  • Creating a custom button with the “#” character in place of the URL no longer results in the Plesk interface becoming unavailable. (PPPM-13878)
  • Fixed the issue with checkboxes’ alignment on multiple Plesk screens. (PPPM-13884)
  • Accessing the Plesk interface on an unstable network connection no longer results in intermittent HTTP 500 errors. (PPP-59897, PPP-59956)

Linux

  • Trying to manage greylisting settings via the plesk bin grey_listing CLI utility no longer fails with the “array_keys(): Argument #1 ($array) must be of type array, null given” error. (PPP-60083)
  • Enabling the Plesk debug mode no longer results in the Plesk interface becoming unavailable with the HTTP 502 error. (PPPM-13885)
  • Enabling the “Enable nginx caching” option no longer breaks the Plesk UI layout. (PPPM-13884)

SSL It! 1.12.3

  • Internal improvements.

Let's Encrypt 3.1.4

  • The “Failed to read X509 certificate from PEM string” error no longer appears during the Plesk daily maintenance task. (EXTLETSENC-1182)
  • The “openssl_pkey_get_public(): Don’t know how to get public key from this private key” error no longer appears during execution of the keep-secured cron job. (EXTLETSENC-1183)

Git 2.4.1

  • Minor improvements.

PHP Updates

  • Updated PHP 8.1 to version 8.1.15.
  • Updated PHP 8.2 to version 8.2.2.

Plesk eCommerce Toolkit 1.3.2

  • Internal improvements.

Let's Encrypt 3.1.3

  • Internal improvements.

Grafana 1.4.0

  • Internal improvements.

Grafana 1.3.6

  • Grafana v1.3.6 will be the last Grafana update that supports Plesk versions older than Plesk 18.0.50. To continue receiving Grafana updates with bugfixes and new features, update your Plesk installation to version 18.0.50 or later.
  • The extension installation no longer fails with a syntax error in Plesk Obsidian 18.0.34 and earlier. (EXTPLESK-4332)

Scheduled Backups List 1.0.1

  • The extension no longer crashes with a PHP fatal error while opening. (EXTPLESK-4326)

SSL It! 1.12.4

  • Internal improvements.

Plesk Obsidian 18.0.49-18.0.50 mod_proxy update

Linux

  • Updated Apache mod_proxy to fix the issue where new configuration files for the Apache web server were not created due to errors in the configuration templates. The issue occurred if the LiteSpeed web server was installed. (PPP-59909)

Plesk Obsidian 18.0.50

What’s New?

We are glad to release the anniversary version Plesk Obsidian 18.0.50. To all our customers, we thank you for your loyalty!

We have prepared a small gift for you. Are you intrigued? Follow the cat paw prints in Tools & Settings > About Plesk (under “Plesk”).

  • Added support for queue workers to the Laravel Toolkit extension. Laravel website owners can now manage queue jobs out of the box: schedule, monitor, remove, rerun, and so on.

    To enable queues in your Laravel project, follow the instructions.

  • Customers can now create database users on the default server and servers where they already have databases (even if customers do not have the “Database server selection” permission).
  • Introduced the new SSL It! main screen, which offers a bird’s view of all domains, installed certificates (if any), the certificates’ expiration dates, and certificate authorities. It is now also possible to filter domains by status (valid, expired, self-signed, and so on) and certificate authority.
  • In the Git extension, added the ability to select users who can access a local repository via HTTP/HTTPS.

    Previously, only the system user had access to all repositories in a subscription. You can now select additional users when creating a local repository or changing the settings of an existing one. These users can pull and push to a local repository via HTTP/HTTPS using their credentials.

  • The Git extension now correctly handles moving domains between subscriptions and places the Git directory to the appropriate subscription afterward.

    Note Moving domains between subscriptions changes the plesk-git directory password because it must be synced with the subscription’s system user password.

  • Due to increased phishing attacks, creating websites with publicly resolvable temporary domain names is available only for paid licenses from now on.

Windows

  • Microsoft SQL Server 2022 is now fully supported. Plesk can now detect Microsoft SQL Server 2022 installed locally and allows to create and manage user databases. It is now also possible to do the following:
    • Use Microsoft SQL Server 2022 as a remote database server.
    • Install Microsoft SQL Server 2022 locally using Plesk Installer.
    • Import and export Microsoft SQL Server 2022 databases via the Plesk interface.

Feature Improvements

  • New domains now sign outgoing mail with DKIM. This improvement protects against email spoofing.

    DKIM helps to verify that an email was indeed sent from the domain and no one tampered with the email content in transit. Previously, DKIM was not enabled by default for domains. Spoofed email messages with ‘From address’ forged to display a Plesk domain could pass DKIM and DMARC validation and were not filtered. New domains now have the “Use DKIM spam protection system to sign outgoing email messages” option selected by default.

    Note: This improvement works only for new domains that have their DNS and mail hosting in Plesk.

  • New domains now use the DMARC quarantine policy by default. This improvement protects outgoing mail against email spoofing.

    The DMARC policy defines how the receiver should treat email messages depending on the results of DKIM and SPF checks. The new default DMARC policy (v=DMARC1; adkim=s; aspf=s; p=quarantine) strictly enables DKIM and SPF checks. Emails that do not pass these checks are now put in quarantine (moved to the spam folder or flagged as suspicious).

    Note: This improvement works only for new domains that have their DNS and mail hosting in Plesk.

  • When migrating to a server with a Plesk Web Admin license installed or installing the license, the previous subscription limits are now ignored and treated as unlimited.
  • Decluttered Dynamic List view and made it easier to navigate through multiple domains:
    • Introduced icons for no-hosting domain types (alias, forwarding, no hosting).
    • Removed the “Type” column.
  • Plesk now better handles domains with modern applications installed (for example, Laravel, .NET, and Node.js) while moving the domains between subscriptions.
  • SSL It! now shows recommended extensions and TLS versions in the “Settings” drawer.
  • Significantly improved backup performance for backups stored in the FTP storage: backup upload speed is now ~1.6 times faster, while CPU load decreased by a factor of two.

Linux

  • It is now possible to use Atomic Standard and Atomic Advanced ModSecurity rule sets in Plesk on RHEL 8, CloudLinux 8, AlmaLinux 8, and Rocky Linux 8. To enable these rule sets, add the following lines to the panel.ini file:

    [modSecurity]
    ruleSet.tortix = true ; enables the Atomic Standard rule set
    ruleSet.atomic = true ; enables the Atomic Advanced rule set
    

Deprecated and Removed Items

  • VPS Optimized has been deprecated and will be removed in Plesk Obsidian 18.0.51. Learn more.

Fixed Product Issues

  • Customers can now access the administrative interface of applications installed via APS Catalog. (PPPM-13842)
  • Improved the error message shown when Plesk cannot define the server hostname while creating a server backup. (PPPM-13814)
  • The “Scheduled Tasks” model dialog box now correctly shows special characters. (PPPM-13817)
  • The “Scheduled Tasks” model dialog box now again has the scroll bar and the “Close” button. (PPPM-13820)
  • Dynamic List view now shows favicons set up with the “Favicon by RealFaviconGenerator” WordPress plugin. (PPP-59576)

Linux

  • It is now possible to add the listen.backlog PHP-FPM setting in the Plesk interface. (PPPM-11945)
  • It is now possible to reset password using the Plesk username. (PPPM-13839)
  • It is now possible to use custom PHP-FPM handlers with a systemd unit in /etc/systemd/system/. (PPPM-11570)
  • The text in Tools & Settings > Database Servers (under “Applications & Databases”) > Settings no longer misleads users about remote access support of PostgreSQL. (PPPM-13718)
  • Changing the interface language of Plesk no longer resets that of the Horde webmail to the default English language. (PPPM-13828)
  • Fixed the help of the Plesk Firewall command line utility. (PPPM-13833)
  • Backup Manager can now be opened without any issues in Plesk with a large number of customers (more than 995). (PPPM-13845)

Changes in Third-Party Components

  • Updated PHP 8.0 used by Plesk to version 8.0.27.

Windows

  • Node.js 18.12.1 is now supported and shipped with Plesk.
  • Updated MailEnable Standard to version 10.43.
  • Updated ASP.NET Core 7.0 to version 7.0.2.
  • Updated ASP.NET Core 6.0 to version 6.0.13.
  • Dropped support for ASP.NET Core 3.1, which reached end of life.
  • Updated Git to version 2.39.1.

Amazon Route 53 2.9.0

  • Internal improvements

Extensions Catalog 1.15.6

  • The “Buy” button is no longer shown on the Google Workspace extension overview page. (EXTCATALOG-614)
  • The Extension Catalog UI is no longer completely broken in Plesk 18.0.42 and earlier. (EXTCATALOG-618)

WP Toolkit 6.1.1

  • Users can now mitigate CVE-2022-3590 vulnerability in WordPress core on WordPress Vulnerabilities screen.
  • Improved performance in certain cases related to Smart PHP Updates
  • Smart Update now respects page crawling limits set in the config file. (EXTWPTOOLK-10118)

Transfer of DNS Records 1.1.1

  • Internal improvements.

SSL It! 1.12.2

  • Internal improvements.

Site Import 1.6.2

  • Internal improvements.

Repair Kit 1.3.3

  • Internal improvements.

Plesk Obsidian 18.0.43-18.0.49 mod_proxy update

Linux

  • Updated Apache mod_proxy to fix the issue where Apache did not start after an update of httpd to 2.4.6-98 on RHEL 7/CentOS 7/CloudLinux 7. (PPP-59844)

Plesk Migrator 2.23.1

  • Internal improvements.

Git 2.4.0

  • Added the ability to select users who can access a local repository via HTTP/HTTPS.

    Previously, only the system user had access to all repositories in a subscription. You can now select additional users when creating a local repository or changing the settings of an existing one. These users can pull and push to a local repository via HTTP/HTTPS using their credentials.

  • The Git extension now correctly handles moving domains between subscriptions and places the Git directory to the appropriate subscription afterward.

    Note: Moving domains between subscriptions changes the plesk-git directory password because it must be synced with the subscription’s system user password.

Log Browser 1.6.4

  • Internal improvements.

Google Workspace 1.1.3

  • Internal improvements.

Google Drive Backup 1.3.3

  • Internal improvements.

Log Browser 1.6.3

  • The extension no longer sends multiple requests to get the status of any service. (EXTPLESK-4246)

SSL It! 1.12.1

  • Internal improvements.

Google PageSpeed Insights 2.1.9

  • Internal improvements.

Google PageSpeed Insights 2.1.10

  • Internal improvements.

DigitalOcean DNS 1.3.5

  • Internal improvements.

PHP Composer 1.2.4

  • Internal improvements.

Monitoring 2.5.4

  • The extension buttons no longer slow down the rendering of the domain list because they are now loaded asynchronously. (EXTPLESK-4204)

Grafana 1.3.5

  • Internal improvements.

Amazon Route 53 2.8.2

  • The extension no longer produces PHP error messages regarding AWS. (EXTPLESK-4242)

SSL It! 1.12.0

  • Introduced the new main screen, which offers a bird’s view of all domains, installed certificates (if any), the certificates’ expiration dates, and certificate authorities. It is now also possible to filer domains by status (valid, expired, self-signed, and so on) and certificate authority.
  • Recommended extensions and TLS versions are now shown in the “Settings” drawer.

Hosting Plan Exporter 1.0.1

  • Internal improvements.

Advisor 1.9.9

  • Internal improvements.

Log Browser 1.6.2

  • The extension no longer sends false positive Plesk UI notifications. (EXTPLESK-4217)

WP Toolkit 6.1.0

  • Smart PHP Update premium feature is now available. Users can run Smart PHP Update to check how their website will work on a different version of PHP without affecting the production site. This feature is integrated with Plesk Service Plans. To hide this feature, add smartPhpUpdateFeature = false to the corresponding section of the panel.ini file.
  • WP Toolkit Deluxe offer is now available and can be accessed via Plesk Extension Catalog. It currently includes both Smart Updates and Smart PHP Updates. We will continue adding other premium features to this offer in the future.
  • Removed all limits on the number of custom labels you can use.
  • Renamed product to WP Toolkit.
  • Link to PHP version details is no longer lost and is back to its rightful place. (EXTWPTOOLK-9955)
  • Corrected the descriptions for several security measures. (EXTWPTOOLK-10012)
  • Wordfence plugin no longer breaks cloned WordPress installations. (EXTWPTOOLK-9853)

Plesk Obsidian 18.0.49 Update 2

Linux

  • Trying to open Tools & Settings > Interface Management on a Plesk Obsidian server with no mail server installed no longer results in the “500 GraphQL Permission denied” error. (PPPM-13849)
  • After updating to the latest Plesk Obsidian version, the Plesk daily task no longer erases ModSecurity configuration when it runs. (PPPM-13843)

SOGo Webmail 0.1.3

  • User suggestions in calendars are now correctly filtered. (EXTPLESK-4216)

PHP Composer 1.2.3

  • The extension no longer crashes when updating an integration plugin if the Composer utility version is 2.3.9 or higher. (EXTPHPCOMP-209)

PHP Updates

  • Updated PHP 8.2 to version 8.2.1.
  • Updated PHP 8.1 to version 8.1.14.
  • Updated PHP 8.0 to version 8.0.27.

Linux

  • Updated Xdebug to version 3.2.0 for PHP 8.2, 8.1, 8.0.

Action Log 1.2.2

  • The “Filter” panel is now displayed correctly for any display size. (EXTPLESK-2823)

Panel.ini Editor 3.2.6

  • Minor internal improvements.

DigitalOcean DNS 1.3.4

  • Added a warning that indicates that an access token to DigitalOcean no longer meets the latest security requirements. On March 31, the support of legacy access tokens will be discontinued. If you see such warning on the main page of DigitalOcean DNS, generate a new access token and upload it in the extension.

SOGo Webmail 0.1.2

  • Databases on older versions of MySQL and MariaDB are now configured properly, allowing SOGo to be used on CentOS 7.
  • Opening webmail.example.com will no longer greet user with “Web Server’s Default Page”. It will show SOGo login page as expected. Run plesk sbin httpdmng --reconfigure-server to see this change immediately. (EXTPLESK-4198)
  • Packages from Ubuntu 18.04 OS repositories are no longer considered compatible. (EXTPLESK-4199)
  • Installing the extension on an unsupported OS now shows way more readable messages about OS compatibility. (EXTPLESK-4200)

Plesk Obsidian 18.0.49 Update 1

  • Updating to Plesk Obsidian 18.0.49 no longer causes social login buttons to disappear from the login page. (PPP-59460)

Laravel Toolkit 1.4.2

  • Added the ability to run a queue worker on the “Dashboard” tab in the extension interface.

Google Drive Backup 1.3.2

  • Internal improvements.
  • Backing up no longer fails with the “We’re sorry
 but your computer or network may be sending automated queries
” error under specific circumstances. (EXTPLESK-4192)

Plesk Obsidian 18.0.49

  • We are glad to introduce the beta version of the SOGo Webmail extension. SOGo is a groupware server that provides a rich AJAX-based Web interface and offers your users a uniform and complete interface to access their information.
  • Website favicons are now shown next to website names in Plesk to make it easier to tell them apart. To disable this feature, add the following lines to the panel.ini file:

        [domainManagement]
        settings.favicons = false
    

    If no favicon can be found for a website, Plesk automatically generates an icon from the first letter(s) of the domain’s name.

  • It is now possible to add and remove DNS records in a DNS zone via REST API.
  • In Dynamic list, for every user session and individual domain, Plesk now keeps open the tab (“Dashboard”, “Hosting & DNS”, “Mail”) that was last selected manually during the session instead of always reverting to the “Dashboard” tab.
  • When adding a new domain, the “IPv6 address” field can now be prefilled with an IPv6 address. The feature is disabled by default. To enable it, add the following lines to the panel.ini file:

        [domainManagement]
        settings.autoSelectIpv6 = on
    
  • Removed the distracting illustrations that accompanied the “Add Domain” wizard to help you focus on the task at hand.
  • Removing all records from the DNS zone records template no longer results in the “Add Record” button disappearing from the UI. (PPPM-13783)
  • The daily maintenance task no longer runs indefinitely without terminating under specific circumstances. (PPPM-13808)
  • Trying to reset a Plesk administrator’s password via the “Forgot Your Password?” link now results in an email being sent with instructions on resetting the password. (PPPM-12977)
  • It is no longer possible to change a website’s document root to a directory whose name contains one or more white space characters via XML-RPC. (PPPM-13777)
  • Moving a domain between subscriptions no longer results in the domain’s databases becoming unassigned. (PPPM-13780)
  • After uploading one or more files and/or directories using the “upload via URL” option in File Manager, the screen is now refreshed so that the uploaded files and/or directories can be shown. (PPPM-13787)
  • Updating Plesk if the admin/conf/templates/custom directory exists on the server but is empty no longer results in a misleading error message being shown. (PPPM-13806)

Linux

  • Added the ability to run Plesk with a centralized database. The feature is currently in Beta.
  • Added the ability to install extensions for PHP 7.3 and later handlers using PECL. You can manage PHP extensions in Tools & Settings > PHP Settings > choose the desired handler > Manage PECL Packages.

    To disable this feature, add the following lines to the panel.ini file:

        [php]
        pecl.enabled = off
    
  • You can now install ionCube PHP Loader for PHP 8.1 and later using PHP extensions installer.
  • Using NFS shares to store hosted websites’ vhost directories is now supported. To enable this feature, add the following lines to the panel.ini file:

        [webserver]
        syncModeOnRemoveConfiguration = true
    
  • The list of domains in Plesk no longer takes an excessive amount of time to load. (PPPM-13804)
  • Creating a backup of the Plesk server no longer fails under specific conditions. (PPPM-13765)
  • On Debian-based OS, removing the “PHP by OS vendor” component via Plesk Installer no longer results in the /var/lib/php/sessions directory being removed. (PPPM-13781)
  • On Red Hat Enterprise Linux 9, certain CLI utilities no longer fail due to incorrect OS detection. (PPPM-13794)
  • Removing a subscription should no longer result in errors and inconsistencies in the Plesk database if one or more processes owned by the subscription’s system user are running at the moment of removal. (PPPM-13811)
  • Installing the “Comodo (free)” ModSecurity rule set via the CLI no longer fails with the “modsecurity_ctl failed: Failed to download comodo rule set” error. (PPPM-13792)
  • Updating Plesk if the default Plesk directory is a symlink to a different directory should no longer cause issues under specific circumstances. (PPP-59354)

Windows

  • SpamAssassin no longer creates its temporary files in the C:\Windows\Temp directory instead of the proper one. (PPPM-13782)
  • When editing a TXT record in the DNS zone records template, it is no longer necessary to manually select “TXT” from the “Record type” drop-down list. (PPPM-13784)
  • Adding a TXT record to the DNS zone records template no longer fails with the “Field value.type of required type DnsRecordTypeEnum! was not provided” error. (PPPM-13785)
  • Changing the maximum message size in SpamAssassin using the plesk bin spamassassin CLI utility no longer fails. (PPPM-13793)
  • Clicking Refresh on the Tools & Settings > Server Components screen now results in the list of installed components being updated as intended. (PPPM-13797)
  • The “System Health Monitor” service no longer fails if Google Drive for desktop is installed on the server. (PPPM-13800)
  • Specifying port 465 in Tools & Settings > External SMTP Server no longer makes resetting a user’s password via the “Forgot Your Password?” link fail. (PPPM-12755)

Third-Party Component Updates

  • Marked PHP 7.4 as outdated because it has reached end of life and removed it from the “Recommended” preset.

Linux

  • Roundcube 1.5.x and later now runs on PHP 8.0.

Windows

  • .NET 7.0 is now supported.
  • Updated ASP.NET Core 7.0 to version 7.0.1.
  • Updated ASP.NET Core 6.0 to version 6.0.12.
  • Updated ASP.NET Core 3.1 to version 3.1.32.
  • Updated PHP 7.4 to version 7.4.33.
  • Updated PHP used by Plesk to version 7.4.33.
  • Updated Node.js to version 16.18.1.
  • Updated OpenSSL used by Plesk and Plesk Installer to version 1.1.1s.

SOGo Webmail 0.1.1

  • Updated the screenshots.

Log Browser 1.6.1

  • Added a Plesk UI notification shown after a server was restarted for any reason. The notification contains the link to the extension and helps to check if there were no errors and if everything works well after the restart.

SOGo Webmail 0.1.0

  • Initial release.

Plesk Migrator 2.23.0

  • Migration no longer fails to authenticate some Microsoft SQL servers. (PMT-5064)

PHP Updates

  • PHP 8.2.0 is now shipped with Plesk Obsidian 18.0.48 and later on all OSes.

Monitoring 2.5.3

Linux

  • On AlmaLinux 9, the agent360 installation process no longer fails with the “Package “python36-devel” is not available” error. (EXTPLESK-4160)

.NET Toolkit 2.1.1

  • Added the ability to install the ASP.NET Core 7.0 Runtime.
  • Internal improvements.

Laravel Toolkit 1.4.1

  • Internal improvements.
  • Fixed the ‘Attempt to read property “scheduleTaskId” on null’ PHP error. (PPP-59056)
  • Fixed the “Failed to disable scheduled tasks” error, which appeared during a backup restoration. (PPP-59221)
  • Fixed the “Domain does not have PHP support” error, which appeared during a backup restoration. (PPP-59223)

Docker 1.5.5

  • Internal improvements.

SSL It! 1.11.2

  • Internal improvements.

DigitalOcean Spaces Backup 1.0.2

  • Fixed the “PHP Fatal error: Access level to Aws\Api\Parser\RestXmlParser::$parser must be protected” error, which made it impossible to configure remote storage. (EXTPLESK-4148)

PHP Updates

  • Updated PHP 8.1 to version 8.1.13.
  • Updated PHP 8.0 to version 8.0.26.

Log Browser 1.6.0

  • Log Browser now shows the list of all services that exist on the server and their statuses on the “Overview” tab. You can go to the list of log entries related to any specific service with a click.

Amazon S3 Backup 1.4.4

  • Fixed the “PHP Fatal error: Access level to Aws\Api\Parser\RestXmlParser::$parser must be protected” error, which made it impossible to configure remote storage. (EXTPLESK-4123)

WP Toolkit 6.0.1

  • Updated hints about limitations of non-private labels
  • Forced autoupdate policies are now correctly applied again. (EXTWPTOOLK-9917)
  • Smart Updates purchase link is no longer leading to a non-existent page. (EXTWPTOOLK-9914)

Google Authenticator 1.5.3

  • Updated PHP dependencies.

Advisor 1.9.8

  • Updated the minimal supported PHP version.
  • The extension now correctly validates the password strength policy. (EXTADVISOR-915)

WP Toolkit 6.0.0

  • WordPress Toolkit now provides REST API for the majority of its features. To learn more about REST API, find the corresponding option in the Global Settings on cPanel, or in the Tools & Settings > Remote API on Plesk.
  • Website labels can now be customized:
    • All labels now require users to input a label text. Time to get creative!
    • Labels can have different colors (chosen from a predefined palette)
    • Labels can be private (visible only to the person who adds the label) or non-private (visible to and manageable by everyone who can access the site in WPT)
    • Several private labels (up to five) can be added to a single WP site at once
    • Existing labels were converted to non-private labels with the same text (their color is a bit different, though)
  • Server administrators can turn off email notifications sent by WordPress to site administrators after the initial WordPress installation. This can be done in Global Settings for the whole server.
  • wp-cli utility was updated to version 2.7.
  • (Plesk) WP Toolkit now supports AlmaLinux 9 & RHEL 9 on Plesk.
  • When working with legacy database servers, utf8mb4 symbols will be processed correctly.
  • Fixed misprint in the Smart Updates promo text (because we could, not because anyone cared). (EXTWPTOOLK-9742)
  • Certain badly coded plugins can no longer break WP Toolkit with TypeError error after certain operations. (EXTWPTOOLK-9681)
  • File Editor link now works properly in the Maintenance Mode customization dialog. (EXTWPTOOLK-9619)
  • Confusing error messages no longer should appear in the log files (depends on whether you are literate or not, though). (EXTWPTOOLK-9605)
  • Database no longer becomes corrupted under certain (admittedly rare) circumstances after cloning or copying data. (EXTWPTOOLK-9604)
  • Cloned site created by Smart Update is now properly deleted if Smart Update fails. (EXTWPTOOLK-9354 / EXTWPTOOLK-9505)
  • WP Toolkit now better detects whether a plugin update was actually installed without errors in case of certain stubborn plugins. (EXTWPTOOLK-9193)
  • (Plesk) Corrected security status message shown under certain rare circumstances. (EXTWPTOOLK-9638)
  • (Plesk) Plesk installer no longer fails with exit code 1 when uninstalling WP Toolkit (boo!). (EXTWPTOOLK-9331)
  • (Plesk) Dynamic list no longer shows incorrect WordPress installations in “WordPress” tab. (EXTWPTOOLK-9901)

Let's Encrypt 3.1.2

  • Internal improvements.

Monitoring 2.5.2

  • Now correct values are shown when the “cloudMaxWebsites” limit is set. (EXTPLESK-4056)

PHP Updates

  • Updated PHP 7.4 to version 7.4.33.

Log Browser 1.5.0

  • Added the ability to see the Panel logs (/var/log/plesk/panel.log).
  • Now Log Browser allows to filter logs for failed systemd services too. (EXTPLESK-4017)
  • Priority icons are now present for all records. (EXTPLESK-3960)
  • It is now possible to select stopped services in the filter. (EXTPLESK-4041)

Laravel Toolkit 1.4.0

  • Added the “Access to Laravel Toolkit” permission to service plans.

.NET Toolkit 2.1.0

  • Added the “Access to .Net Toolkit” permission to service plans.

Plesk Obsidian 18.0.48

  • Enhanced the Help menu to make it easier to find Help articles. It is now possible to browse them by categories and search for them directly from the Plesk interface.
  • Added the “Access to Laravel Toolkit” and “Access to .Net Toolkit” permissions to service plans. The respective permissions allow customers to use Laravel Toolkit and .Net Toolkit for their websites.
  • The Plesk Repair feature in the UI (“Repair All” in Tools & Settings > Diagnose & Repair) and the CLI (plesk repair web) now repairs all websites without making all of them unavailable. Only the website with issues goes offline until it is repaired.
  • A custom sender address no longer blocks Plesk notifications from being delivered to certain mail servers (for example, Amazon Simple Email Service). (PPPM-13719)
  • It is now possible to change custom email addresses of recipients for Plesk automatic email notifications. (PPPM-13769)
  • Backup restoration no longer fails because of a big configuration file of an extension (more than 10 MB) contained in a backup. (PPPM-13707)
  • It is no longer possible to create an additional administrator password that will not work because it contains unsupported characters. (PPPM-13756)
  • Plesk again prevents the administrator from removing the only NS record from the DNS zone when DNS is disabled. (PPPM-13774)
  • Domain Log Browser no longer crashes if the passenger.log file of a domain is too big (200 MB or more). (PPPM-13698)
  • If a reseller does not have the “Hosting settings management” permission, creating an add-on domain for the customer’s subscription no longer unsyncs it. (PPPM-12083)
  • Help us to make Dynamic List view better by sharing your thoughts in this survey.

Linux

  • Added support for AlmaLinux 9 and Red Hat Enterprise Linux 9.
  • The Plesk administrator can now install PECL extensions for Plesk and system PHP handlers via the CLI. To see the exact commands, run plesk bin php_handler –-help.

    Note: It is possible to install only those extensions that do not require additional dependencies and are not already provided by Plesk or system packages of the OS vendor.

  • Dropped support for Ubuntu 20.04 LTS on the ARM architecture. You can use Ubuntu 22.04 LTS instead.
  • Updating Plesk on Cloud images from Ubuntu 20.04 to Ubuntu 22.04 LTS. The update will take place gradually after release 18.0.48.
  • It is now possible to update Plesk even if some repositories are unavailable. Plesk Update Manager detects and can ignore broken repositories if they are not essential for Plesk to work.
  • Removing a PHP handler used by a website no longer blocks users from managing PHP settings. Plesk now also informs about the broken PHP handler on the “PHP settings” screen of the affected domain, in Tools & Settings > PHP settings, and via Plesk UI notifications.
  • In Fail2ban, it is now possible to add descriptions to trusted IP addresses.
  • Security improvements. Special thanks to Patrick William (rack911labs.ca) for reporting the issues.
  • The -drop-if-exists option of the plesk bin ipmanage --auto-remap command can now reuse IP addresses that already exist in the Plesk database. (PPPM-13467)
  • Manual remapping to IP addresses that already exist with a different netmask in the Plesk database no longer fails with an integrity constraint error. (PPPM-13506)
  • Improved how Plesk syncs the spam filter sensitivity value between the Plesk database and the UI:
    • The UI does not show the default value if it is missing from the database.
    • The plesk repair mail utility sets the default value in both the database and the UI. (PPPM-7118)
  • Plesk no longer fails to secure mail with an SSL/TLS certificate if the default locale is changed and the Postfix configuration file contains UTF-8 characters. (PPPM-13743)
  • Plesk Installer no longer shows a warning about the missing amazon-id plugin if it is not installed. (PPPM-13760)
  • Plesk no longer fails to create a PostgreSQL database if the database name and database user name differ only by a prefix (for example, test and prefix_test respectively). (PPPM-13768)
  • Improved the “terminate called without an active exception” error message shown when, under certain circumstances, installation of an application package fails. (PPPM-13730)
  • Plesk logs no longer contain multiple Sanitizer errors that could appear after a Plesk license key was updated. (PPPM-13762)
  • Plesk Firewall now shows a warning that enabling the firewall or applying its changes will overwrite firewall rules added manually via iptables. (PPPM-12190)
  • Backing up can no longer fail with the ‘Document is empty, line 1, column 1 (, line 1)’ and ‘None (line 0)’ errors. (PPPM-13765)

Windows

  • Installing the Kaspersky Anti-Virus SDK component (former Kaspersky Anti-Virus) now also automatically installs the Kaspersky Anti-Virus for Servers extension. This change helps to avoid confusing UX when the antivirus tab is not shown in the mailbox menu because the component is installed while the extension is not. (PPPM-13753)

Third-Party Component Updates

  • Updated PHP used by Plesk to version 7.4.32.
  • Updated OWASP ModSecurity CRS to version 3.3.4.

Linux

  • Updated ModSecurity 3.0 to version 3.0.8.
  • Updated ModSecurity 2.9 to version 2.9.6.

Windows

  • Updated Node.js 16 to version 16.17.1.
  • Updated MailEnable Standard to version 10.42.
  • Updated ASP.NET Core 6.0 to version 6.0.10.
  • Updated ASP.NET Core 3.1 to version 3.1.30.
  • Updated BIND to version 9.16.33.
  • Updated zlib to version 1.2.13.

PHP Updates

  • Updated PHP 8.1 to version 8.1.12.
  • Updated PHP 8.0 to version 8.0.25.

Monitoring 2.5.1

  • It is no longer possible to bypass the cloudMaxWebsites limit via the CLI. (EXTPLESK-4031)
  • It is again possible to save thresholds. (EXTPLESK-4022)

Action Log 1.2.1

  • The “Action Log” link on the “Tools & Settings” page now always leads to the extension main page. (EXTPLESK-4038)

Plesk Obsidian 18.0.47 Update 5

  • DNS events are now logged correctly again. (PPPM-13766)

Monitoring 2.5.0

  • Internal improvements.

Monitoring 2.4.1

  • Monitoring version 2.4.1 will be the last Monitoring update that supports Plesk versions older than Plesk 18.0.41. To continue receiving Monitoring updates with bugfixes and new features, please update your Plesk installation to version 18.0.41 or higher.
  • Logging in to Plesk Obsidian 18.0.35 and earlier with Plesk Monitoring 2.4.0 installed no longer fails with the “Your Composer dependencies require a PHP version >= 7.4.0” error. (EXTPLESK-4019)

Monitoring 2.4.0

  • It is now possible to mark websites that are already being monitored by another service or application.
  • It is now possible to enable website monitoring right from the domain card if 360 Monitoring integration has been configured.
  • Commands run via the CLI interface no longer ignore the maximum websites limit for 360 Monitoring. (EXTPLESK-3988)
  • Updated the message being shown when attempting to set up integration with 360 Monitoring in Plesk with a license other than WebPro or WebHost to suggest the correct course of action. (EXTPLESK-3929). (EXTPLESK-4019)

Git 2.3.2

  • The extension now updates correctly again. (EXTGIT-267)

Plesk Obsidian 18.0.47 Update 4

  • Now Plesk Backup Manager can again open a server backup that has customers or resellers with names that contain non-ASCII characters. (PPPM-13757)

Windows

  • Running the plesk repair fs -plesk-files-consistency command no longer results in the “There are corrupted files in plesk-python3-package.list” error. (PPPM-13758)
  • It is now again possible to open Plesk Backup Manager under an administrator account and get the list of server backups via PMMCli. (PPPM-13754)

LDAP Auth 2.1.3

  • Fixed AD authentication via SSL:TLS. (EXTPLESK-3999)

Git 2.3.1

  • Fixed the issue with pulling from remote repositories. (EXTGIT-265)

Git 2.3.0

  • Added support for multiple deploy keys for each domain.

Plesk Migrator 2.22.4

  • Running the apt update command on a Plesk server with both the Plesk Migrator and Site Import extensions installed no longer results in a large number of unnecessary warning messages. (PMT-4794)

Plesk eCommerce Toolkit 1.3.1

  • A misleading error message is no longer shown after installing the extension in Plesk for Windows. (EXTPLESK-4000)

Plesk Obsidian 18.0.47 Update 3

Linux

  • Custom favicons are no longer reset to the default ones after upgrading Plesk to version 18.0.47. (PPPM-13749)

Plesk Migrator 2.22.3

  • Migration of MySQL/MariaDB databases from Windows servers no longer fails. (PMT-5056)

Log Browser 1.4.0

  • Removed the classic pagination. Now new log records appear when you click the “Show more records” buttons at the beginning and at the end of the list.
  • Now you can set a date starting from which the selected number of log records will be displayed.
  • The extension now works faster because it retrieves only a fair number of log records instead of retrieving them all from the server. (EXTPLESK-3898)
  • The filter panel now takes less space on the screen.
  • The filter by message now works correctly on Debian 10 and Ubuntu 18. (EXTPLESK-3902)
  • The filter by source on the “Mail” tab now again displays values. (EXTPLESK-3904)

Plesk Obsidian 18.0.47 Update 2

  • Creation of a remote backup with the enabled “Create a multivolume backup, volume size (MB)” option no longer results in the “Error: The backup process failed: expected str, bytes or os.PathLike object, not int” error. (PPPM-13739)

PHP Updates

  • Updated PHP 8.1 to version 8.1.11.
  • Updated PHP 8.0 to version 8.0.24.
  • Updated PHP 7.4 to version 7.4.32.

htaccess to nginx 1.1.2

  • The extension no longer produces errors in the console and does not block auto-filling of the “Docroot” field. (EXTPLESK-3973)

Plesk Migrator 2.22.2

  • Migration of MySQL/MariaDB databases from DirectAdmin servers or custom panel Linux servers no longer fails with the “Permission denied” error. (PMT-5055)

Plesk Obsidian 18.0.47 Update 1

  • WordPress Toolkit now works correctly with all locales. (PPPM-13735)

Linux

  • Creation of a domain backup no longer fails when the “Exclude log files” or “Exclude specific files from the backup” options are enabled. (PPPM-13733)

Plesk Obsidian 18.0.47

  • When using the Laravel Toolkit extension, the “Install Composer.json dependencies” step during application deployment is now optional and can be skipped.
  • Added the ability to integrate Plesk with different webmail clients to the Plesk SDK.
  • Security improvements. Special thanks to Theologos Kokkinellis for reporting the issue.
  • Added the ability to see entries from .NET applications’ logs in Plesk Log Viewer to the .NET Toolkit extension.
  • After renaming a subscription, the subscription’s old name no longer keeps showing up in Laravel Toolkit. (PPP-57840)
  • Plesk database inconsistencies no longer result in a blank page when clicking on a subscription. (PPP-58132)
  • When opening the “Limit Outgoing Messages” window for one or more mailboxes, human-readable text is now shown instead of placeholders. (PPPM-13669)
  • Trying to open the Tools & Settings > Database Servers page when there are inconsistencies in the Plesk database no longer results in being redirected to the Home page without an error message. (PPPM-13685)
  • In Service Provider View, it is once again possible to close the “Add Domain” drawer by clicking the cross icon in the upper right corner. (PPPM-13706)
  • It is now possible to see the log check results for more than ten websites at once when using the “Website Log Check” feature. (PPPM-13684)
  • Custom page titles containing the hyphen (-) character are no longer cropped. (PPPM-12271)
  • Plesk has changed its trial license limits on September 27. All trial licenses created after that date will be limited to managing three (or less) of the following: domains, domain aliases, mailboxes, mail accounts, user accounts, and web users. You can purchase non-trial Plesk licenses without these limitations.

Linux

  • Plesk Obsidian is now available as a cloud image on the Oracle Cloud Marketplace. The image is based on Ubuntu 22 and uses the ARM CPU architecture to lower hosting costs.
  • Published a new Plesk Obsidian cloud image on Amazon Marketplace. The image is based on Ubuntu 22 and uses the ARM CPU architecture to lower hosting costs.
  • On CentOS 8 servers, creating an additional FTP account for a domain no longer results in incorrect ownership being set on the domain’s files and directories. (PPPM-12524)
  • The “Default domain, DNS zone of domain alias updated” Event Manager event no longer fires when the DNS zone of the primary domain is modified, but the option “Synchronize DNS zone with the primary domain” for that domain’s alias is switched off. (PPPM-13646)
  • Running the plesk repair mail -y command no longer adds unnecessary entries to the data.db file. (PPPM-13693)
  • Updating from Plesk Onyx to Plesk Obsidian no longer fails with the “Exception: Failed to solve dependencies” error because one or more necessary repositories are not configured. (PPPM-10923)
  • Installing Plesk Obsidian on a Red Hat Enterprise Linux 8 server using Amazon RHUI repositories no longer fails with the “Failed to check system configuration” error. (PPPM-12538)
  • Opening Log Browser no longer results in an endless “loading” screen under specific circumstances. (PPPM-13697)
  • Specifying a custom sender address for Plesk email notifications in the panel.ini file is now correctly used in notification emails. (PPPM-13686)
  • A comprehensible error message is now shown when updating Plesk fails because there are one or more unsupported repositories configured on the server. (PPPM-13716)
  • On Debian-based servers, the fsmng command line utility no longer fails when run. (PPPM-13691)
  • On Ubuntu 22 servers, enabling the pagespeed module via the plesk sbin nginx_modules_ctl -e pagespeed command no longer results in an error. (PPPM-13699)
  • Applying changes made to the SOA template no longer also applies the default DNS template to domains with custom DNS records. (PPPM-12685)
  • When adding one or more custom headers to a website, the trailing double quote (“) character is no longer removed. (PPPM-13695)
  • On Ubuntu 22 servers, connecting to websites over SSL/TLS via PHP code no longer fails with the “OpenSSL Error messages: error:0A000126:SSL routines::unexpected eof while reading” error. (PPPM-13710)
  • When creating a domain with mail service or adding mail service to a domain, mail service creation no longer fails with the “ERROR:main:UNIQUE constraint failed” error. (PPPM-12229)
  • Installing Plesk with MariaDB 10.6 inside a Virtuozzo container no longer fails. (PPPM-13640)

    **Note:** Plesk Obsidian is installed inside a Virtuozzo container with MariaDB 10.3. To use a different MySQL implementation, pre-install it before installing Plesk.
    
  • When updating to Plesk Obsidian 18.0.46, the awstats-icon alias is now correctly updated for websites set as default sites for one or more IP addresses. (PPPM-13703)
  • Running the apt update command after an unsuccessful attempt to install a Plesk extension no longer fails. (PPP-58250)
  • The “Remove alias” button is now shown for all mail aliases belonging to a mailbox, including the first one in the list. (PPPM-13721)

Windows

  • The .NET Toolkit extension is now available in Plesk for Windows.
  • Running the plesk bin repair --web -sslcerts command now correctly repairs webmail SSL certificates. (PPP-57692)
  • Renaming a subscription now fails with a human-readable error message if the home directory for one or more of that subscription’s additional FTP accounts is missing. (PPPM-13657)
  • When updating a Plesk Obsidian server with the Git extension installed to the latest version, the misleading “ERROR: The process “git-cmd.exe” not found.” error message is no longer shown. (PPPM-13688)
  • On Plesk servers with a custom favicon configured, updating to the latest Plesk version no longer results in it being replaced with the default one. (PPPM-13705)

Third-Party Component Updates

Linux

  • Updated Courier-IMAP to version 5.1.8.
  • Updated Roundcube to version 1.6.0.
  • Updated ProFTPD to version 1.3.7e.
  • Updated libcurl to version 7.85.0.
  • Updated Turba to version 4.2.29.

Windows

  • Updated MariaDB 10.6 to version 10.6.9.
  • Updated MariaDB 10.5 to version 10.5.17.
  • Updated MariaDB 10.3 to version 10.3.36.
  • Updated boost to version 1.80.0.

Let's Encrypt 3.1.1

  • The extension now shows correct error messages if the Let’s Encrypt service returns some errors. (EXTLETSENC-1171)

Plesk Obsidian 18.0.46 Update 2

  • When clicking checkboxes, they are now selected or cleared correctly again. (PPP-58373)

.NET Toolkit 2.0.0

Windows

  • Plesk for Windows is now supported.
  • Added log viewing of ASP.NET Core applications for Plesk 18.0.47 and later.

Node.js 2.2.1

Linux

  • Added the “NodeJS” option to the domain/subscription creation wizard.

Monitoring 2.3.8

  • Internal improvements.

Site Import 1.6.1

  • Site import no longer fails with the “Character set ‘utf8mb4’ is not a compiled character set” error when migrating from outdated MySQL/MariaDB servers. (PMT-5050)

Plesk Migrator 2.22.1

  • Migration no longer fails with the “Character set ‘utf8mb4’ is not a compiled character set” error when migrating from outdated MySQL/MariaDB servers. (PMT-5050)

Let's Encrypt 3.1.0

  • Internal improvements.

Let's Encrypt 3.0.1

  • Let’s Encrypt 3.0.1 is the last Let’s Encrypt update that supports Plesk version 18.0.35 and earlier. To continue receiving the Let’s Encrypt extension’s updates with bugfixes and new features, update your Plesk to version 18.0.36 or later.

Repair Kit 1.3.2

  • The “Diagnose & Repair” screen in “Tools & Settings” now shows check results correctly if the extension found some issues. (EXTPLESK-3546)

Kaspersky Anti-Virus for Servers 8.5.1-64

  • Disabling the extension now also disables the Kaspersky service.

Joomla! Toolkit 2.5.2

  • Updating Joomla! 4.2.0 to later versions no longer fails with the “Class ‘Joomla\Plugin\Behaviour\Taggable\Extension\Taggable’ not found” error. (EXTPLESK-3944)

htaccess to nginx 1.1.1

  • The extension now again works in Plesk Obsidian 18.0.44 and later. (EXTPLESK-3765)

Plesk Obsidian 18.0.46 Update 1

  • It is now again possible to add a CNAME record with underscore symbols on the “DNS Settings” screen. (PPP-58251)

Plesk DNSSEC 1.3.0

  • Updated translations.
  • The DNSSEC button is shown under Hosting & DNS tab instead of section “Dev Tools” (EXTDNSSEC-90)

PHP Updates

  • Updated PHP 8.1 to version 8.1.10.
  • Updated PHP 8.0 to version 8.0.23.

Node.js 2.2.0

Linux

  • The extension now supports the ARM architecture.

Log Browser 1.3.3

  • Significantly improved the extension’s performance.

Site Import 1.6.0

  • Website content is no longer corrupted during migration when UTFmb4 characters are used. (PMT-5047)

Linux

  • The extension can now be installed on Plesk servers running on Red Hat Enterprise Linux 9.

Plesk Migrator 2.22.0

  • Website content is no longer corrupted during migration when UTFmb4 characters are used. (PMT-5047)

Linux

  • The extension can now be installed on Plesk servers running on Red Hat Enterprise Linux 9.

Docker 1.5.4

  • Internal improvements.

WordPress Toolkit 5.12.3

  • Site Kit plugin from Google was added to a number of default sets.
  • Site administrators running their WordPress sites on PHP 8.0 and higher can now log in to WordPress admin from WordPress Toolkit even if certain unruly or buggy plugins are active on these sites. (EXTWPTOOLK-9070)

Slave DNS Manager 1.10.2

  • Plesk Search no longer shows placeholders for Slave DNS Manager pages. (EXTPLESK-1040)
  • The extension no longer uses the -clean flag to manage BIND version 9.10 and earlier. (EXTPLESK-2647)

Plesk Obsidian 18.0.46

  • A number of improvements were made to the Laravel Toolkit extension:

    • Added the ability to turn maintenance mode off (php artisan down) and on (php artisan up) on the “Dashboard” tab in the extension interface.
    • Added the ability to automatically turn maintenance mode on and off for the duration of the application deployment.
    • Added the ability to manage deployment steps of the application on the “Deployment” tab in the extension interface.
    • Added the ability to switch between the automatic and manual deployment modes of the application on the “Dashboard” tab in the extension interface.

      If you select the automatic deployment mode, the application will be automatically deployed after a push to the repository (if the repository is local) or a webhook call (if the repository is remote). If you select the manual deployment mode, the application will be deployed when you click the Deploy button in the Laravel Toolkit or the Git extension interface.

    • A single webhook is now used for the Git and Laravel Toolkit extensions.
  • A number of improvements were made to the Git extension:

    • The extension now deploys files to production websites asynchronously if the deployment was triggered by a webhook.
    • Added the run-actions option to the createand update API methods, which enable/disable execution of additional deployment actions.
    • Added the async-deploy method to the CLI and XML API. The method invokes the asynchronous deployment of files to the production website.
    • Fixed removal of additional deployment actions after disabling them in the Plesk interface.
  • A number of improvements were made to the Transfer of DNS Records extension:

    • It is now possible to perform DNS record lookup.
    • The extension now supports DNS templates for the Google Workspace and Office 365 services.
    • Improved DNS records import algorithm.
    • Running the import CLI command no longer fails in Plesk on CentOS.
  • A number of improvements were made to the Plesk Mobile Center extension:

    • Added support for Android 13.
    • Improved work with the mobile version of Plesk.
    • Improved app stability.
    • Fixed bugs related to the accessibility of the Plesk extension logs.
    • (Plesk for Linux) Fixed the issue where logs for the latest Plesk versions were not displayed.
  • Added the “Reset admin’s password on the next login” checkbox (cleared by default) to the Plesk initialization screen.
  • Added the ability to hide the entire “Assistance & Troubleshooting” section of the Tools & Settings menu in Restricted Mode.
  • When a subdomain for a website with a resolvable domain name is created, SSL It! now waits for the subdomain name to become resolvable as well before trying to secure it with a Let’s Encrypt SSL certificate. This prevents situations where a newly created subdomain could not be secured with the “The domain is not resolvable” error. (PPPM-12892)
  • The “Interface Controls Visibility” tab has been removed from the Tools & Settings > “Interface Management” menu because most of the controls found on the tab were obsolete. The “Hide controls for rejection messages for non-existent mail addresses” checkbox has been renamed to “Hide bounce controls” and moved to the “Interface Views” tab.
  • Updated the appearance of pie charts used to show domains’ disk and traffic usage information.
  • Updated the interface of the Tools & Settings > Services Management menu to make it easier to read the current status of services at a glance. (PPPM-13598)
  • Incremental server backups created in remote storage no longer take an unreasonably long time to finish. (PPPM-13635)
  • Creating a subscription using a private IPv6 address mapped to a public IP address in Tools & Settings > IP Addresses no longer results in the private IP address being used in the domain’s DNS records instead of the public IP address. (PPPM-13650)
  • Removing a user with the “WebMaster” role no longer fails with the “Error 500: Unable to find instance with id in database” message. (PPPM-13655)
  • Sorting scheduled tasks in Tools & Settings > Scheduled Tasks (Cron jobs) by “Schedule” now works properly. (PPPM-13661)
  • The plesk db command line utility no longer uses the --no-defaults option when calling the mysql or mysqldump commands. (PPPM-10414)
  • It is no longer possible to create a CNAME DNS record using an IP address as the canonical name. (PPP-57900)

Linux

  • We are glad to introduce the production version of the .NET Toolkit extension. Added the following improvements to the extension:

    • It is now possible to manage installed versions of the ASP.NET Core Runtime.
    • It is now possible to create a website running on ASP.NET Core with just a few clicks (Websites & Domains > Add Domain > .NET site).
    • Added the ability to restart the application.
    • .NET Toolkit configuration is now included in Plesk backups.
  • A number of improvements were made to the Log Browser extension:

    • It is now possible to view the systemd/journalctl logs in the Plesk interface.
    • The extension can now filter logs by priority.
    • Redesigned the log filter form.
    • The extension now uses journalctl as the default source of mail logs.
  • We are glad to announce official support of ARM-based servers:

    • Plesk can now be installed on ARM-based servers running on Ubuntu 22.
    • The SSH Terminal extension can now run on ARM-based servers.
    • SFTP Backup can now run on ARM-based servers.
  • nginx shipped with Plesk is now compiled with ngx_http_geoip2_module out of the box. This makes it possible to use MaxMind Geo IP databases to detect visitor’s geographical location by their IP address. This, in turn, makes it possible to limit access to websites to visitors from certain countries, or to automatically redirect them to country-specific URLs.
  • The plesk repair sysusers CLI utility can now be used to repair system users on Plesk for Linux servers.
  • Reports sent by Watchdog by mail no longer arrive incomplete if the report length exceeds 131072 chatacters. (PPPM-13474)
  • Running the plesk repair web command no longer produces an error for every disabled Apache PHP module if the mpm_event module is enabled. (PPPM-13512)
  • AWStats now correctly calculates the stats for the last day of the month if nginx is disabled on the server. (PPPM-13568)
  • On Plesk servers running on Red Hat Enterprise Linux 8 and its derivatives with the Extra Packages for Enterprise Linux (EPEL) repository configured, running the dnf update command now properly updates the “plesk-phpXX-imagick” packages. (PPPM-13570)
  • Plesk Premium Antivirus no longer fails to start on Plesk servers with TLSv1.x protocols disabled for the Plesk web server. (PPPM-13576)
  • On Plesk servers running on Red Hat Enterprise Linux 8 and its derivatives with the Extra Packages for Enterprise Linux (EPEL) repository configured, installing AWStats packages from the EPEL repository no longer results in AWStats being non-functional.(PPPM-13617)

    Note: If you have disabled the installation of AWStats packages from the EPEL repository, you need to undo the changes, or else future Plesk updates will fail.

  • Restoring one or more subscriptions from backup that had their hosting type changed from forwarding to physical hosting after the backup was created no longer results in unnecessary email notifications. (PPPM-13630)
  • Misleading “Warning: Extension “Laravel Toolkit” Unable to back up extension.” message is no longer shown when creating a backup on a Plesk server with the Laravel Toolkit extension installed. (PPPM-13632)
  • Disabling the DNS service for a domain no longer removes the Add Record button in Hosting & DNS > DNS Settings. (PPPM-13643)
  • The Event Manager “Default domain, DNS zone of domain alias updated” event no longer triggers when the DNS zone of a domain with one or more domain aliases with the “Synchronize DNS zone with the primary domain” option disabled is modified. (PPPM-13646)
  • Postfix shipped with Plesk is once again compiled with MySQL support. (PPPM-13665)
  • Removing a mail address from SpamAssassin’s black or white list in Plesk no longer results in the address being removed from the list in Plesk but not in the SpamAssassin’s configuration files. (PPPM-13670)
  • It is once again possible to send mail without authentication using the sendmail -bs command. (PPPM-13584)
  • Emoji characters stored in MySQL databases are now backed up and restored properly. (PPPM-10414)
  • Starting from Plesk 18.0.48 (November 8th, 2022), Ubuntu 20.04 LTS on the ARM architecture will no longer be supported.

    We do recommend that you either migrate to a supported OS using Plesk Migrator or run dist-upgrade to upgrade your Ubuntu 20.04 instance.

Windows

  • Node.js 16 is now supported.
  • To help Plesk users in India comply with the new data law, Plesk now provides a script that can be used to copy Plesk log files to a different server for long-term storage. Learn more and download the latest version of the script here.
  • Internal server errors caused by running PHP CLI utilities are now caught and reported properly. (PPP-57663)
  • Renaming a subscription whose main domain is disabled no longer makes the domain’s directory inaccessible for additional FTP users. (PPPM-13654)
  • Scheduled backups no longer result in an email notification warning about the “Extra content at the end of the document” error being sent under specific circumstances. (PPPM-9405)

Third-Party Component Updates

Linux

  • Updated sw-engine PHP to version 7.4.30.
  • Updated Roundcube to version 1.5.3 (for OSes other than Red Hat Enterprise Linux 7, CentOS 7, CloudLinux 7.1, and Ubuntu 18.04).
  • Updated Dovecot and Pigeonhole to versions 2.3.19.1 and 0.5.19, respectively.
  • Updated RRDtool to version 1.8.0.

Windows

  • Updated Node.js 16 to version 16.16.0.
  • Node.js 4, 6, 8, 10, and 12 are no longer shipped with Plesk.
  • Updated ASP.NET Core 6.0 to version 6.0.8.
  • Updated ASP.NET Core 3.1 to version 3.1.28.
  • Updated libcurl to version 7.84.0.

SSL It! 1.11.1

  • Internal improvements.

Log Browser 1.3.2

  • The extension again works in Plesk versions 18.0.45 and earlier. In Plesk 18.0.46 and later, it is possible to access the extension if access to the “Assistance and Troubleshooting” section is enabled in Tools & Settings > Restricted Mode Settings (under “Plesk”). (EXTPLESK-3834)

Laravel Toolkit 1.3.0

  • Added the ability to turn maintenance mode off (php artisan down) and on (php artisan up) on the “Dashboard” tab in the extension interface.
  • Added the ability to automatically turn maintenance mode on and off for the duration of the application deployment.
  • Added the ability to manage deployment steps of the application on the “Deployment” tab in the extension interface.
  • Added the ability to switch between the automatic and manual deployment modes of the application on the “Dashboard” tab in the extension interface.

    If you select the automatic deployment mode, the application will be automatically deployed after a push to the repository (if the repository is local) or a webhook call (if the repository is remote). If you select the manual deployment mode, the application will be deployed when you click the Deploy button in the Laravel Toolkit or the Git extension interface.

  • A single webhook is now used for the Git and Laravel Toolkit extensions.

Git 2.2.0

  • The extension now deploys files to production websites asynchronously if the deployment was triggered by a webhook.
  • Added the run-actions option to the createand update API methods, which enable/disable execution of additional deployment actions.

    To enable/disable execution of additional deployment actions via the CLI, run the following commands:

    # enables execution of additional deployment actions for the "repo-example" repository on the domain "example.com"
    plesk bin extension --call git --update -domain example.com -name repo-example -run-actions false
      
    # disables execution of additional deployment actions for the "repo-example" repository on the domain "example.com"
    plesk bin extension --call git --update -domain example.com -name repo-example -run-actions true
    

    To enable/disable execution of additional deployment actions via the XML API, run the following commands:

    <!-- enables execution of additional deployment actions for the "repo-example" repository on the domain "example.com" -->
    <packet><extension><call><git><update><domain>example.com</domain><name>repo-example</name><run-actions>true</run-actions></update></git></call></extension></packet>
     
    <!-- disables execution of additional deployment actions for the "repo-example" repository on the domain "example.com" -->
    <packet><extension><call><git><update><domain>example.com</domain><name>repo-example</name><run-actions>false</run-actions></update></git></call></extension></packet>
    
  • Added the async-deploy method to the CLI and XML API. The method invokes the asynchronous deployment of files to the production website.

    To asynchronously deploy files to the production website via the CLI, run the following command:

    plesk bin extension --call git --async-deploy -domain example.com -name repo-example
    

    To asynchronously deploy files to the production website via the XML API, run the following command:

    <packet><extension><call><git><async-deploy><domain>example.com</domain><name>repo-example</name></async-deploy></git></call></extension></packet>
    
  • Fixed removal of additional deployment actions after disabling them in the Plesk interface.

.NET Toolkit 1.2.0

  • It is now possible to create a website running on ASP.NET Core with just a few clicks (Websites & Domains > Add Domain > .NET site).
  • It is now possible to manage installed versions of the ASP.NET Core Runtime.
  • Added the ability to restart the application.

PHP Updates

  • Updated PHP 8.1 to version 8.1.9.
  • Updated PHP 8.0 to version 8.0.22.

WordPress Toolkit 5.12.2

  • WordPress Toolkit no longer takes waaay too much time to load the list of WordPress installations. (EXTWPTOOLK-9580)

Repair Kit 1.3.1

  • Added the ability to hide the “Assistance & Troubleshooting” section of the “Tools & Settings” menu for restricted admin accounts.

Plesk Mobile Center 1.19

  • Added support for Android 13.
  • Improved work with the mobile version of Plesk.
  • Improved app stability.
  • Fixed bugs related to the accessibility of the Plesk extension logs.

Linux

  • Fixed the issue where logs for the latest Plesk versions were not displayed. (PMBL-630)

Plesk eCommerce Toolkit 1.3.0

  • Added automatic backup and restore features for all stores with active licenses.
  • Updated translations of all supported languages.
  • Improved how obsolete stores are deleted.
  • Optimised code for better performance and error mitigation.

Transfer of DNS Records 1.1.0

  • It is now possible to perform DNS record lookup.
  • The extension now supports DNS templates for the Google Workspace and Office 365 services.
  • Improved DNS records import algorithm.
  • Running the import CLI command no longer fails in Plesk on CentOS. (EXTPLESK-3504)

WordPress Toolkit 5.12.1

  • WordPress Toolkit no longer breaks down with InternalServerError in case of internal database inconsistency. (EXTWPTOOLK-9555)
  • WordPress Toolkit now properly works again with customized wp-config.php files. (EXTWPTOOLK-9559)

WordPress Toolkit 5.12.0

  • Added new optional security measure that disables WordPress XML-RPC (blocks all requests to xmlrpc.php).
  • Dynamic list now displays WordPress Toolkit icons in the list item headers for all domains with WordPress sites.
  • WordPress Toolkit now fully works on ARM64 architecture (currently supported by Ubuntu 20).
  • Autoupdate tasks now work much faster if there are quarantined installations on the server.
  • WordPress Toolkit database inconsistencies no longer break WordPress installations list. (EXTWPTOOLK-9429)
  • Clone and Copy Data now properly work on ARM64. (EXTWPTOOLK-9174)
  • Install button is no longer missing for some users under certain circumstances. (EXTWPTOOLK-9314)
  • Wrong WordPress installations are no longer shown on Installations tab when WordPress Toolkit is opened via Search. (EXTWPTOOLK-9403)

Mail Log Browser 1.2.2

  • Mail Log Browser v1.2.2 will be the last Mail Log Browser update that supports Plesk versions older than Plesk 18.0.41. To continue receiving Mail Log Browser updates with bugfixes and new features, please update your Plesk installation to version 18.0.41 or higher.

Log Browser 1.3.1

  • The extension no longer behaves incorrectly if any systemd/journalctl log files contain one or more non UTF-8 characters, non-printable characters, or very long messages. (EXTPLESK-3808)

Log Browser 1.3.0

  • It is now possible to view the systemd/journalctl logs in the Plesk interface.
  • The extension can now filter logs by priority.
  • Redesigned the log filter form.
  • The extension now uses journalctl as the default source of mail logs.

Plesk Obsidian 18.0.45 Update 2

Linux

  • Sending mail via sendmail -bs no longer requires any additional actions from customers. (PPPM-13584)

Monitoring 2.3.7

  • Internal improvements.

Plesk Obsidian 18.0.45 Update 1

Linux

  • In the Beta version of the “Wesite Log Check” tool, the requests bar is now displayed correctly. (PPP-57762)
  • Opening a domain card from the Websites & Domains page no longer results in a blank screen. Previously the error occurred when the “Website Log Check” feature was manually enabled in the panel.ini file. (PPPM-13639)
  • It is now possible to send mail via sendmail -bs again. (PPPM-13584)
  • Added missing /usr/lib/plesk-9.0/remove_temp_backups to the “plesk-backup-utilities” package. (PPP-57734)

SFTP Backup 2.1.0

  • Added ARM architecture support.

Monitoring 2.3.6

  • Internal improvements.

PHP Updates

Linux

  • Added the missing “Imagick::setImageInterpolateMethod” function for PHP 7.1 on the Red Hat Enterprise Linux 8-based systems. (PPP-57747)

PHP Composer 1.2.2

  • The extension no longer fails while updating an integration plugin. (EXTPHPCOMP-202)

PHP Updates

  • Updated PHP 8.1 to version 8.1.8.
  • Updated PHP 8.0 to version 8.0.21.

Linux

  • Switched to the static ImageMagick link for PHP 7.1-8.1 on the Red Hat Enterprise Linux 8-based systems. Previously, updating the ImageMagick library in the EPEL repository on the Red Hat Enterprise Linux 8-based systems failed with the “dnf update” error. (PPPM-13570)

Laravel Toolkit 1.2.3

  • Fixed the backup error when there is no Node.js configuration on the domain. (EXTPLESK-3733)

Keychain for API Secret Keys 2.0.2

  • Fixed the issue with IP address validation. (#8)

Monitoring 2.3.5

  • Internal improvements.

Git 2.1.1

  • It is once again possible to add repositories via the extension. (EXTGIT-232)

Plesk Obsidian 18.0.45

  • Added a new feature “Website Log Check” (Beta). You can use it to scan web server logs for evidence of common issues, see how often a specific issue occurs, and get suggestions about ways to resolve them. Learn more about Website Log Check. To enable the feature, add the following lines to the panel.ini file:

    [websitesDiagnostic]
    enabled = true
    
  • Plesk administrator can now specify a custom email address to be used as a mail relay (the address will be used as the sender address for all Plesk email notifications found in “Tools & Settings” > “Notifications”). Using an email address with a properly configured domain (DKIM, SPF records, etc.) would ensure that the notifications would not be treated as spam. To do so, add the following lines to the panel.ini file:

    [notification]
    senderAddress=<custom email address>
    
  • The new password strength validator is now enabled by default. Learn more about the new password strength validator.
  • Added the ability to schedule tasks to the Laravel Toolkit extension.
  • Added the ability to run Node.js commands choosing the Node.js version and the package manager (npm/yarn) to the Laravel Toolkit extension (the Node.js extension must be also installed).
  • It is now possible to upload a custom favicon in Plesk via the GUI. To do so, go to “Tools & Settings” > “Branding” (under “Plesk Appearance”). In addition, the custom favicon is no longer reset to default when updating Plesk.
  • Re-added the ability to sort the list of domains by creation date.
  • Additional users restricted to accessing only one specific subscription can no longer see the list of all subscriptions of the customer. (PPPM-13599)
  • Emails (sent by Package Update Manager) containing the list of packages with updates available no longer mention packages that have already been updated to the latest version. (PPPM-12733)
  • It is now possible to log in to Plesk as an additional user whose password has been reset via a password reset link. (PPPM-13558)
  • The website preview thumbnail now gets rendered correctly. (PAUX-5171)

Linux

  • We are glad to introduce the beta version of the .NET Toolkit extension. This extension enables you to:

    • Run ASP.NET Core applications on your Plesk for Linux server.
    • Use .NET 6 Core out of the box.
    • View the extension logs in Log Browser.
    • Configure environment variables.
  • Added the ability to manually clear nginx cache for websites with nginx caching enabled, both via the GUI and using the plesk bin subscription_settings --clear-nginx-cache <domainName> command.
  • Dropped support for Debian 9.
  • The nginx ModSecurity ruleset from Comodo in now available in Plesk.
  • To help Plesk users in India comply with the new data law, Plesk now provides a script that can be used to copy Plesk log files to a different server for long-term storage. Learn more and download the latest version of the script here.
  • Updating to Plesk Obsidian 18.0.44 in unattended mode on a server with a customized Extra Packages for Enterprise Linux (EPEL) repository no longer fails with the “Plesk installation requires ‘epel’ OS repository to be enabled” error. (PPPM-13588)
  • Running the plesk bin ipmanage --auto-remap -drop-if-exists command on a server where one or more IP addresses are listed in the Plesk database but are absent from network interfaces now correctly re-maps IP addresses in addition to removing the missing IP addresses from the database. (PPPM-13467)
  • Running the plesk bin ipmanage --remap command now correctly updates DNS records for domain aliases. (PPPM-13521)
  • Running the plesk sbin fsmng --fix-plesk-packages command on a server with Plesk running on a dpkg-based OS now fixes permissions on directories. (PPPM-13524)
  • Disabling SpamAssassin for a mail account with a large number of mail aliases no longer fails with the “ERR [panel.ui] spammng failed:” error. (PPPM-13539)
  • Custom error pages are now shown even if the nginx proxy mode is disabled for the domain with configured custom error pages. (PPPM-13542)
  • Temporary files created when restoring backups on Plesk servers with Fail2Ban and/or ModSecurity enabled are now cleaned up periodically. (PPP-57024)
  • The SSH Terminal extension no longer shows the “Connection broken” error every time the plesk repair web command is run on the server. (EXTPLESK-3509)
  • It is now possible to rename a mail account using the name of a previously deleted mail account if that account was deleted after removing SpamAssassin. (PPPM-13567)
  • Plesk Health Monitor no longer generates garbage files on Plesk servers with Cgroups enabled when users logged in via SSH perform operations on files stored on loop devices. (PPPM-13573)
  • Statistics collection no longer gets stuck under very specific conditions. (PPPM-13581)
  • Running the plesk bin service_plan -u 'Default Domain' -nginx-proxy-mode true command no longer results in an error. (PPPM-13586)
  • Scheduled tasks fetching an URL containing one or more “%” characters no longer fail when run. (PPPM-13593)
  • php-fpm_error.log files can now be opened and viewed in Log Browser. (PPPM-13596)
  • Dedicated PHP-FPM processes are now stopped if the corresponding domain is suspended. (PPPM-13597)
  • Switching to a different domain owned by the same subscription when on the “Mail Settings” screen no longer results in the “Warning: Possible phishing attempt detected: The link you used attempted to redirect you to another site.” error. (PPPM-13603)

Windows

  • Domains are now created approximately 10% faster.
  • Removed the Plesk Premium Antivirus component from the “Recommended” preset.
  • The current status (enabled/disabled) of the “Deny IP Address based on the number of concurrent requests” and “Deny IP Address based on the number of requests over a period of time” IIS features is now correctly shown in Plesk. (PPPM-13613)
  • Selecting either “Preventing DoS attacks by IIS dynamic IP restriction” or “Deny IP addresses based on the number of requests over a period of time” checkbox in the Plesk GUI no longer results in both “Deny IP Address based on the number of concurrent requests” and “Deny IP Address based on the number of requests over a period of time” IIS features being enabled at once. (PPPM-13614)
  • Accessing the backups menu when the pmm-ras.exe binary is missing from the server now results in a comprehensible error message. (PPPM-13391)
  • Plesk distributive files stored in the “C:\ProgramData\Plesk\Installer\cache” folder during Plesk update are now cleaned up once an update is installed. (PPPM-13572)
  • Plesk now correctly shows whether a website’s dedicated IIS application pool is set to 32-bit or not when the Turkish locale is selected. (PPPM-13616)

Third-Party Component Updates

Linux

  • Updated Logrotate to version 3.20.1.

Windows

  • Updated ASP.NET Core 6.0 to version 6.0.6.
  • Updated ASP.NET Core 3.1 to version 3.1.26.
  • ASP.NET Core 5.0 is no longer shipped with Plesk.
  • Updated PHP used by plesk-engine to version 7.4.30.
  • Updated MariaDB 10.6 to version 10.6.8.
  • Updated MariaDB 10.5 to version 10.5.16.
  • Updated MariaDB 10.3 to version 10.3.35.
  • Updated boost to version 1.79.0.
  • Updated libcurl to version 7.83.1.
  • Updated Turba to version 4.2.27.
  • Updated BIND to version 9.16.30.

Laravel Toolkit 1.2.2

  • No longer causes backup to show warnings for domains without Laravel (EXTPLESK-3725).

SSL It! 1.11.0

  • SSL It! now makes sure that the domain name can be resolved before securing a new domain.

    To disable this feature, add lines of the following pattern to the panel.ini file:

    [ext-sslit] 
    wait-resolving-enabled = false
    

SSL It! 1.10.4

  • SSL It! version 1.10.4 will be the last SSL It! update that supports Plesk versions older than Plesk 18.0.32. To continue receiving SSL It! updates with bugfixes and new features, update your Plesk installation to version 18.0.32 or later.

Laravel Toolkit 1.2.1

  • Front-end improvements.

Laravel Toolkit 1.2.0

  • Instead of adding scheduled tasks like artisan schedule:run into the domain’s crontab, you can now use the “Scheduled Tasks” feature in Laravel Toolkit (only available in Plesk Obsidian 18.0.45 and later).
  • As long as the “Scheduled Tasks” switch is on, a tab with the same name will show all scheduled tasks Laravel has registered.
  • You can now call npm/yarn commands from the “Node.js” tab in the Laravel Toolkit interface.
  • Node, npm, and yarn can now be called from within the deployment actions, simplifying the task of deploying new app versions (Git 2.1.0 must be installed on the server).

Git 2.1.0

  • Internal improvements.

WordPress Toolkit 5.11.3

  • Updated translations.

.NET Toolkit 1.1.0

  • Added management of environment variables.
  • Added log viewing of ASP.NET Core applications for Plesk 18.0.45 and later.

PHP Updates

Linux

  • Introduced PHP updates are the last ones for Debian 9 “Stretch”. See Plesk EOL Policy for details.
  • The Sodium extension is now dynamic for PHP 7.4, 8.0, and 8.1 again. (PPPM-13609)
  • Argon2 passwords are working now on Debian 9 “Stretch” for PHP 7.4, 8.0, 8.1. (PPPM-13611)

Extensions Catalog 1.16.0

  • Fixed the issue where manual update to an unstable version would result in an error. Only stable versions are now available for update. (EXTCATALOG-621)

Plesk Obsidian 18.0.44 Update 3

  • Updated Horde Turba to version 4.2.27 to fix the CVE-2022-30287 vulnerability.

    We strongly recommend that you update Plesk.

PHP Updates

  • Updated PHP 8.1 to version 8.1.7.
  • Updated PHP 8.0 to version 8.0.20.
  • Updated PHP 7.4 to version 7.4.30.

Linux

  • Updated Xdebug to version 3.1.5 for PHP 8.1, 8.0, 7.4.
  • EPEL repository is now required and will be automatically enabled for PHP 7.4, 8.0, 8.1 on CentOS 7/RHEL 7/CloudLinux 7/RHEL 8/AlmaLinux 8/CloudLinux 8/RockyLinux 8

Monitoring 2.3.4

  • Switching back to Built-in Monitoring now automatically removes agent360 unless the Plesk administrator selected to keep it.
  • If skip_name_resolve is enabled, it no longer breaks agent360 and the extension. (EXTPLESK-3455)

Plesk Obsidian 18.0.44 Update 2

  • It is now again possible to view the list of existing WordPress websites and create new ones in WordPress Toolkit. (PPPM-13587)

Linux

  • Plesk migration now restores all the required data and no longer completes with the “PHP Fatal error: Uncaught TypeError: Return value of Plesk\Service\Driver\Dns\Plesk\Core::callDnsmng() must be an instance of Service_Agent_Response_Abstract” error. (PPPM-13580)

Windows

  • Adding a MS SQL server no longer fails with the “Class ‘MssqlLocalHost’ not found” error. (PPPM-13578)

WordPress Toolkit 5.11.2

  • Refresh button now properly refreshes WordPress installation data. (EXTWPTOOLK-9284)
  • Site vulnerability check for multiple sites no longer fails with Cannot read properties of undefined (reading 'isVulnerable') error under some circumstances. (EXTWPTOOLK-9290)
  • Activating a theme from the Themes tab in a site card no longer briefly shows two active themes at once. (EXTWPTOOLK-9291)
  • Plugins from blocklist can again be deactivated, but not activated. (EXTWPTOOLK-9292)
  • Mass update screen now properly shows autoupdate settings for all assets. (EXTWPTOOLK-9294)
  • Plugins can again be uploaded into sets. (EXTWPTOOLK-9298)
  • Plugin status is now properly refreshed after plugin activation from the global Plugins tab. (EXTWPTOOLK-9323)
  • Installation screen properly opens again when installation is launched from Plesk domain card. (EXTWPTOOLK-9302)

htaccess to nginx 1.1.0

  • Fixed compatibility issues with Plesk Obsidian 18.0.44 and later. (EXTPLESK-3558)

Grafana 1.3.4

Linux

  • Monitoring no longer shows empty graphs and the “origin not allowed” warning if nginx is not installed on the server. (EXTPLESK-3426)

Plesk Obsidian 18.0.44 Update 1

Linux

  • Sending mail via sendmail -bs is no longer restricted. (PPPM-13584)
  • The cloning utility with the -reset-license option now works in Plesk on Ubuntu 22. (PPP-57259)
  • Plesk Update Manager now works on Ubuntu 22. (PPPM-13575)

.NET Toolkit 1.0.0

  • Initial release.

WordPress Toolkit 5.11.1

  • It is now possible again to use WordPress Toolkit in Safari. (EXTWPTOOLK-9268)

WordPress Toolkit 5.11.0

  • Smart Updates feature was redesigned to improve the user experience, focusing on hard data instead of screenshots:
    • Detailed per-page information about found issues is now the main focus of user attention
    • Test website is now fully available for manual review until Smart Update is applied or discarded. This allows users to do in-depth validation for all important pages, including those that could not be covered by screenshots (like checkout pages and so on)
    • Smart Update checks up to 100 website pages now (was 30 pages before)
    • Smart Updates now works faster since it doesn’t have to do high-quality screenshots anymore (users have access to the actual test website instead)
  • WordPress Toolkit v5.11.0 update cannot be installed on CentOS 6 or CloudLinux 6. If you are using these OSes, please update them to at least CentOS 7 or CloudLinux 7.
  • Scan procedure was taught to no longer search for WordPress sites in the Recycle Bin (.trash) directory.
  • Vulnerability menu now correctly displays available updates for vulnerable sites after they were added by the Scan procedure. (EXTWPTOOLK-9146)

Plesk Obsidian 18.0.44

  • We are glad to introduce the production version of the Laravel Toolkit extension. Added the following improvements to the extension:

    • Use the extension in Plesk for Windows.
    • Deploy a Laravel skeleton application on a domain.
    • Create a website with the latest Laravel version with just a few clicks (Websites & Domains > Add Domain > Laravel site).
    • Introduced the new “Deployment” section that makes it possible to use custom scripts to deploy applications.
    • View the extension logs in Log Browser.
    • (Plesk for Linux) Run artisan and composer commands without having to specify the whole path.
    • Enjoy smoother transitions between screens with introduced content placeholders. When Plesk loads application cards as well as Composer and Artisan sections, you can now see their rough skeletons.
    • Multiple UX improvements.
  • The new “Add Domain” screen is now enabled by default. Learn more about this improvement.
  • The /root/.my.cnf file that contains the password for the MySQL console client no longer blocks Plesk automatic updates.
  • The interface in Power User View is now always set to “All webspaces” unless users select the desired webspace themselves. As soon as the Plesk administrator creates the second webspace, they now see a hint on how to switch between webspaces.
  • Made the transitions between domain cards smoother by introducing content placeholders: when Plesk loads a domain card, users now see its rough skeleton.
  • It is now possible to change IP addresses of subscriptions with “Forwarding” and “No hosting” types.
  • Made it more clear for users how to add SRV DNS records: the “Service name” and “Protocol” fields now have correct examples. (PPP-56626)
  • If Plesk has a subscription with the limit on domain aliases or subdomains set to zero, this no longer prevents the Plesk administrator from creating domain aliases and subdomains in the Plesk interface. (PPPM-13534)
  • Specifying empty values of panel.ini settings no longer stops the domains’ “PHP Settings” page from being loaded. (PPPM-13516)
  • Subscriptions’ names in Customer Panel are now again sorted in alphabetical order. (PPPM-13517)
  • File Manager now correctly uploads directories with empty files or directories inside. (PPPM-13535)
  • Clearing the “Mail messages” checkbox in Backup Manager > Back Up no longer resets the backup type to “Incremental”. (PPPM-13503)
  • Changing PHP settings of a locked subscription no longer overrides them with the default PHP settings of the service plan the subscription was based on. (PPPM-11555)
  • Operations with multiple items selected from the list now again work in Plesk extensions. (PPPM-13548)
  • Increased the length of the “TXT record” text field for the following types of DNS records: TXT, MX, DS, and CAA. (PPP-56760)
  • Plesk again shows the content of the Application Catalog categories (“All Available Applications” > “Web”, “Collaboration”, and so on). (PPPM-13546)
  • Restoring a domain from a backup now preserves custom TTL values of the domain’s DNS records. (PPPM-13426)

Linux

  • The console now works using a domain’s PHP version instead of the system PHP. Customers can now run artisan, composer, and other commands without having to specify the whole path.

    To propagate and turn on the feature for all subscriptions, run the plesk bin php_settings --update-all command.

    To use the feature in Scheduled Tasks, prepend the cron command with the following:

    export PATH="/opt/plesk/phpenv/bin:$PATH"; eval "$(phpenv init -)";
    

    To disable the feature and bring back how the console worked before, add the following lines to the panel.ini file:

    [php]
    phpenv = off
    

    Note: The feature works for Plesk PHP handlers only. It does not work for custom PHP handlers and CloudLinux with CageFS.

  • Ubuntu 22.04 is now supported, with certain limitations. You can use the dist-upgrade procedure to upgrade your OS from Ubuntu 20.04 to Ubuntu 22.04.
  • It is now possible to customize the client_max_body_size nginx directive in the Plesk interface, via the CLI, and via the XML API.
  • It is now possible to change a database user password on the remote database server Percona MySQL 8.0.23. (PPPM-13538)
  • The “PHP-FPM settings” section in a domain’s PHP settings is now present for custom PHP handlers. (PPPM-13507)
  • If Apache-only hosting is turned on, third-party services that use the “Host” header validation (for example, Grafana) now work. (PPP-56778)
  • Log rotation now works correctly after updating to Plesk Obsidian 18.0.43 even if /usr/local/psa/etc/logrotate.conf was customized. (PPPM-13519)
  • Fixed the error message shown when a password is not complex enough for the the “Very Strong” password strength policy. (PPPM-13550)
  • In Plesk on Debian 10 and AlmaLinux 8, a start, stop, or restart of the dedicated PHP-FPM handler no longer fails with the “Unable to stop service: Variable “$actionType” got invalid value “stop”” error. (PPPM-13547)
  • It is no longer possible bypass email sending restrictions for Postfix and qmail by using the -bs option with the sendmail wrapper. (PPPM-13497)
  • When editing a domain’s PHP settings in the “Common settings” section, the cursor no longer jumps to the end of the text box. (PPPM-13554)
  • On certain servers, Plesk no longer runs its Daily Maintenance tasks significantly longer than 24 hours. (PPPM-13532)
  • Collecting statistics for a domain with a large number of files (about one million) now consumes significantly less RAM. (PPPM-13415)
  • BIND no longer fails to start if Plesk has websites with enabled DNS zones but absent NS records. (PPPM-13468)

Windows

  • It is now possible to use the Laravel Toolkit extension.
  • Backup restoration no longer fails if the DNS server was deleted from Plesk and a custom DNS service is used (for example, DigitalOcean DNS). (PPPM-13511)
  • When users select the “Tradeoff” or “Thorough” configurations in ModSecurity, they now see the confirmation dialog, which informs that these configurations may disrupt operation of WordPress websites. (PPPM-13504)

Third-Party Component Updates

  • Updated PHP used by Plesk to version 7.4.29.
  • Updated libcurl to version 7.83.0.

Windows

  • Updated POCO to version 1.11.2.
  • Updated ASP.NET Core 6.0 to version 6.0.5.
  • Updated ASP.NET Core 5.0 to version 5.0.17.
  • Updated ASP.NET Core 3.1 to version 3.1.25.
  • ionCube Loader is no longer shipped with Plesk because of the reorginization of the third-party component shipment with Plesk. ionCube will be automatically installed in one of the upcoming releases in the scope of installation of the PHP components.

    To use ionCube Loader, install it manually.

    Note: The already installed ionCube Loader component continues to work but PHP updates no longer update the component.

  • Excluded the myLittleAdmin component from the “Full Installation” preset and marked the component as outdated.

    Note: The vendor does not support myLittleAdmin since 2013. Using outdated components is not secure. You can still install the component at your own risk by doing the following:

    • (During Plesk installation) Select the “Custom” installation type and then select myLittleAdmin.
    • (After Plesk installation) Run the plesk installer add --component mylittleadmin command.

Plesk Migrator 2.21.8

  • Updated translations.

Laravel Toolkit 1.1.0

  • Introduced the new ‘Deployment’ section that makes it possible to use custom scripts to deploy applications.
  • Deploy a Laravel skeleton application on a domain.
  • Create a website with the latest Laravel version with just a few clicks (Websites & Domains > Add Domain > Laravel site).
  • View the extension logs in Log Browser.
  • (Plesk for Linux) Run artisan and composer commands without having to specify the whole path.
  • Enjoy smoother transitions between screens with introduced content placeholders.
  • UX improvements.

Node.js 2.1.3

  • The extension no longer tries to install Node.js version 18 or higher if glibc version 2.27 or earlier is installed on the server. (EXTNODEJS-215)

Git 2.0.4

  • Added the ability to perform custom deployment actions separately from the deploy command. To use deferred execution of custom deployment actions via the CLI, run the following commands:

    # run deploy without custom deployment actions for repository "repo-example" on domain "example.com"
    plesk bin extension --call git --deploy -domain example.com -name repo-example -no-deployment-actions
    
    # only run custom deployment actions for the "repo-example" repository on domain "example.com"
    plesk bin extension --call git --run-deployment-actions -domain example.com -name repo-example
    

    To use deferred execution of custom deployment actions via the XML API, run the following requests:

    <!-- run deploy without custom deployment actions for repository "repo-example" on domain "example.com" -->
    <packet><extension><call><git><deploy><domain>example.com</domain><name>repo-example</name><no-deployment-actions/></deploy></git></call></extension></packet>
    
    <!-- only run custom deployment actions for the "repo-example" repository on domain "example.com" -->
    <packet><extension><call><git><run-deployment-actions><domain>example.com</domain><name>repo-example</name></run-deployment-actions></git></call></extension></packet>
    

PHP Updates

  • Updated PHP 8.1 to version 8.1.6.
  • Updated PHP 8.0 to version 8.0.19.

Slave DNS Manager 1.10.1

  • Removal of DNS zones is now again synced between Plesk and secondary DNS servers that use BIND 9.14 and later. (EXTPLESK-3353)

Ruby 1.4.3

  • Updated Ruby 2.6 to version 2.6.10.

SSL It! 1.10.3

  • An unwanted security warning no longer appears if the Sectigo and Digicert extensions are not installed. (EXTSSLIT-1851)
  • Now the option to choose the certificate’s vendor does not appear if the Sectigo and Digicert extensions are not installed. (EXTSSLIT-1890)
  • It is no longer possible to issue a certificate that secures only domain’s aliases, but not the main domain. Such certificates can not be installed in Plesk. (EXTSSLIT-1899)

Monitoring 2.3.3

  • It is now possible to configure the 360 Monitoring integration via the CLI. To see the CLI commands, run plesk ext monitoring --cloud.

Node.js 2.1.2

  • Internal improvements.

PHP Updates

  • Updated PHP 8.1 to version 8.1.5.
  • Updated PHP 8.0 to version 8.0.18.
  • Updated PHP 7.4 to version 7.4.29.

Linux

  • Updated Xdebug to version 3.1.4 for PHP 8.1, 8.0, 7.4.

Docker 1.5.3

  • Internal improvements.

Plesk Obsidian 18.0.43 Update 1

Linux

  • Updating Plesk to version 18.0.43 no longer fails when MySQL Community Server is used. (PPPM-13514)

WordPress Toolkit 5.10.2

  • WordPress plugins and themes will now be properly autoupdated by WordPress Toolkit after the corresponding autoupdate settings are enabled and “Take over wp-cron.php” option is switched on.
  • Twenty Two theme now properly conforms to autoupdate settings when it’s installed during WordPress core update. (EXTWPTOOLK-8831)
  • “WordPress Vulnerabilities” screen now displays a hint if WordPress core update is required to update a vulnerable plugin or theme. (EXTWPTOOLK-8538)

Linux

  • Smart Updates now work properly when proxy mode is disabled for nginx. (EXTWPTOOLK-8798)
  • WordPress widgets can now be managed on nginx + PHP-FPM when permalinks are used. (EXTWPTOOLK-8839)

Windows

  • Users can delete plugins that were uploaded manually on the global “Plugins” tab. (EXTWPTOOLK-8695)
  • WordPress can now be installed if PHP 8.1 is used. (EXTWPTOOLK-9045)

Plesk Obsidian 18.0.43

  • The new ‘Add Domain’ screen is now enabled by default for new Plesk Obsidian installations. This screen provides additional domain creation options:

    • Create a blank site.
    • Create a WordPress site.
    • Upload content using File Manager after website’s creation.
    • Connect a Git repository.
    • Import website from another hosting.

    To disable it, add the following lines to the panel.ini file:

      [domainManagement]
      applicationWizard.enabled = false
    
  • Node.js applications now write their logs to separate log files that can be viewed in the Log Browser. To disable this feature, add the following lines to the panel.ini file:

      [ext-nodejs]
      showApplicationLogs = false
    
  • The Node.js extension now automatically cleans up the downloaded archives of minor Node.js versions that are no longer necessary from the extension’s cache.
  • Fine-tuned the password strength validator in Plesk to make it better at accurately evaluating strength of passwords generated by third-party applications and services.

    The feature is disasbled by default because it may affect the automatic password generation scripts that must meet the new requirements. To enable the updated password strength validator, add the following lines to the panel.ini file:

      [passwordManagement]
      estimator = zxcvbn
    

    The feature will be enabled by default in Plesk Obsidian 18.0.45. Read more about this feature.

  • For customers, who use automatic scripts for subscriptions/customers creation the new “API 1038 error code” was added. This error code will be returned to a 3rd-party system if a used password was not accepted by Plesk so it will be possible to reinitiate the password generation process. It means that customers with a such scenario can update their scripts to reinitiate a password generation and validation process if the previous password was not accepted.
  • On Plesk servers using BIND as the DNS server, the “notify-to-soa” option is now in effect. This ensures that the NS server specified as the primary master name server for a DNS zone in the zone’s SOA record is sent NOTIFY messages. This is useful in “hidden master” scenarios where the master NS server is not listed at the registrar and does not have an NS record in the DNS zone, and a slave NS server is listed in the SOA record instead.
  • Increased the speed of website preview generation for certain websites.
  • Increased the speed of switching between domains by up to 25% while using the File Manager or the domain card.
  • When configuring a custom TTL value for a DNS record for a domain, the custom value is also propagated to the DNS zones of all of that domain’s domain aliases. (PPPM-13425)
  • Receiving one or more emails with very long subject lines no longer causes some information to not be shown in “Tools & Settings” > “Mail Queue”. (PPPM-13462)
  • Clarified the notification shown when one or more backup files in remote FTP storage do not conform to the expected naming conventions. (PPPM-13453)
  • When scrolling through the contents of a directory in File Manager, the list of the files can no longer partially be seen through the page’s footer. (PPPM-13374)
  • Configuring or attempting to back up to a remote FTP repository hosted on the Azure Blob service no longer fails with the “(SSH_FX_OP_UNSUPPORTED)” error. (EXTPLESK-3418)
  • Perl and Python support is no longer listed as available but turned off in “Account” > “Hosting Options” if the corresponding Plesk components are not installed. (PPPM-13456)

Linux

  • Indroduced a beta version of the Laravel Toolkit extension that allows you to manage Laravel applications running on your Plesk server:

    • Scan and automatically connect Laravel websites to Laravel Toolkit. That way you can manage them using the Plesk interface.
    • Get your Laravel applications from a remote Git repository and deploy them.
    • Automatically update Laravel applications using Git webhooks.
    • Manage the .env file using the graphical user interface (GUI).
    • Run artisan and composer commands without having to access the shell.

    We would love to hear your feedback about this improvement. Please send us your feedback to feedback@plesk.com.

  • Plesk users granted shell access (even chrooted) can now execute certain Node.js commands (like nvm use or npm install) straight from the shell.
  • The Node.js extension now supports the Yarn package manager (along with already supported npm).
  • When changing the PHP handler to “FastCGI application served by Apache” for a domain owned by a subscription based on a service plan that provides PHP-FPM by default, the PHP handler is now correctly changed to FastCGI. (PPPM-13450)
  • Performing dist-upgrade from Debian 10 to Debian 11 no longer results in an outdated version of the “plesk-py27-paramiko” package being installed. (PPPM-13478)
  • On Ubuntu 20.04 servers, restarting the nginx service no longer results in the “Unable to restart the service: Failed to fetch” error. (PPPM-13483)
  • The BIND service no longer fails to start after updating to Plesk Obsidian 18.0.42.1. (PPPM-13487)
  • Clarified the error message shown and logged when subscription creation fails when greylisting is enabled in global spam filter settings, but the /var/lib/plesk/mail/greylist directory is missing. (PPPM-13457)
  • Log rotation now works correctly after updating to Plesk Obsidian 18.0.42. (PPPM-13473)
  • After updating to Plesk Obsidian 18.0.42, backup creation no longer fails with the “Unable to run the backup agent” error. (PPPM-13492)
  • Installing Plesk Obsidian on a server running AlmaLinux 8.4 no longer results in misleading warning messages in the installer log. (PPPM-13485)
  • On servers running an RPM-based Linux with Yum, it is no longer possible to run the yum clean all command during the update, which led to the update failing. (PPPM-11218)
  • Setting the settings.fpm.pm.process_idle_timeout.values[] and settings.fpm.pm.process_idle_timeout.default PHP parameters to exactly “1” in the panel.ini file no longer prevents users from changing PHP handlers for hosted domains. (PPPM-13484)
  • Running the plesk repair web command now also repairs missing PHP modules. (PPPM-13387)
  • “Forgot password” emails are now sent in the language matching the user’s language configured in Plesk. (PPPM-13496)

Windows

  • Mail sent from IP addresses added to the white list now bypasses DNSBL checks. You can now add and remove IP addresses to/from the white list via the --add-to-white-list and --remove-from-white-list options for the mailserver.exe command.
  • When moving a domain from one subscription to another, the list of available target subscription now includes subscriptions whose “Mailbox Size” limit is exceeded by the sum total of disk space taken up by all mailboxes owned by the domain that is being moved. (PPPM-13398)
  • Trying to change the value of the ASP.NET “Session Timeout” parameter no longer fails with the “ERR [panel] Site without PhysicalHosting cannot be Webspace” error. (PPPM-13469)

Third-Party Component Updates

  • Updated OpenSSL to version 1.1.1n.

Windows

  • Updated ASP.NET Core 6.0 to version 6.0.3.
  • Updated ASP.NET Core 5.0 to version 5.0.15.
  • Updated ASP.NET Core 3.1 to version 3.1.23.
  • PHP 5.2, 5.3, 5.4, and 5.5 are no longer shipped with Plesk.
  • Updated Node.js to version 12.22.11.
  • Updated libxslt to version 1.1.35.
  • Updated zlib to version 1.2.12.

Kaspersky Anti-Virus for Servers 8.5.1-61

  • Internal improvements.

Windows

  • The extension now works in Plesk version 18.0.43 and later.

Extensions Catalog 1.15.5

  • Internal improvements.

SSL It! 1.10.2

  • It is now again possible to issue Let’s Encrypt certificates on Plesk versions 18.0.22-18.0.28. (EXTSSLIT-1911)

Node.js 2.1.1

  • The extension no longer fails if a subscription has forwarding-type hosting. (EXTNODEJS-210)

Monitoring 2.3.2

  • It is now possible to change the “Open 360 Monitoring” link in the 360 Monitoring page header. The link text will be changed to “powered by 360 Monitoring” and the link itself will point to a user-defined URL. To do so, add the following lines to the panel.ini file:

    [ext-monitoring]
    cloudMonitoringPoweredByUrl = https://example.com
    

    Replace the link with plain text, set the option to false:

    [ext-monitoring]
    cloudMonitoringPoweredByUrl = false
    
  • On Virtuozzo Linux, the agent360 installation process no longer fails with the “No package python3-pip available” error. (EXTPLESK-3400)
  • CPU graphs for subscription usage now show correct values instead of thousands of percent. (EXTPLESK-3410)

DigitalOcean DNS 1.3.3

  • Internal improvements.

Node.js 2.1.0

  • In Plesk for Linux, the extension now supports the Yarn package manager (along with already supported npm).
  • In Plesk for Linux, it is now possible to manage Node.js applications from the shell.
  • The extension now automatically cleans up the downloaded archives of minor Node.js versions that are no longer necessary from the extension’s cache.
  • Under certain circumstances, installation of the application packages no longer fails with the “node: not found” error. (EXTNODEJS-189)

Site Import 1.5.7

  • Internal improvements.

Plesk Migrator 2.21.7

  • Internal improvements.

Laravel Toolkit 1.0.1

  • Laravel applications work correctly on domains with Nginx-only configuration.

Ruby 1.4.2

  • Ruby 2.6.x was updated to version 2.6.9.

WordPress Toolkit 5.10.1

  • Scan procedure now works correctly when launched by non-administrator users. (EXTWPTOOLK-8997)

PHP Updates

  • Updated PHP 8.1 to version 8.1.4.
  • Updated PHP 8.0 to version 8.0.17.

SSL It! 1.10.1

  • It is now possible to hide the ability to issue SSL/TLS certificates for the specified top-level domains (TLDs). This prevents failed attempts to issue certificates and reduces support workload when a certificate authority does not issue certificates for one or more country TLDs.

    To hide the ability to issue SSL/TLS certificates, add lines of the following pattern to the panel.ini file:

    [ext-sslit] 
    ;For paid Sectigo and DigiCert certificates 
    hiddenTLDsPaidProducts = 'example' ; country TLD
    ;For free Let's Encrypt certificates 
    hiddenTLDsFreeProducts = 'example' ; country TLD
    

Laravel Toolkit 1.0.0

  • Initial release.

Advisor 1.9.7

  • Internal improvements.

WordPress Toolkit 5.9.4

  • WordPress Toolkit v5.9.4 will be the last WordPress Toolkit update that supports Plesk versions older than Plesk 18.0.41. To continue receiving WordPress Toolkit updates with bugfixes and new features, please update your Plesk installation to version 18.0.41 or higher.
  • Plugin search in the plugin installation dialog now properly works with space characters. (EXTWPTOOLK-8986)

WordPress Toolkit 5.10.0

  • WordPress Toolkit now also scans inactive plugins and themes for known vulnerabilities.
  • Email notifications about found vulnerabilities now include information about vulnerabilities found in inactive plugins and themes.
  • Warning about outdated PHP version now includes a link to the PHP management screen.
  • WordPress Toolkit now uses correct PHP version for additional domain if docroot of this domain contains docroot of another domain. (EXTWPTOOLK-8648)
  • Fixed performance issues related to update availability checks on sites with detected vulnerabilities. (EXTWPTOOLK-8720)
  • Replaced non-working link in Smart Updates notification email with a working one. (EXTWPTOOLK-8884)
  • When users install plugins or themes with known vulnerabilities, a corresponding entry about their vulnerabilities will be added to the action log. (EXTWPTOOLK-8636)
  • WordPress v5.9 and higher can be installed on a domain with PHP 8.1. Note: the support for PHP 8.1 was introduced in WordPress itself, not WordPress Toolkit, but if you have contacted our support team about this issue and were given issue ID EXTWPTOOLK-8689, feel free to switch your PHP handler to version 8.1.
  • Certain localized WordPress installations can now be properly updated via WordPress Toolkit. (EXTWPTOOLK-8641)
  • You can now update your localized WordPress insallation to the latest version of WordPress even if it’s not available in the current WordPress installation language. (EXTWPTOOLK-8623)
  • WordPress Toolkit can now properly detect login URL that was changed by Perfmatters plugin. Make sure you have updated the plugin to version 1.8.7 or higher. Special thanks to Perfmatters team for helping with this issue quickly. (EXTWPTOOLK-8565)
  • Inactive plugins and themes with known vulnerabilities are now marked as vulnerable in the WordPress Toolkit interface. (EXTWPTOOLK-8493)
  • Inactive plugins and themes with known vulnerabilities can now be updated directly on the WordPress Vulnerabilities tab. (EXTWPTOOLK-8492)
  • Plugin search in the plugin installation dialog now properly works with space characters. (EXTWPTOOLK-8986)

Google PageSpeed Insights 2.1.7

  • Updated the cacert.pem file to the latest version provided by Mozilla.
  • The “PHP warning for non-compound name Exception” error is no longer shown in panel.log after the extension was installed and a subscription was created. (EXTCERT-3255)

Plesk Obsidian 18.0.42 Update 1

  • Performing the initial configuration no longer results in a blank screen if the “Enter Plesk” button is clicked before all necessary fields are filled out. (PPPM-13463)

Linux

  • Plesk updates no longer fail on Plesk servers that do not have BIND installed and are using a different DNS server. (PPPM-13466)

Let's Encrypt 3.0.0

  • Converted the extension into the SSL It! plugin. In Plesk Obsidian 18.0.22 and later, it is no longer possible to issue and manage Let’s Encrypt certificates without the SSL It! extension.

    Note: The upgrade from the Let’s Encrypt extension 2.x to 3.0.0 automatically installs SSL It! (if you do not have it installed yet).

Kaspersky Anti-Virus for Servers 8.5.1-60

  • Corrected mistakes in the following locales: Dutch, German, Finnish, Italian, Norwegian, Brazilian, Thai, Turkish, Vietnamese, Chinese, and Taiwanese.

SSL It! 1.10.0

  • It is now possible to hide the ability to issue wildcard Let’s Encrypt certificates for domains that do not use Plesk as the DNS server and cannot be automatically secured with these certificates. This prevents failed attempts to issue the certificates and reduce customer support tickets.

    You can turn on the feature in the Plesk interface (Extensions > the “My Extensions” tab > click Open next to “SSL It!” > “Settings”) or via the CLI.

    To configure the feature via the CLI, run plesk ext sslit --wildcard-configuration -enable -nameservers 'ns1.<domain>,ns2.<domain>'. To see more details, use the plesk ext sslit --help command.

  • A domain secured with a wildcard Let’s Encrypt certificate with all the options enabled (“Redirect from http to https”, “HSTS”, and so on) is no longer wrongly marked as “Security can be improved”. (EXTSSLIT-1746)

Monitoring 2.3.1

  • Internal improvements.

Monitoring 2.3.0

  • It is now possible to hide the 360 Monitoring license panel, which displays the limit of websites and servers available for monitoring. To hide the license panel, add the following lines to the panel.ini file:

    [ext-monitoring] 
    cloudShowLicensePanel = false
    
  • It is now possible to limit the number of websites 360 Monitoring monitors per server. The default limit set by the 360 Monitoring license affects multiple servers. To prevent one or more servers from using up the whole license limit, add the following lines to the panel.ini files of the servers you want to limit:

    [ext-monitoring] 
    cloudMaxWebsites = 5 ; the desired website limit
    
  • The extension now shows a warning if 360 Monitoring stops processing one of your servers (because the license limit has been reached or the server has been archived in the 360 Monitoring interface).

Mail Log Browser 1.2.1

  • March is now again displayed as the third month of the year. (EXTPLESK-3393)

Grafana 1.3.3

  • The “Dashboard not found” error no longer occurs for monitored subscriptions after the extension update. (EXTPLESK-3396)

Joomla! Toolkit 2.5.1

  • Added CLI commands to attach and detach Joomla! installations. For details and usage examples, run the plesk ext joomla-toolkit --help command.
  • Improved handling of runtime exceptions.
  • Improved the installation and update process for Joomla! 4.x. (EXTCERT-3746)

Site Import 1.5.6

  • Debian 11 is now supported.
  • The “Mail importing” tool is now located on the “Mail” tab.

Kaspersky Anti-Virus for Servers 8.5.1

Linux

  • Initial release. The extension works in Plesk Obsidian 18.0.42 and later.
  • Fixed translations into the following languages: Czech, French, Hungarian, Indonesian, Japanese, Korean, Dutch, and Ukrainian.

Git 2.0.3

  • A new method get-public-key was added to both CLI and XML API. The method generates a new SSH key for a domain if it does not already have an SSH key generated for it and displays the publik key part as the output.

    To generate a new SSH key for “example.com” via the CLI, run the following command: plesk bin extension --call git --get-public-key -domain example.com

    To generate a new SSH key for “example.com” via XML API, execute the following request: <packet><extension><call><git><get-public-key><domain>example.com</domain></get-public-key></git></call></extension></packet>

  • When logged in as a reseller, creating a git local repository no longer results in an error. (EXTGIT-205)
  • The “Specified directory was not found on the server” message no longer appears when trying to change the deployment directory in the Git settings after an update. (EXTGIT-196)

Plesk Obsidian 18.0.42

  • Transitions from the “PHP settings” screen now happen up to 40% faster.
  • Most of the tabs on the subscription overview page (Websites & Domains, Mail, Files, Databases, Statistics, and Users) now open up to half a second faster.
  • Added the option to restrict the ability to create backup to the Plesk administrator. To prevent users other than the administrator from creating, uploading, or scheduling backups in Plesk, add the following lines to the panel.ini file:

    [pmm]
    manageBackupsByAdminOnly = true
    

    Note that scheduled backups already configured by users other than the administrator will continue to run.

  • The “Tools & Settings” > “DNS Template” screen has been renamed to “DNS Settings”.
  • The “DNS zone serial number format” section of the “DNS Settings” > “Zone Settings [template]” has been renamed to “Advanced DNS features”.
  • On Plesk servers using BIND as the DNS server, it is now possible to specify additional DNS server parameters using named.conf syntax. To do so, enter them in the newly added “Additional DNS settings” field (found on the “Tools & Settings” > “DNS Settings” > “Server-wide Settings” screen). These parameters override all other server-wide parameters configured elsewhere.
  • A link to a video describing the process of managing DNS records in Plesk has been added to the “DNS Helper” wizard.
  • Kaspersky Antivirus has been converted from a Plesk component to an extension and excluded from the “Recommended” preset. As a result, the size of the Plesk distributable decreased by 35%, which will lead to faster downloads and shorter installation times. This change will not impact servers with Kaspersky Antivirus installed in any way.
  • On Plesk servers with the “Joomla! Toolkit” extension installed, the option to create a website with the latest Joomla! version installed has been added to the “Add Domain” wizard.
  • Plesk now treats cloud servers runnng on ARM processors as KVM virtualization allowing for the use of VPS license keys.
  • Reworked the way information is presented during operations performed in the drawer on the left-hand side of the screen (for example, creating a domain). Progress bars have been moved from the footer to the main body of the drawer to make the interface less visually overloaded.
  • The Video Tutorials section of the Plesk Documentation Portal has been populated with a host of new video tutorials giving step-by-step explanations for the most common Plesk use cases.
  • Trying to set up mail autodiscover in the iOS Mail app on iPhone or iPad via the Plesk-generated link or QR code no longer fails with the “Invalid Profile” error. (PPPM-13390)
  • Scheduled backup processes no longer get stuck indefinitely when backing up to FTP storage if the configured FTP server is unavailable or if the provided credentials do not match. (PPPM-13411)
  • The default SOA Expire Value for domains created in Plesk was increased from 7 days to two weeks to avoid misleading warnings (for example, “SOA Expire Value out of recommended range”). (PPP-56007)
  • When creating a domain as a Plesk administrator and selecting the “Assign this domain to a customer” option, the list of IP addresses (shared and dedicated) available to the selected customer is now shown instead of the list of IP addresses available to the administrator. (PPPM-12040)
  • Running the plesk login command, logging in to Plesk via the generated URL, and then running the plesk login command again no longer results in an invalid URL being generated. (PPPM-13134)
  • When uploading a database dump via the “Import Dump” feature, the existing database (if it exists) is removed and then recreated if the “Recreate the database” option is enabled. (PPP-55727)
  • The pmm-ras command line utility now properly logs all required information if verbose logging is enabled in the panel.ini and pmmcli-rc files. (PPPM-13396)

Linux

  • Debian 11 is now supported, with certain limitations. You can use the dist-upgrade procedure to upgrade your OS from Debian 10 to Debian 11.
  • Apache no longer fails to start if ModSecurity is enabled but unable to start for some reason. (PPPM-13354)
  • It is no longer possible to create an additional FTP user with the account name ‘psacln’ in Plesk. (PPPM-13382)
  • If an alert for “Site creation” is configured for the Plesk administrator on the “Tools & Settings” > “Notifications” page, and one or more event handlers for the “Default domain (the first domain added to a subscription) created” event have been configured on the “Tools & Settings” > “Event Manager” page, an email notification is sent to the administrator whenever a new subscription is created even if one or more event handlers return a non-zero exit code. (PPPM-13401)
  • A more comprehensible error message is now shown when trying to create a domain with an internationalized domain name containing not allowed characters in punycode (for example, emojis). (PPPM-13172)
  • Plesk Installer no longer fails when started on a server with certain versions of MariaDB installed from RPMs. (PPPM-13431)
  • Running the one-click-installer on CloudLinux 7 no longer results in an error. (PPP-56121)
  • The “www." >> "" CNAME DNS record was added to the Plesk default DNS zone template.(PPP-52146)
  • When exporting database dumps, the progress bar no longer gets stuck under specific circumstances. (PPPM-13306)
  • The Fail2Ban component now requires syslog/rsyslog (depending on the OS) as a prerequisite. (PPPM-13307)
  • Plesk Monitoring now properly cleans up unneeded temporary files it stores in the /opt/psa/var/health/data/localhost directory. (PPPM-13313)
  • It is now possible to log in to webmail for a mailbox with one or more “+” characters in the mailbox name (for example, “my+mailbox@example.com”) when the “Enable email subaddressing” option is disabled in “Tools & Settings” > “Mail Server settings”. (PPP-55620)
  • A confirmation dialog box is now shown when removing a jail in Fail2Ban. (PPPM-13414)
  • The “Do not deliver copies of forwarded emails to the Plesk mailbox” option can now be enabled or disabled via the CLI using the plesk bin mail -u <mailbox@domain.name> -forwarding true -delivery false command. (PPPM-13422)
  • The sizes of incremental backups stored in FTP storage are no longer shown incorrectly under specific circumstances. (PPPM-13424)
  • Certain access log entries that were missing before are now shown in Log Browser for domains with the “Permanent SEO-safe 301 redirect from HTTP to HTTPS” option enabled. (PPPM-13433)
  • A more comprehensible error message is now shown when trying to create a subdomain for a subscription with no hosting. (PPPM-13435)

Windows

  • The option to change the SSL/TLS certificate securing the mail server is no longer available if a remote SmarterMail server is configured and selected as the Plesk mail server. (PPPM-13381)
  • Plesk Task Manager now properly logs agent exit code when in debug mode. If the exit code is non-zero, the information is logged with the ERROR status. (PPPM-13373)

Third-Party Component Updates

Linux

  • Updated phpMyAdmin to version 5.1.3.
  • Updated Courier-IMAP to versions 5.1.7.
  • Updated OpenSSL to version 1.1.1m.
  • Updated Dovecot and Pigeonhole to versions 2.3.18 and 0.5.18, respectively.
  • Updated Postfix to version 3.5.14.
  • Updated RRDtool to version 1.7.2.
  • Updated Logrotate to version 3.19.0.

Windows

  • Updated ASP.NET Core 6.0 to version 6.0.2.
  • Updated ASP.NET Core 5.0 to version 5.0.14.
  • Updated Node.js to version 12.22.9.
  • Updated MariaDB 10.5 to version 10.5.15.
  • Updated MariaDB 10.3 to version 10.3.34.
  • Microsoft Drivers for PHP for SQL Server are now shipped with PHP 8.1.

WordPress Toolkit 5.9.3

  • Performance of automatic updates and Smart Updates was improved.
  • WordPress Toolkit now can uninstall WordPress plugins if proc_open or proc_close functions are disabled via disable_functions in the currently used PHP handler. (EXTWPTOOLK-8756)

Nextcloud 1.6.2

Linux

  • Changed the way how the ownership of Nextcloud installations is detected. The installations are now mapped to the permission rights of the domains (not users’ IDs as it was before). (EXTPLESK-3352)

Grafana 1.3.2

  • Updated Grafana to version 8.3.6 to fix a security issue.
  • Resolved compatibility issues with Grafana version 8.3.5 and later. (EXTPLESK-3382)

Plesk Migrator 2.21.5

  • The extension can now be installed in Plesk on Debian 11.
  • The extension can now connect to source servers that have old versions of OpenSSH even if the servers do not provide correct information on key hashing algorithms. (PMT-5008)

PHP Updates

  • Updated PHP 8.1 to version 8.1.3.
  • Updated PHP 8.0 to version 8.0.16.

Linux

  • Updated PHP 7.4 to version 7.4.28.
  • Updated Redis to version 5.3.7 for PHP 8.1, 8.0, 7.4.
  • Updated Xdebug to version 3.1.3 for PHP 8.1, 8.0, 7.4.
  • Updated Imagick to version 3.7.0 for PHP 7.4.
  • Updated ionCube loader to version 11.0.1 for PHP 7.4.
  • The PHP updates mentioned above are the last ones for CentOS 8. For details, see Plesk Lifecycle Policy.

Let's Encrypt 2.15.0

  • According to the deprecation plan, we hide the Let’s Encrypt interface elements. This change was announced in the Let’s Encrypt 2.14.0 release. For now, you can bring back the Let’s Encrypt interface elements by adding the following lines to the panel.ini file:

    [ext-letsencrypt]      
    showInterface = true
    

    On March 15, 2022 (Let’s Encrypt release 3.0.0), we completely convert the extension into the SSL It! plugin. It will no longer be possible to issue and manage Let’s Encrypt certificates without the SSL It! extension in Plesk Obsidian 18.0.22 and later.

    If your Plesk does not have the SSL It! extension installed, the Let’s Encrypt release 3.0.0 will automatically install it.

  • Removed the code related to the deprecated ACMEv1 protocol from the Let’s Encrypt extension. Let’s Encrypt stopped using ACMEv1 to issue certificates.

Monitoring 2.2.1

  • 360 Monitoring graphs are now available again because we fixed the issue with the agent360 configuration file. Because of the incorrect file permissions, agent360 stopped sending the data to the 360 Monitoring server. (EXTPLESK-3361)

    To improve agent360 stability, we recommend that you install update 2.2.1 even if your 360 Monitoring was not affected.

Joomla! Toolkit 2.4.6

  • We have created the current extension’s “maintenance only” fork for Plesk versions 17.0.17-18.0.40 and labeled it version 2.4.6. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.41 and later.

Monitoring 2.2.0

  • The extension now shows more information in notification messages from 360 Monitoring. (EXTPLESK-3111)
  • agent360 installation no longer fails on Ubuntu 20 because of the Ubuntu bug. (EXTPLESK-3311)
  • agent360 installation no longer fails after the mod_status module was added manually and the Apache plugin was then enabled. (EXTPLESK-3326)
  • The plesk repair ftp command no longer removes the agent360 system user. (EXTPLESK-3347)

Windows

  • Monitoring now shows the real memory usage and swap usage separately.

WordPress Toolkit 5.9.2

  • Detached WordPress sites are no longer re-added through the Scan procedure, making their detachment permanent. If you need to add a detached site back for some reason, find and remove the .wp-toolkit-ignore file in the site’s root folder.
  • Block author scans and Enable bot protection security measures no longer break WordPress sites installed in a subdirectory. (EXTWPTOOLK-8578)

SSL It! 1.9.10

  • SSL It! now controls the feature of securing Plesk with SSL/TLS certificates (instead of the Let’s Encrypt extension, which did it before).
  • If the Sectigo SSL extension is blacklisted, the “Extension with ID ‘sectigo’ is in blacklist” error no longer occurs. (EXTSSLIT-1842)
  • If internationalized domain names (IDN) are mixed case, the extension no longer shows a redundant warning. (EXTSSLIT-1868)
  • If Plesk is secured with a certificate issued for a custom domain name, renewal of the certificate now keeps the custom domain name. (EXTSSLIT-1869)
  • If nginx is disabled, it is no longer possible to start securing a domain with the “Forwarding” hosting type (because this scenario is not supported and is bound to fail). (EXTSSLIT-1871)

Extensions Catalog 1.15.3

  • Internal improvements.

Plesk Obsidian 18.0.41 Update 1

Linux

  • Emails with daily reports from the “Watchdog” extension now contain correct data instead of error messages again. (PPPM-13385)

Joomla! Toolkit 2.5.0

  • Added support for Joomla! 4.x.
  • Added support for the new “Add Domain” screen.

Docker 1.5.2

  • Added support for AlmaLinux OS and Rocky Linux.
  • The extension can now be installed on Ubuntu 20 servers running on ARM-based platforms.

PHP Composer 1.2.0

  • The extension now works with Composer 2.0 by default, since Composer 1.0 is deprecated. In most cases, you will be able to use Composer for your applications as you did before, except for cases described in Composer’s Upgrade Notes (section “For composer CLI users”). To rollback to Composer 1.0 instance, add the following lines to the panel.ini file:

    [ext-composer]  
    composerVersion = '1' 
    

    and run the ‘self-update.php’ scheduled task in Plesk.

Sectigo SSL 1.3.10

  • Internal improvements.

Grafana 1.3.1

  • The extension now supports the ARM architecture.
  • Running the apt update command on the server with the extension installed by the Monitoring extension no longer causes the “N:Skipping acquire of configured file ‘main/binary-i386/Packages’
” error being shown. (EXTPLESK-3313)

PHP Updates

  • Updated PHP 8.1 to version 8.1.2.
  • Updated PHP 8.0 to version 8.0.15.

Linux

  • Updated Redis to version 5.3.6 for PHP 8.1 and 8.0.
  • Updated Imagick to version 3.7.0 for PHP 8.1 and 8.0.

Panel.ini Editor 3.2.5

  • Minor internal improvements.

DigiCert SSL 1.11.3

  • The extension now validates wildcard and OV certificates via email and not via file upload because of DigiCert policy changes.

Monitoring 2.1.2

  • It is now possible to configure websites integrated with 360 Monitoring via the CLI. To see the CLI commands, run plesk ext monitoring --help.
  • The extension can no longer get stuck in step “Activate” of 360 Monitoring if the server hostname was incorrectly detected. (EXTPLESK-3321)
  • The extension now correctly configures the agent360 MySQL plugin for working with MariaDB 10.5. (EXTPLESK-3277)

Git 2.0.2

  • Internal improvements.

Extensions Catalog 1.15.2

  • Even if the Extensions Catalog fails to update its endpoint, the search function remains available.
  • Internal improvements.
  • Removing an extension now automatically redirects to the “My Extensions” tab. (EXTCATALOG-589)

Plesk Obsidian 18.0.41

  • Cgroups Manager is now a free-to-use feature, and a welcome addition to the Plesk Web Pro and Web Host editions. Read more about this feature.
  • Added the plesk bin action-log CLI utility. The utility can be used to extract action log entries in raw or JSON format, and also to manage action log rotation settings.

    See how to use the utility in Plesk for Linux and Windows.

  • Added the ability to switch outgoing mail control from counting individual messages to counting the total number of recipients from the Plesk interface (“Tools&Settings” > “Mail Server Settings” > turn on limitations on outgoing email messages > “Count a number of recipients instead of messages”).
  • Reduced page load time for the Domain Overview screen.
  • Improved the Plesk UI related to tasks in progress to make it more appealing and easier to use.
  • The “Webspace Settings” section is no longer collapsed by default when adding domains, and will instead remember its last state, whether collapsed or expanded. This will make adding multiple domains easier for people who routinely changed the default usernames, passwords, or IP addresses during domain creation.
  • Decreased the page load time for a number of most popular screens in Plesk. Transitions to the following screens are now up to 400% faster:

    • DNS Settings (-400%)
    • Websites & Domains (-15%)
    • Domains (-15%)
    • File Manager (-10%)
    • PHP Settings (-28%)
    • Web Hosting Access (-25%)
    • Hosting Settings (-7%)
  • Added the ‘Allow necessary cookies’ option to the cookie banner in Plesk to comply with the updated GDPR requirements.
  • The SSH Terminal extension now shows a helpful pop-up with instructions if it is unable to connect (for example, because the ssh service is not running or because root login is prohibited).
  • Added the ability to prevent customers from changing the Recycle Bin rotation settings in File Manager. To restrict the ability to change rotation settings to admins and resellers only, add the following lines to the panel.ini file:

    [fileManager]
    trash.rotation.customerAccess = false
    
  • Based on the collected feedback, the bar on the right side of individual domains’ screens stays! The invitation to fill in the survey has been removed. Thanks for letting us know your opinion, everyone!
  • Added the ability to control the logging level of XML-RPC requests and responses. To change the logging level, add the following lines to the panel.ini file:

    [log]
    filter.priority = 6 
    

    The valid values range from 0 to 7. The higher the number, the more detailed the log, with 7 being “debug”, 6 being “info”, and so on. See Zend Debug Levels for more information.

  • Context promos for a number of Plesk extensions have been removed from the “DNS Settings”, “Updates & Upgrades Settings”, “Email Addresses”, “Mail Server Settings”, and “Backup Manager” screens.
  • Custom promos added by the customer via the KAPC delivery mechanism are now shown before Plesk promos on the Home screen in Service Provider view.
  • Improved the stability of the Extensions Catalog.
  • Creating a website via the new domain creation wizard now correctly redirects to the relevant screen after the domain is created (for example, the Git extension is opened if the “Git” option was selected during domain creation). (PPP-55706)
  • Notifications about the backup file being invalid are now correctly sent after backup creation. (PPPM-11642)
  • The “Preview” link is now shown correctly in the Domain list in Service Provider view when either the “Quick Preview on a domain name in Plesk” or “Quick Preview on an external domain name” option is selected in “Tools & Settings” > “Website Preview”.(PPP-55571)
  • It is no longer necessary to empty the list of files to be excluded from backup in “Tools & Settings” > “Backup Manager” > “Schedule” before you can clear the “Exclude specific files from the backup” checkbox. (PPPM-12262)
  • Changing the IP address of a domain with log rotation enabled no longer turns log rotation off. (PPP-55573)
  • It is no longer possible to update Plesk administrator profile details if the “Email address” field is empty. (PPPM-13319)
  • Added a link to the documentation to the warning message shown when setting outgoing mail limit for a domain, and the configured limit for the domain exceeds the limit for the subscription. (PPPM-13203)
  • The “Preview” link for the domain selected for previewing other websites (“Tools & Settings” > “Website Preview” > “Quick Preview on a domain name in Plesk”) is no longer shown in the Domain list in Service Provider view. (PPPM-13361)
  • Uploading files via File Manager no longer sometimes fails with the “No files selected. To upload the files, you have to select them.” error. (PPP-54792)
  • After configuring the Amazon S3 Backup extension via the CLI, it is no longer shown as not configured in the Plesk interface. (PPPM-13332)
  • The confirmation message shown when removing a domain now correctly calculates the number of domains that will be removed. (PPPM-13283)
  • Fixed the issue where opening a domain resulted in a white screen under specific circumstances. (PPPM-13358)

Linux

  • RockyLinux is now supported, both for new Plesk Obsidian installations and for in-place conversion from CentOS 8.
  • Plesk can now be installed on Ubuntu 20 servers running on ARM-based platforms (as a Beta version with certain limitations). You can also try a VPS with Plesk on Graviton2 processors by using this Plesk AWS AMI image in just a click.

    Read more about the ARM architecture in the article. Have questions or suggestions regarding this feature? We welcome your feedback!

  • Added the ability to add custom headers to emails sent via the Plesk auto-reply mechanism from the Plesk interface (“Tools&Settings” > “Mail Server Settings” > “Extra auto-reply headers”). In addition, the “Auto-Submitted: auto-replied (vacation)” header in now added by default.
  • It is no longer possible to create mail accounts for domains for which the mail service was disabled. (PPPM-13205)
  • It is no longer possible to create a MySQL user with the name “root@localhost” under specific circumstances. (PPPM-12656)
  • Importing and exporting MySQL databases with one or more definers and/or triggers via the Plesk interface now works correctly. (PPPM-13311)
  • Trying to access Scheduled Tasks under Dev Tools when logged in as a reseller no longer results in the “Permission denied” error. (PPPM-13333)
  • The vhostmng-find process no longer follows symlinks by default, which could prevent daily tasks from running and lead to 100% CPU load. (PPP-47419)
  • On Red Hat Enterprise Linux 8.x and its derivatives, Plesk Watchdog is now able to correctly detect the status of the SpamAssassin process. (PPPM-13315)
  • A more informative error message is now shown when the PUM utility tries and fails to update a duplicated package. (PPP-55204)
  • Single quotes in Plesk error messages are no longer replaced with double quotes when clicking the “Search for related Knowledge Base articles” button, which led to empty search results. (PPPM-13327)
  • The plesk bin custom_plan_items --update CLI utility no longer unexpectedly produces a non-zero exit code upon completion. (PPPM-13365)
  • Running the plesk repair mail CLI utility no longer prevents users from creating mailboxes for domains with the mail service enabled that are owned by a subscription with the mail service disabled. (PPPM-13369)
  • Incorrect breadcrumbs are no longer shown on certain screein in the Plesk interface. (PPPM-13335)
  • Plesk no longer shows an incorrect “The following Apache modules are not installed on the destination server:” error after migrating from Ubuntu 16 to Ubuntu 20. (PMT-4972, PPP-55411)
  • Clarified the error message shown when trying to create an FTP user with a name starting with a number. (PPPM-13344)
  • XML API requests specifying the filter no longer fail. (PPPM-13353)
  • Opening the PHP settings of a domain with the disabled “PHP version and handler management” permission no longer results in an error. (PPPM-13370)

Windows

  • Security improvements. (PPPM-13317)
  • SpamAssassin no longer penalizes messages that fail the RDNS_NONE check, which could lead to legitimate messages being treated as spam.
  • The “PSAMailbackup.exe” process no longer keeps running when a backup of one or more subscriptions with mail accounts is started and then stopped. (PPPM-11671)
  • Websites are now published correctly in Web Presence Builder, and website snapshots can be downloaded. (PPPM-13339)

Third-Party Component Updates

  • MariaDB 10.6 is now supported.
  • PHP 8.0 is now recommended to use in Plesk, and is now the default PHP versions for websites in Plesk.
  • PHP 8.1 is now available in the Plesk installer.
  • Marked PHP 7.3 as outdated because it has reached end of life.

Linux

  • Updated PHP used by sw-engine to version 7.4.27.
  • Updated nginx and the sw-cp-server service to version 1.20.2.
  • Updated Phusion Passenger to version 6.0.12.
  • Updated Dovecot to version 2.3.17.1.
  • Updated Pigeonhole to version 0.5.17.1.
  • Updated Roundcube to version 1.4.13.
  • Updated ModSecurity 3 to version 3.0.6.
  • Updated ModSecurity 2 to version 2.9.5.

Windows

  • .NET 6.0 is now supported.
  • Updated ASP.NET Core 6.0 to version 6.0.1.
  • Updated ASP.NET Core 5.0 to version 5.0.13.
  • Updated ASP.NET Core 3.1 to version 3.1.22.
  • Updated PHP used by plesk-engine to version 7.4.27.
  • Updated Node.js 12 to version 12.22.7.
  • Updated Git to version 2.34.1.
  • Updated BIND to version 9.16.23.
  • Updated ModSecurity to version 2.9.5.

Repair Kit 1.3.0

  • Internal improvements.

Repair Kit 1.2.4

  • We have created the current extension’s “maintenance only” fork for Plesk versions 17.0.17-18.0.38 and labeled it version 1.2.4. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.38 and later.

Plesk Obsidian 18.0.40 Update 3

  • Creating a website via the new domain creation wizard now correctly redirects to the relevant screen after the domain is created (for example, the Git extension is opened if the “Git” option was selected during domain creation). (PPP-55706)

Third-Party Component Updates

Linux

Plesk Migrator 2.21.4

  • The extension can now correctly resync email messages from cPanel. (PMT-5000)
  • Migration from servers with customized SSH MACs now works. (PMT-4361)
  • Plesk in Restricted Mode no longer shows the “Migration & Transfer Manager” button in “Tools & Settings”. (PMT-5001)

    Note: To have this bugfix come into effect, update your Plesk to the upcoming version 18.0.41.

Git 2.0.1

  • The Git extension is opened if the “Git” option was selected during domain creation. (EXTGIT-201)

Plesk Obsidian 18.0.40 Update 2

  • When restoring a customer or a Plesk server from a backup, the “Cannot update customer account: unknown country code “XX” warning no longer appears. (PPPM-13324)

Linux

Third-Party Component Updates

  • Marked PHP 7.3 as outdated because it reached end of life.
  • PHP 8.0 is now recommended to use in Plesk.
  • PHP 8.1 is now available in the Plesk installer.

    Note: At the moment, PHP 8.1 is not present in the set of recommended components.

Plesk Mobile Center 1.18

  • The extension no longer shows incorrect memory usage values in Plesk 18.0.40 and later. (PMBL-614)

SSL It! 1.9.9

  • Users in most countries will now see SSL certificate prices without the need to click the “Buy” button.
  • It is now possible to configure the list of certificates available for purchase only by enabling and disabling the Sectigo and DigiCert extensions in the Extension Catalog.
  • Aliases are no longer getting secured if the “Keep Websites Secured” option is enabled, but the “Secure domain aliases” checkbox is not checked.(EXTSSLIT-1808)

Monitoring 2.1.1

  • Internal improvements.

Extension Catalog 1.15.1

  • Internal improvements.

WordPress Toolkit 5.9.1

  • Default autoupdate settings for new WordPress installations are now correctly set to expected values again. (EXTWPTOOLK-8620)

Monitoring 2.1.0

  • The Monitoring extension installs the agent360 service by itself without using any external bash scripts.
  • Added new CLI commands for managing integration with the Cgroups Manager.
  • “Enable integration with the Cgroups Manager” feature is enabled by default.

    However, the Plesk administrator can turn off the feature by adding the following lines to the panel.ini file:

    [ext-monitoring]
    allowCgroupsManagerIntegration = false
    
  • After you have bought the Pro license for 360 Monitoring, the extension will automatically hide a notification informing that the previous license has expired. (EXTPLESK-3260)
  • The Gragana’s graph for CPU on Plesk for Windows has become more user-friendly and easy to read. (EXTPLESK-3261)
  • If a Plesk server with configured 360 Monitoring is removed from Plesk360, Plesk Monitoring will now ask to configure 360 Monitoring again. (EXTPLESK-3256, EXTPLESK-3278)
  • Monitoring now provides more detailed information if an error occurs when installing agent360. (EXTPLESK-3176)
  • Monitoring will not show a blank page when the “e[n].filter is not a function” error occurs. (EXTPLESK-3300)

WordPress Toolkit 5.9.0

  • WordPress Toolkit now sends email notifications upon discovering vulnerable plugins, themes, or WordPress sites. These notifications can be configured in the same place as other similar notifications.
  • Autoupdate policies for sites were extended to include automatic updates of vulnerable assets, and automatic disabling of vulnerable plugins.
  • Site vulnerability check now correctly identifies and marks assets that remain vulnerable after they were updated. (EXTWPTOOLK-8583)
  • Site vulnerability check no longer bothers with inapplicable sites (broken, quarantined, etc). (EXTWPTOOLK-8585)
  • Site vulnerability check should now display applicable fix version instead of the earliest one. (EXTWPTOOLK-8559)
  • Site vulnerability check (because what else it could be at this point, right?) now properly marks vulnerable assets on the site card after they are installed. (EXTWPTOOLK-8519)
  • Maintenance mode settings are no longer reset to default when you resize the maintenance mode settings window. (EXTWPTOOLK-8539)
  • Maintenance mode now properly validates large values for timers. (EXTWPTOOLK-3566)
  • WordPress Toolkit UI no longer vanishes without warning when user session expires. (EXTWPTOOLK-8580)
  • Comments in web server config file about Block access to sensitive files security measure are now properly attributed to this measure. (EXTWPTOOLK-8594)

Git 2.0.0

  • On Plesk for Linux servers, added the ability to specify login and password for remote HTTPS repositories.
  • Completely overhauled the UI to make it modern and more convenient.
  • The last commit information is now correctly updated after pulling updates without the need to refresh the page. (EXTGIT-33)
  • It is now possible to select the root folder when setting the Git deploy path. (EXTGIT-54)
  • The currently selected folder is now shown when changing the Git deploy path. (EXTGIT-69)
  • Changing domain settings no longer results in the inability to push changes to local Git repositories. (EXTGIT-70)
  • The Git extension no longer shows the wrong directory tree when editing the Git deploy path. (EXTGIT-142)
  • The Git extension no longer causes icons to be misaligned on buttons in the domain menu. (EXTGIT-158)

PHP Updates

  • Updated PHP 7.4 to version 7.4.27.
  • Updated PHP 8.0 to version 8.0.14.

Linux

  • Updated Redis to version 5.3.5 for PHP 7.4 and 8.0.
  • Updated Xdebug to version 3.1.2 for PHP 7.4 and 8.0.

Ruby 1.4.0

  • Database inconsistency on domain removal was eliminated. (EXTRUBY-101)

Ruby 1.3.14

  • We have created the current extension’s “maintenance only” fork for Plesk version 18.0.35 and earlier and labeled it version 1.3.14. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.36 and later.

Node.js 2.0.4

  • Database inconsistency on domain removal was eliminated. (EXTNODEJS-185)

Grafana 1.3.0

  • To improve compatibility with new versions of the Grafana platform, it is now installed only from tested packages from the Plesk repository.

Google Workspace 1.1.2

  • The extension now automatically installs purchased Google Workspace licenses to Plesk.

Advisor 1.9.6

  • Removed the recommendation to use the Virusdie extension.

Google Workspace 1.1.1

  • It is now again possible to select a plan when creating a subscription. (EXTPLESK-3283)

Let's Encrypt 2.14.0

  • Changing Let’s Encrypt from a standalone extension into a plugin for SSL It!

    In February 2022, we plan to change Let’s Encrypt into a plugin for the SSL It! extension.

    Will I lose any Let’s Encrypt features?

    You will not! The SSL It! extension already has all the features Let’s Encrypt has and more. The only change is that Let’s Encrypt stops being a standalone extension and starts working only in tandem with SSL It!

    Which Plesk versions will it affect?

    Plesk Obsidian 18.0.22 and later. Earlier Plesk versions do not receive either SSL It! or Let’s Encrypt updates.

    How can I continue working with Let’s Encrypt certificates?

    • If your Plesk version is 18.0.22 and later, install SSL It! and use it from now on.
    • If your Plesk version is 18.0.21 and earlier, update Plesk to version 18.0.40, install SSL It!, and then use it from now on. You can still manage Let’s Encrypt certificates using the maintenance-only fork of the Let’s Encrypt extension (it comes with no new features, improvements, or bug fixes).

    How and when will the change go into effect in Plesk 18.0.22 and later?

    We are making this change in three steps:

    • On December 14, 2021 (Let’s Encrypt release 2.14.0), we announce the changes in the Plesk Change Log and Plesk UI notifications.
    • On February 15, 2022 (Let’s Encrypt release 2.15.0), we hide the Let’s Encrypt UI elements. At that point, you will still be able to bring them back by adding the following lines to the panel.ini file:

        [ext-letsencrypt]     
        showInterface = true
      
    • On March 15, 2022 (Let’s Encrypt release 3.0.0), we completely change the extension to an SSL It! plugin. It will no longer be possible to manage Let’s Encrypt certificates in Plesk Obsidian 18.0.22 and later without SSL It! If you have not installed SSL It! by yourself, Let’s Encrypt release 3.0.0 will automatically install it for you.

    Note: The showInterface setting in the panel.ini file (mentioned above) stops working from this point on. Keeping it will not hinder your Plesk server in any way. However, we recommend that you remove the showInterface = true line from panel.ini to declutter the file content.

    Why do you make these changes to the Let’s Encrypt extension?

    Less than 10% of all Plesk servers use Let’s Encrypt without SSL It! Plus, combining the SSL It! and Let’s Encrypt extensions offers more features than Let’s Encrypt alone.

Extension Catalog 1.15.0

  • Reduced feed size by excluding description markdown and changelog.
  • The context promos window on the Mail tab now shows the correct number of offers for the Plesk Premium Email extension. (EXTCATALOG-581)

Docker 1.5.1

  • Internal improvements.

WordPress Toolkit 5.8.0

  • WordPress Toolkit now regularly scans plugins, themes, and WordPress versions for known vulnerabilities using information provided by Patchstack service. Sites with known vulnerabilities are marked in the site list. Detailed information about found vulnerabilities is displayed in a separate tab of the Security window for each site.
  • WordPress Toolkit now detects modified WordPress login URL automatically, eliminating the need to specify it manually.
  • Blocklist feature now works with CLI operations.
  • Updates are no longer checked for blocked plugins.
  • Manually launched scan procedure now works much faster.
  • Improved the cleanliness of Smart Updates: the procedure should not leave empty folders behind anymore.
  • Improved the performance of installing and removing WordPress sites on servers with a lot of connected databases.
  • Improved the performance of Action Log when working with very large log files.
  • Smart Update results page opened via the link in the notification email now works properly. (EXTWPTOOLK-8488)
  • Action log records with non-Latin characters are now properly displayed in all known cases. (EXTWPTOOLK-8427)
  • Cloning now properly copies index.php to a domain with modified vhost template. (EXTWPTOOLK-8244)
  • Innocent valid domains on Hotlink Protection Settings window are no longer marked as non-valid when an adjacent non-valid domain is removed from the list. (EXTWPTOOLK-8210)
  • Password protection now works for directories with ampersand in their name. (EXTWPTOOLK-6496)
  • Correct hint text is now shown for autoupdate settings on WordPress installation screen. (EXTWPTOOLK-8367)
  • Description of Turn off pingbacks security measure was updated to appease the nitpickers from our security team. (EXTWPTOOLK-8249)
  • Description of Block author scans security measure was also updated to appease the nitpickers from our security team. (EXTWPTOOLK-8253)
  • Changelog links for plugins and themes were returned on the Plugins and Themes global tabs and Updates screen. (EXTWPTOOLK-8339)
  • Remote sites connected via plugin can again be properly updated via WordPress Toolkit without unexpected consequences. (EXTWPTOOLK-8235)
  • Database table prefix is no longer modified during Copy Data procedure if Files Only option was selected. (EXTWPTOOLK-8452)
  • Database name link no longer leads to a broken screen. (EXTWPTOOLK-8425)
  • Autoupdate tasks are now properly processed even if database limit on a subscription is reached. (EXTWPTOOLK-8505)
  • Log Rotation button was removed from Action Log on Windows because turns out log rotation isn’t actually available on Windows. (EXTWPTOOLK-8448)

Plesk Obsidian 18.0.40 Update 1

Linux

  • Certain actions in Plesk on Ubuntu run in an OpenVZ container (for example, migration, Plesk updates, backing up, and so on) no longer fail with the “boost::filesystem::copy_file: Function not implemented” error. (PPPM-13321, PPPM-13323)

Third-Party Component Updates

  • Updated Roundcube to version 1.4.12 to fix the following security issues: CVE-2021-44025 and CVE-2021-44026.

    We strongly recommend that you update Plesk.

Site Import 1.5.5

  • Updated the translations.

SSH Terminal 1.2.2

  • If SSH root login is prohibited in the sshd config, you will now see a warning message when opening SSH Terminal. (PPP-54539)

Domain Traffic Monitor 1.3.4

  • Internal improvements.

SSL It! 1.9.8

  • Updated the process of renewing Let’s Encrypt certificates for Plesk and Mail server. Now SSL It! renews such certificates on its own.
  • Now Plesk automatically removes information about OCSP stapling from the configuration file of the domain web server when unassigning a certificate from the domain.
  • Plesk no longer replaces the value of the “Keep websites secured with free SSL/TLS certificates” service plan setting of the SSL It! extension with the value of a similar setting from the Let’s Encrypt extension. Previously it happened when updating SSL It! (EXTSSLIT-1741, EXTSSLIT-1788)

Plesk Mobile Center 1.17

  • Internal improvements.

Plesk Migrator 2.21.3

  • Migrator no longer fails to copy the content and system files of domains that have mixed case names. (PMT-4963)

Monitoring 2.0.3

  • The status of domains added to Monitoring that have not yet been checked is now shown as “Pending” instead of “Safe and sound”. (EXTPLESK-3136)
  • Line breaks are no longer inserted into one line text strings in the UI when the browser window is resized. (EXTPLESK-3188)
  • Updated the text of the links in the notification shown when a user runs out of domains they can monitor for free to prevent possible confusion. (EXTPLESK-3189)

Sectigo SSL 1.3.9

  • In Plesk for Linux, improved chances of successful issuance of SSL/TLS certificates for domains that have access restrictions or custom rewrite rules. To deliver this, the extension now uses the general location of HTTP tokens.

    Note: If necessary, you can turn off this improvement by running the following command: plesk ext sslit --common-challenge-dir -disable. However, we recommend that you always keep the improvement on.

Plesk Obsidian 18.0.40

  • Replaced Gzip with ZSTD as the default compression method for backup and restore operations in Plesk. On multi-CPU servers, depending on the type of data being backed up, this provides the following benefits:

    • Reduces the backup size by up to 20%.
    • Reduces the CPU load by up to 25%.
    • Reduces the backup creation time by up to 2x (fast), and by up to 4x (fastest), based on the compression level.

    The desired compression level can be set in “Tools&Settings” > “Backup Manager” > “Settings”. The ‘Fast’ level is set by default.

  • Added the ability to disable automatic HTTP > HTTPS redirection for webmail. To enable it, add the following lines to the panel.ini file:

    [mail]
    webmail.forceHttp = true
    

    On Plesk for Windows, to disable automatic HTTP > HTTPS webmail redirection for existing domains, run the plesk repair web -webmail command.

  • Removed a number of Plesk extensions from the Plesk Installer due to low usage. These extensions are still available from the Extensions Catalog:

    In addition, the Plesk Cgroups Manager extension was removed from the “Recommended” preset, and the Site Import extension was added to the “Recommended” preset.

  • Due to security improvements made by Google, if you are using Google Drive Backup Plesk extension to create backups on a shared drive belonging to a corporate account, you need to do the following to be able to make backups (users with personal drives are unaffected):

  • Plesk Administrator should explicitly specify their country of residence in their profile.
  • A number of buttons initiating the primary action on the page have been visually highlighted to make them more noticeable.
  • When creating a subscription, physical hosting is now correctly configured if the subscription’s system user’s password includes one or more ampersand (“&”) characters. (EXTREST-118)
  • Domain Preview now correctly accesses the website being previewed via IPv4, even if an IPv6 address is also configured for the domain. (PPPM-13075)
  • For certain older Plesk extensions, clicking the name of a domain on the extension’s page no longer results in the domain overview page opening with layout and domain name, but no content. (PPPM-13252)
  • Running the plesk repair mail command for a domain in Plesk with “Outgoing messages from a subscription (per hour)” set to “Unlimited” no longer results in an error. (PPPM-13272)
  • Searching for a mailbox in Plesk when on the Home Page no longer results in the “An invalid URL was requested” error. (PPPM-13273)
  • Opening the Plesk Installer interface in a web browser no longer results in SSL certificate errors. (PPPM-13295)
  • It is now possible to add and modify database users even if the subscription’s default MySQL server is not available. (PPPM-13265)
  • Changing the IP address for a subscription now correctly updates the IP address of all domains owned by the subscription with the “Forwarding” hosting type. (PPPM-13256)
  • Operations in File Manager no longer incorrectly affect previously viewed webspaces. (PPPM-13268)
  • The controls in “DNS Settings” no longer sometimes disappear when logged in to Plesk as a customer. (PPPM-13292)

Linux

  • Added the ability for Outgoing Mail Control to count the number of individual recipients (TO, CC, and BCC) instead of messages. This closes an abusable loophole which allows users to send bulk email by specifying a large number of recipients (the current Outgoing Mail Control logic counts each individual email as just one message sent, no matter how many recipients the email is sent to). To switch Outgoing Mail Control from counting messages to counting recipients (and vice versa), run the plesk bin mailserver --set-outgoing-messages-count-recipients <true|false> command (the change is server wide). (PPM-7181)
  • Specifying custom values for both the proxy_read_timeout nginx directive and max_execution_time PHP setting for the same domain results in the max_execution_time value being substituted for the proxy_read_timeout value (e.g., adding proxy_read_timeout 1800; to “Apache&Nginx Settings” > “Additional Nginx directives” and setting max_execution_time to 90 in “PHP Settings” will result in proxy_read_timeout being set to 90 in the nginx configuration file for the domain in question). (PPPM-12599)
  • On Ubuntu 18.04 and Ubuntu 20.04 servers, re-reading and repairing IP addresses in Plesk no longer results in unnecessary duplicate lines sometimes being added to the /etc/netplan/10-plesk.yaml file. (PPP-53340)
  • Users can now manage the PHP-FPM version for domains after an incomplete systemd upgrade on the server. (PPPM-13248)
  • Trying to remove a database registered in Plesk but hosted on an external database server no longer results in an error if the database user name includes one or more underscore (“_”) characters. (PPPM-13239)
  • Removed the ampersand (“&”) character from the list of characters that cannot be used in passwords in Plesk included with the error message shown when the provided password does not meet the password strength requirements. (PPPM-13229)
  • Cached memory is no longer included in the memory usage calculation in “Tools&Settings” > “Server Information”.(PPPM-13264)
  • Added a human readable error message for cases when Task Manager fails to show the list of current tasks due to the number of simultaneously running tasks being very high. (PPPM-13123)
  • Running the plesk bin pleskbackup command with the “-z” or “no-gzip” options now correctly results in the backup file not being compressed. (PPPM-13254)
  • Trying to create a backup of a subscription no longer results in an error if the subscription’s name includes both uppercase and lowercase letters. (PPP-54691)
  • It is now possible to move domains to subscriptions that were created on Plesk versions 11 or earlier and then migrated to a Plesk Obsidian server. (PPPM-12916)
  • Mail messages forwarded from a Plesk server, or from one mail account to another on the same Plesk server no longer includes an unnecessary duplicate “From:” header. (PPPM-13296)
  • Trying to enable SSLv3 (which is outdated and insecure) on a Plesk server by running the plesk bin server_pref -u -ssl-protocols 'SSLv3' command now correctly fails with the “Protocol ‘SSLv3’ is not supported” error. (PPPM-13242)
  • Plesk Installer no longer reports errors if the locale used in Plesk is not configured correctly in Linux. (PI-331)
  • Restoring a backup in Plesk no longer results in a warning if the nginxCacheBypassLocations nginx directive is configured in the panel.ini file. (PPPM-13300)
  • Mailbox size limits specified in a hosting plan settings are now correctly propagated to mailboxes of all domains that belong to subscriptions based on that plan. The mailbox size is now corectly shown as “Default” instead of “Another size” in Plesk, and is changed accordingly for all mailboxes if the size limit is changed in the hosting plan. (PPPM-13274)
  • The size of files smaller than 4 KB is now shown correctly in File Manager. (PPPM-13303)
  • The “Upload file” command is no longer shown in File Manager when browsing a read-only directory. (PPPM-13285)
  • Copying a database or exporting a database dump no longer fails if the name of the database starts with the dash (“-“) character. (PPPM-13267)

Windows

  • Added the option to automatically remove emails forwarded from a mailbox in Plesk. The feature is disabled by default. To enable it, go to “Mail”, click the desired mailbox, open the “Forwarding” tab and select the “Do not deliver copies of forwarded emails to the Plesk mailbox” checkbox.
  • When selecting or clearing the “Show system files and directories” checkbox in File Manager options, it is no longer necessary to refresh the browser window for the changes to take effect. (PPPM-13255)
  • Outgoing Mail Control now works correctly on Plesk Obsidian servers with MailEnable Enterprise edition installed. (PPPM-13269)
  • Running the plesk repair web command now correctly resolves issues with corrupted SSL certificate files that could result in users being unable to create domains. (PPP-54689)
  • The “CAS trust level” setting value for newly created subscriptions in Plesk in now correctly inherited from the one set on the global level in the IIS Manager. (PPPM-13276)
  • Trying to unpack a .zip file in File Manager no longer fails with the “Unable to unpack archive” error under specific circumstances. (PPPM-13309)

Third-Party Component Updates

  • Updated sw-engine PHP to version 7.4.26.

Linux

  • Updated Dovecot and Pigeonhole to versions 2.3.17 and 0.5.17, respectively.

Windows

  • Updated ASP.NET Core 5.0 to version 5.0.11.
  • Updated ASP.NET Core 3.1 to version 3.1.20.
  • ASP.NET Core 2.1 is no longer shipped with Plesk.
  • Updated MariaDB 10.5 to version 10.5.13.
  • Updated MariaDB 10.3 to version 10.3.32.
  • The “WebDAV Publishing” IIS role service is no longer added during Plesk installation.
  • Updated Horde PHP to version 7.4.

Google Workspace 1.1.0

  • Changed the extension name from G Suite to Google Workspace according to the rebranding.
  • Changed the product list. It now contains the following: Google Workspace Business Starter, Google Workspace Business Standard, and Google Workspace Plus.
  • The extension now supports the Pay-As-You-Grow licensing model. For example, users can now choose the desired number of seats by themselves.
  • Internal improvements.

Extension Catalog 1.14.3

  • Improved how the Extension Catalog shows the country of tax residence to private customers with VAT.

PHP Updates

  • Updated PHP 7.3 to version 7.3.33.
  • Updated PHP 7.4 to version 7.4.26.
  • Updated PHP 8.0 to version 8.0.13.

Linux

  • Updated Imagick to version 3.6.0 for PHP 7.3, 7.4, and 8.0.

Plesk Obsidian 18.0.39 Update 2

Linux

  • Plesk Update Manager no longer fails with the “‘NoneType’ object has no attribute ‘run_sack’” error. We have spotted this issue in Plesk Obsidian 18.0.39 Update 1 on CentOS 8.5, AlmaLinux OS 8.5, RHEL 8.5, CloudLinux OS 8.5. (PPPM-13304)

Git 1.3.5

  • The extension now correctly shows directories in the “Change branch and path” menu. (EXTGIT-104)

Let's Encrypt 2.13.8

  • When it takes more than two minutes to issue an SSL/TLS certificate, the extension no longer fails with the “JWS has an invalid anti-replay nonce” error. (EXTLETSENC-1084)
  • The extension no longer supports the cli.ini legacy configuration file. To manage the extension settings, use the panel.ini file instead.

Node.js 2.0.3

Linux

  • The extension now automatically installs the Current version of Node.js and keeps it up to date.

Sectigo SSL 1.3.8

  • Internal improvements.

Monitoring 2.0.2

  • Internal improvements.
  • The plesk ext monitoring --thresholds --set-from-json command no longer overrides all the threshold values but only those that have been set. (EXTPLESK-3171)

Mail Log Browser 1.2.0

  • Added support of journalctl.

Extension Catalog 1.14.2

  • Improved the interface of the extension management page.

DigiCert SSL 1.11.2

  • Internal improvements.

PHP Updates

Linux

  • Updated ionCube Loader to version 10.4.5 for PHP 5.6 in Plesk on CentOS 7.
  • Fixed a security vulnerability in PHP versions 5.6, 7.0, 7.1, 7.2.

    We strongly recommend that you update Plesk.

    Note: The fix is for PHP in Plesk on the supported operating systems only.

DigitalOcean DNS 1.3.2

  • The extension icon is now consistent with all other Plesk icons. (EXTPLESK-2472)

Docker 1.5.0

  • Improved compatibility with Plesk version 18.0.40 and later.

Docker 1.4.9

  • We have created the current extension’s “maintenance only” fork for Plesk versions 17.0.17-18.0.21 and labeled it version 1.4.9. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.22 and later.

Sectigo SSL 1.3.7

  • The extension now validates wildcard certificates via email and not via file upload because of Sectigo policy changes.

Ruby 1.3.13

  • The extension no longer fails to promote Ruby into user’s environment on CloudLinux with enabled fs.protected_symlinks_create. (EXTRUBY-96)

Google Authenticator 1.5.1

  • Updated translations.

Extension Catalog 1.14.1

  • Internal improvements.

Addendio - WordPress Plugins and Themes 1.3.2

  • The extension is now deprecated. It was a legacy one and caused numerous JavaScript errors. The extension will be disabled on all Plesk installations and removed from the Extension Catalog. Instead of the extension, use WordPress Toolkit, which is installed in Plesk by default.

PHP Updates

  • Updated PHP 7.3 to version 7.3.32.

Let's Encrypt 2.13.7

  • The extension now reissues a certificate that secures Plesk if the Plesk hostname was changed.
  • During the installation or update of the Let’s Encrypt extension, it no longer tries to reissue a certificate that secures Plesk if this certificate was issued to a domain. (EXTLETSENC-1077)

SSL It! 1.9.7

  • In Plesk for Linux, it is now possible to disable HTTPS access to webmail subdomains by adding the following lines to the panel.ini file:

      [mail]
      webmail.forceHttp = true
    

    To have these webmail changes take effect, reconfigure all the existing domains by running the plesk repair web -domains-only command.

SEO Toolkit 1.1.16

  • Fixed a regression bug in the “Active List” output.

SEO Toolkit 1.1.15

  • Fixed performance issues on the “Websites & Domains” page.

PHP Updates

  • Updated PHP 8.0 to version 8.0.12.
  • Updated PHP 7.4 to version 7.4.25.

Monitoring 2.0.1

  • Internal improvements.

Monitoring 2.0.0

  • Added integration with 360 Monitoring, a new tool present in the Plesk 360 cloud service.

    360 Monitoring brings a couple of useful features, for example, monitoring of website availability, various notification channels, and more.

    To try 360 Monitoring, connect your Plesk server to Plesk 360 and then activate 360 Monitoring. The extension wizard will guide you through these steps.

    You can turn on and off the 360 Monitoring integration as many times as you need.

    Note: 360 Monitoring works in Plesk Obsidian 18.0.36 and later.

    Gave 360 Monitoring a try and it is not your current choice? Switch back to the old Monitoring you got used to over the last releases. We now call it the “Built-in Monitoring” mode.

WordPress Toolkit 5.7.4

  • Updated translations.
  • Plesk correctly redirects users to WordPress Toolkit after they install WordPress via APS for some weird reason. (EXTWPTOOLK-8263)

Microsoft Azure DNS 1.1.1

  • The main page of the extension now opens again. (EXTPLESK-3137)

Plesk Obsidian 18.0.39 Update 1

  • It is now possible to hide the “What username and password to use?” link on the Plesk page or change the URL the link leads to.

    To hide or change the link, add the lines of the following pattern to the panel.ini file:

    [login]
    howToLoginArticle = '' ; Hides the link.
    howToLoginArticle = 'https://example.com' ; Changes the default URL of the link to example.com.
    

SSL It! 1.9.6

  • Internal improvements.

Site Import 1.5.4

  • The extension installation no longer breaks Plesk Onyx 17.0 and 17.5. We have spotted this bug in Site Import version 1.5.3. (PMT-4984)

Sectigo SSL 1.3.6

  • Internal improvements.

PHP Composer 1.1.4

  • Internal improvements.

Node.js 2.0.2

  • Internal improvements.

Monitoring 1.4.5

  • Internal improvements for the upcoming major release 2.0.0.
  • Detected hardware changes no longer restore all the disabled thresholds to defaults. (EXTPLESK-2423)

Let's Encrypt 2.13.6

  • Internal improvements.

Git 1.3.4

  • The extension now correctly adds a remote repository via SSH in Plesk Obsidian 18.0.39 and later. (EXTGIT-184)

Advisor 1.9.5

  • Internal improvements.

WordPress Toolkit 5.7.3

  • Forced automatic updates are now properly working even if one of plugins or themes on a site cannot be updated by WordPress Toolkit for some reason. (EXTWPTOOLK-8301)

SSL It! 1.9.5

  • The extension now correctly processes orders paid via PayPal. (EXTSSLIT-1771)

Sectigo SSL 1.3.5

  • Internal improvements.

Let's Encrypt 2.13.5

  • Internal improvements.

Plesk Obsidian 18.0.39

  • Improved the process of adding a domain by introducing a new screen that shows the following options:

    • Create a blank site.
    • Create a WordPress site.
    • Upload content using File Manager after website’s creation.
    • Connect a Git repository.
    • Import website from another hosting.

    The new screen is disabled by default. To enable it, add the following lines to the panel.ini file:

    [domainManagement]
    applicationWizard.enabled = true
    

    We would love to hear your feedback about this improvement. Please send us your feedback to feedback@plesk.com.

  • Livened up the “Add Domain” sidebar by adding images to it.
  • The Plesk administrator, customers, and resellers now have a more concise interface delivered by the right sidebar collapsed by default on the following screens:

    • (Power User view) Websites & Domains
    • (Service Provider view) Domains > domain
    • (Service Provider view) Subscriptions > subscription
  • Plesk users can now configure the automatic deletion of files in the Recycle Bin by date and/or by time. By default, the automatic deletion is enabled.

    The Plesk administrator can manage this feature and change its default settings by using the following panel.ini options:

    [fileManager]
    ; Shows and hides the automatic deletion feature in the interface. The default value is `true`.	
    trash.rotation.enabled 
    ; The file size limit in megabytes. When the limit is exceeded, Plesk will skip the Recycle Bin and automatically delete new files. The default value is 5 GB.
    trash.rotation.bySize.limit 
    ; The number of days the Recycle Bin stores files. Plesk automatically deletes files older than the specified number. The default value is `30`.
    trash.rotation.byDate.limit 
    
  • The Plesk login and default pages now contain the link to the “How to log in to Plesk?” KB article.
  • Plesk on Cloud now automatically updates its public IP address if it was changed after the server reboot. This improvement works for Plesk on Alibaba Cloud, Amazon EC2, Amazon Lightsail, DigitalOcean, Google Cloud, and Microsoft Azure.
  • Improved the loading speed of the “Databases”, “DNS Settings”, “Subscription”, and “Domain” overview pages.
  • Enhanced the Help menu for Plesk administrators by including links to KB articles, release notes, Plesk Facebook community, and so on.
  • The Google Drive Backup extension now has different modes for configuring personal and shared drives. We made this improvement to comply with the updated Google policy of external applications that access Google users’ data.
  • Renamed the Advanced Monitoring extension and its notifications “Monitoring”.
  • The plesk repair db command can no longer suggest deleting resolvable domains by mistake. (PPPM-12162)
  • Sped up the website, subscription, and customer creation processes. (PPP-54306)
  • Improved an error message shown when scheduled backups fail because a Plesk license has expired. (PPPM-11774)
  • Sped up retrieving mailbox usage statistics via API RPC. (PPP-53647)
  • A pop-up message that appears when a password of a password-protected directory user is too short no longer misses password length variables. (PPPM-12740)
  • The main Plesk search field can now again handle search words with whitespace characters from one or both sides. (PPPM-13195)
  • The Plesk administrator and resellers can now again customize the logo. (PPPM-13202)
  • Plesk now completely cleans up leftover files after deleting a customer, reseller, or subscription that was backed up to remote storage. (PPPM-13173)
  • If a customer linked a Plesk mailbox to their Plesk account and then changed the account password, Plesk now shows a message that this will change the password to the linked mailbox as well. (PPPM-13088)
  • It is now possible to get information about an SSL/TLS certificate that secures mail via the CLI or REST API. (PPPM-13236)
  • File Manager in Power User view now displays the content of the selected domain instead of the last created one. (PPPM-13194)
  • It is no longer possible to save time for a scheduled task in an incorrect format, which broke the Scheduled Tasks page causing an HTTP error 500. (PPPM-13215)
  • Plesk now stops sending automatic replies late in the evening the day before the end date. (PPPM-8995)

Linux

  • Webmail clients now use PHP 7.4 shipped with Plesk by default.
  • Improved stability and isolation of websites that use PHP-FPM handlers. It is now possible to choose the dedicated PHP-FPM handler for each website.
  • Plesk now signs outgoing emails sent via WordPress with DKIM even WordPress uses an unauthenticated SMTP server.
  • Plesk now performs a deferred Apache restart using the systemd timers.
  • The plesk-modsecurity jail in Fail2Ban now works if a domain uses nginx-only hosting.
  • As a part of the GDPR compliance changes, made the statistics Webalizer and AWstats collect more accurate. (PPPM-10655)
  • For security reasons, the default Roundcube spell checker is now disabled in Plesk by default. (PPPM-13183)
  • The plesk repair db utility now deletes orphaned DNS records from DNS zones. This prevents occasional BIND crashes after the DNS records were synchronized with the server-wide DNS template. (PPM-2347)
  • It is now again possible to change the mailbox quota via API RPC. (PPPM-13197)
  • The Users > Create User Account form no longer shows domains with turned off mail services in the @ drop-down list next to the “Email address” field. (PPPM-13205)
  • Uninstalling a webmail client no longer breaks Apache configuration files. (PPPM-12924)
  • Plesk no longer duplicates forwarded emails if their initial emails failed to be delivered. (PPPM-12341)
  • In Plesk on Ubuntu 20, File Manager no longer fails to open JSON files showing the “Unable to display the file : Unsupported file format" error. (PPPM-13206)
  • Users can now open the wp-config.php file and other WordPress subscription files in Code Editor. Previously it was occasionally impossible under certain circumstances. (PPPM-12921)
  • An event handler triggered by the “Mail account updated” event now executes the assigned script only once. (PPPM-13218)
  • MySQL dump importing no longer fails with the “ERROR 1227 (42000) at line : Access denied" error. (PPPM-13086)
  • An extension that uses the guzzlehttp/promises 1.4.1 package no longer causes the “Class ‘GuzzleHttp\Promise<ClassName>’ not found” error when users try configuring the following remote storage points: Google Drive, Amazon S3, DigitalOcean Spaces, or Microsoft OneDrive. (PAUX-3748)
  • Plesk now automatically deletes pre-upgrade MySQL dumps older than one year. (PPPM-10488)
  • It is now possible to install Plesk on a server running on CentOS 7 x64 with preinstalled MySQL. (PPP-47540)
  • Plesk now updates PHP settings of a subscription’s main domain faster. (PPPM-12136)
  • Changing an IP address of a subscription with multiple domains (30 or more) no longer breaks the Postfix service. (PPPM-9733)
  • It is now possible to change a subscription password via REST API by sending a request without hosting_type. (EXTREST-136)
  • Custom buttons with enabled “Open URL in Plesk” now work in Power User view. (PPPM-13213)
  • Plesk now correctly counts the number of a reseller’s subscriptions. (PPPM-13227)
  • Plesk now correctly removes websites’ historical data after their TTL period has expired. (PPPM-10655)
  • Removing all custom service plan items via the CLI no longer causes the Use of undefined constant nul - assumed 'nul' PHP warning. (PPPM-13222)
  • The plesk repair mail <domain|mail-address> command now repairs the Outgoing Mail Control subsystem more reliably. (PPP-52477)
  • It is now possible to open websites and webmail in Safari when HTTP/2 is enabled in both nginx and Apache. (PPPM-12381)
  • Improved logging to /var/log/maillog to make it easier to detect issues (if any) with outgoing mail headers. (PPP-54314)
  • Updated regular expressions used by Fail2ban to prevent it from occasionally blocking secure domains. (PPPM-12058)
  • Disabling and then enabling a domain’s mail service no longer breaks mailboxes with the reserved mail names: postfix, anonymous, drweb, root, and so on. (PPPM-7702)

Windows

  • Plesk now supports Windows Server 2022.
  • Dropped the possibility of downloading database backup files.
  • Plesk reinstallation no longer breaks Task Manager. (PPPM-13208)
  • It is now possible to rename a domain that uses a custom webmail client. (PPPM-13204)
  • Plesk Installer no longer incorrectly detects MySQL Connector/ODBC 5.1 as installed instead of the actually installed MySQL Connector/ODBC 5.3. (PPPM-13237)
  • It is now again possible to configure advanced permissions of files using File Manager. (PPPM-13228)
  • It is now possible to install the “Plesk One Edition for China” license key on a clean Plesk server. (PPPM-13241)

Third-Party Component Updates

  • Updated PHP used by Plesk to version 7.4.24.

Linux

  • Updated ProFTPD to version 1.3.7c.
  • Updated OpenSSL used by nginx to version 1.1.1l.

Windows

  • Updated Node.js 12 to version 12.22.6.
  • Updated Node.js 10 to version 10.24.1.
  • Updated Git to version 2.33.0.2.
  • Updated OpenSSL to version 1.1.1l.

Advisor 1.9.4

  • Internal improvements.

WordPress Toolkit 5.7.2

  • Optimized log rotation configuration
  • Cloning and Copy Data now should correctly process certain links generated by Elementor plugin. (EXTWPTOOLK-5896)
  • Cloning now should properly process links generated by WPML plugin. (EXTWPTOOLK-2413)
  • Screenshots of the clone used by Smart Updates are now properly removed if Smart Update check fails. (EXTWPTOOLK-8214)
  • Log rotation now properly works if a server uses SELinux. (EXTWPTOOLK-8247)
  • WooCommerce plugin can now be properly installed on Windows servers. (EXTWPTOOLK-8023)

SEO Toolkit 1.1.14

  • Fixed several performance issues.
  • Fixed “500 TypeError” on the start page.

Google Drive Backup 1.3.1

  • The extension now has no access to user data when a personal drive (My Drive) is used. Backup Manager can use only files and folders it has created.
  • Fixed the “Class ‘GuzzleHttp\Promise' not found” error, which made it impossible to configure remote storage. (EXTPLESK-3068)

Domain Connect 1.4.3

  • Security improvements.

Git 1.3.3

  • Internal improvements.

Domain Connect 1.4.2

  • Users can now automatically configure DNS records for domains without hosting. (EXTPLESK-2993)
  • Updated supported DNS templates.
  • The extension can now determine without authentication if it supports a particular DNS template.
  • The extension can no longer crash while configuring DNS records. (EXTPLESK-2602)

WordPress Toolkit 5.7.1

  • WordPress Toolkit no longer spams confusing errors in the product log when removing WordPress sites. (EXTWPTOOLK)
  • Sites using wildcard domains are no longer considered broken. (EXTWPTOOLK-8251)
  • WordPress sites containing invalid characters in the installation data can no longer break WordPress Toolkit UI. (EXTWPTOOLK-8225)

Plesk Obsidian 18.0.38 Update 3

Linux

  • Updating Apache to the latest version in Plesk on Ubuntu that uses PHP-FPM served by Apache no longer breaks websites causing an HTTP error 500. (PPPM-13232)
  • Plesk updates on Ubuntu and Debian no longer fail if system packages are marked as “hold” in apt. (PI-726)

PHP Updates

  • Updated PHP 8.0 to version 8.0.11.
  • Updated PHP 7.4 to version 7.4.24.
  • Updated PHP 7.3 to version 7.3.31.

Monitoring 1.4.4

  • Renamed the extension “Monitoring”. We have shortened the name but kept all the existing features of the extension and made internal improvements for the upcoming major release 2.0.0.

Grafana 1.2.5

  • Improved stability.

SSH Terminal 1.2.1

  • The extension’s removal no longer fails if the systemd service drop-in directory is missing. (PPP-54437)

WordPress Toolkit 5.7.0

  • WordPress Toolkit now supports configuring automatic updates for individual plugins and themes. This covers the following changes:

    • Site-wide autoupdate policy now lets to choose between forcing all plugin or theme autoupdates (like before), or allowing every plugin and theme to use their own autoupdate settings.
    • When Defined individually update policy is selected, site admins can also choose to enable autoupdates by default for all new plugins or themes installed via WordPress Tookit.
    • Autoupdates for individual plugins and themes can be toggled on the respective Plugins and Themes tabs of the site card.
    • New Autoupdate all plugins / themes switch added to the Plugins and Themes tabs of the site card allows toggling autoupdates for all plugins or themes on a site at once.
  • It is now possible to log in to WordPress when the site is in maintenance mode. This behavior can be turned off via Restrict access to WordPress admin dashboard option in Maintenance Mode settings.
  • Hotlink protection feature now allows site admins to configure which file extensions should be protected and which domains can be trusted.
  • Sets and global Plugins tabs now fully support the plugin blocklist feature.
  • A new email notification about blocklisted plugins disabled by WordPress Toolkit is now available.
  • Server admins can use the CLI command --update-login-url-suffix to change login URL suffix.
  • WordPress Toolkit now shows Install WordPress link on Websites & Domains site card if there’s no WordPress detected. Once a WordPress site is present, the link is changed to WordPress Toolkit.
  • Updated look’n’feel of several UI components.
  • WordPress Toolkit log entries created after updating WordPress Toolkit to v5.7 are accessible only via the Logs screen for now. Old log entries created before the update are still accessible in their old place via File Manager. The ability to download logs and access them via File Manager will be re-added in the next WordPress Toolkit update. Sorry for the inconvenience!
  • Security improvements.
  • Performance improvements (including faster site scanning process).
  • It’s no longer possible to trick WordPress Toolkit into cloning the site into itself under certain rare circumstances. (EXTWPTOOLK-4357)
  • Cloning should no longer affect the clone source if it has if clauses in the wp-config.php file. (EXTWPTOOLK-4213)
  • Cloning now works properly if clone target has common docroot with clone source. (EXTWPTOOLK-4673)
  • Autoupdate tasks no longer fail when running on IDN domains. (EXTWPTOOLK-8092)
  • WordPress sites no longer get stuck in permanent maintenance mode after site admin restores the default maintenance mode template soon after enabling maintenance mode. (EXTWPTOOLK-8047)
  • Cloning and data copy procedures now update all URLs and permalinks even if there’s more than a thousand of them. (EXTWPTOOLK-8117)
  • You can delete WordPress sites that share database with other WordPress sites via the kebab menu. (EXTWPTOOLK-3067)
  • Customize button on the maintenance mode settings screen now properly directs users to File Manager. (EXTWPTOOLK-7722)

Advisor 1.9.3

  • Internal improvements.

Site Import 1.5.3

  • Removed the “Import website” section shown by mistake at the bottom of domains’ pages (for example, “PHP Settings” or “Web Hosting Access”) after the extension update version 1.5.2. (PMT-4981)

DigiCert SSL 1.11.1

  • Internal improvements.

Site Import 1.5.2

  • It is now possible to create a website by importing one from another hosting server.

DigiCert SSL 1.11.0

  • The products’ names now align with the DigiCert certificates’ names.
  • The extension now provides more detailed information about the process of issuing certificates.

Plesk DNSSEC 1.2.4

  • Removed the banner with a format error the extension showed on the “Websites & Domains” > domain > DNSSEC page. (EXTDNSSEC-73)

Google Drive Backup 1.3.0

  • Users now choose a drive type when configuring storage. From October 12, 2021, backing up to Google shared drives becomes unavailable because Google restricts access to user data. To keep your data backed up to shared drives after October 12, log out on the storage settings page, log in again, and then select “Shared drive”. Also, make sure your administrator has marked the Plesk Backup Corporate application as trusted.

Git 1.3.2

  • Internal improvements.

SSL It! 1.9.4

  • Internal improvements.

Plesk Obsidian 18.0.38 Update 2

Linux

  • Apache restart works again if the restart interval is set. (PPPM-13186)
  • Specifying custom proxy_buffering values in the nginx configuration file no longer breaks websites. (PPPM-13200)

WordPress Toolkit 5.6.2

  • Manual updates to minor WordPress versions are now installed properly regardless of WordPress core autoupdate settings. (EXTWPTOOLK-8168)

Node.js 2.0.1

  • The extension can now automatically update Node.js handlers even if files of previously installed Node.js handlers are locked. (EXTNODEJS-166)

Dropbox Backup 4.2.0

  • The extension now uses short-lived access tokens for authorization.

    From September 30, 2021, backing up to Dropbox becomes unavailable because Dropbox changes its authorization method. To keep your data backed up to Dropbox after September, click “Log out” and then configure the Dropbox storage again. We recommend that you do that before the end of September.

Plesk Obsidian 18.0.38 Update 1

  • Running plesk repair db no longer removes all aliases of a domain. (PPPM-13188)

Grafana 1.2.4

  • Improved stability.

Extension Catalog 1.14.0

  • The Extension Catalog is adapted for PAYG licensing model. After purchasing an extension with PAYG licensing, the Plesk administrator can adjust the limits with the “Adjust” button.
  • The most popular category no longer includes the installed extensions.
  • Minor internal improvements.
  • The Extension Catalog no longer shows the wrong price for the eCommerce Toolkit extension. (EXTCATALOG-525)
  • HTTP error no longer occurs if an admin email is empty. (EXTCATALOG-541)

Google Drive Backup 1.2.1

  • Added reporting of usage statistics.

Git 1.3.1

  • Improved integration of the Git section on the “Add Domain” screen.

PHP Updates

Linux

  • In Plesk on CloudLinux with enabled CageFS and the latest PHP updates installed, PHP 7.4. and 8.0 no longer consume all the CPU. (PPPM-13184)

Plesk Obsidian 18.0.38

  • Improved the Plesk Dynamic List view to make it easier to navigate to and focus on individual domains.
  • The WordPress tab in Dynamic List view offers shortcuts to the most useful/popular features for WordPress sites.
  • When opening a domain in Service Provider view, Dynamic List view is now used instead of Active List view.
  • When selecting a domain in search results in Power User view, the page automatically focuses on the required domain and the domain card is expanded.
  • Plesk now redirects the customer to the created domain’s card after website creation.
  • The Recycle Bin functionality in the File Manager is turned on by default for all Plesk installations.
  • Updated the instructions in the DNS Helper with information about glue records’ configuration.
  • Added the instructions for a number of popular registrars (CloudFlare, Freenom, Papaki, ps.kz, Exabytes, registro.br, and Porkbun) to the DNS Helper.
  • After creating or uploading a WordPress website during onboarding, users can now click the “Log in to WordPress” button for easy access to the WordPress admin panel.
  • Improved the loading speed of File Manager.
  • Transitions between pages when navigating the Plesk interface are now more fluid.
  • When creating a domain in Plesk, the progress bar is now shown in the same drawer.
  • Increased the transfer speed for the SFTP Backup extension.
  • Improved the behavior of the top right toaster in Plesk to prevent notifications from overlapping.
  • Updated the look and feel of drawers and dialogs in Plesk.
  • Plesk on cloud (AWS, Google Cloud, Azure, Alibaba, Lightsail, and Digital Ocean) now automatically re-maps private IP addresses if they change after server restart.
  • Domains can now be sorted by Traffic usage in Service Provider view.
  • Changing a domain’s document root to an invalid path no longer results in the invalid path being written to the Plesk database. (PPPM-12648)
  • Synchronizing a subscription with its service plan no longer fails if the plan’s mailbox size value has been changed. (PPPM-12862)
  • When Plesk fails to make a backup to an FTP storage, the correct error is now reported instead of “Error: Unable to export backup: Transport error: Unable to create the directory”. (PPPM-12798)
  • Plesk no longer shows the “Domain is not resolvable” notification for domains with no hosting, domain aliases without web service, and domain aliases pointing to a domain with no hosting. (PPPM-12928)
  • Restoring a subscription from backup no longer results in PHP handlers for all domains belonging to the subscription being set to ‘FPM application served by nginx’. (PPPM-12496)
  • When typing in the database user’s password when logging in to phpMyAdmin, the password is now correctly masked by the asterisk ‘*’ characters instead of being shown in plaintext. (PPPM-12414)
  • When searching for content in File Manager and finding multiple files, it is now possible to open each individual file without restarting the search. (PPPM-12389)
  • Searching for domains when using the Classic list in Power User view via global search now opens the card for the correct domain. (PPPM-12948)
  • Creating a backup to AWS S3 via the CLI no longer results in a misleading “Unable to save statistics. Error: DB query failed” error. (PPPM-12703)
  • Upgrading to the latest Plesk Obsidian version no longer sometimes fails with the “PHP Fatal error: Uncaught JMS\Serializer\Exception\RuntimeException: Could not decode JSON, syntax error - malformed JSON.” error. (PPPM-13114)
  • Clicking “see details” for a failed scheduled task now correctly shows the error details. (PPPM-13073)
  • Password reset email is now correctly sent when resetting the password for a user using the username. (PPPM-13047)
  • Information necessary for troubleshooting issues with backups is now being written to the backup logs. (PPPM-13021)
  • Clicking the “Check for updates” link no longer results in a blank page. (PPPM-13044)
  • Failed login attempts via REST API are now logged in the panel.log file. (PPPM-13144)
  • When migrating, warnings about non-secure FTP are no longer shown when both the source and the target servers are configured to use secure FTPS connections only. (PPP-51587)
  • It is now possible to enable mail forwarding when logged in to Plesk under a mail user account. (PPPM-13166)
  • Pasting a domain name in the global search bar now immediately produces results with no need for additional button presses. (PPPM-13157)
  • Removing an IP address not used for hosting no longer fails with the “The IP address is already used for hosting” error. (PPPM-13160)
  • The “SSL redirect” checkbox is now cleared automatically if the “SSL support” checkbox is cleared. (PPPM-13169)
  • The terminology for subscriptions’ expiration/renewal dates has been cleaned up. Now, “Expiration date” is used wherever appropriate. (PPPM-13121)
  • The Plesk database now stores the mailbox quota value correctly, which fixes multiple issues (for example, occasional failures to reduce the mailbox quota). (PPP-53672)

Linux

  • The latest Node.js LTS versions installation and update are now available through the renewed Node.js extension. Versions 10, 12 and 14 are supported at the moment. To enable Node.JS application hosting, install the Node.JS extension.
  • Mail sent via the mail command is now signed with DKIM/Domainkeys if the sender’s domain name is the same as the server’s hostname and DKIM/Domainkeys are enabled for it. (PPPM-6690)
  • Improved mail logging to make troubleshooting mail-related issues easier.
  • Starting from September 15th, 2021, the SSH Terminal will be enabled by default. With this feature, all admins gain root access to the server. Learn how to disable root access.
  • Starting from September 15th, 2021, the Mail Log Browser will be enabled by default.
  • Unchecking the “PHP Support” checkbox in a domain’s settings now correctly disables PHP for that domain instead of switching the PHP handler to the system PHP-FPM. (PPPM-12894)
  • Plesk no longer tries to deliver mail sent to an alias of a mailbox if the mail service for the domain the mailbox belongs to is disabled. (PPPM-8110)
  • Restoring a pre-upgrade database dump no longer fails with the “Duplicate entry for key ‘Primary’” error. (PPPM-12003)
  • Browsing a domain without hosting or the Plesk server’s hostname via HTTPS now correctly shows the default page instead of the Plesk login page. (PPPM-12289)
  • Fail2Ban no longer writes a lot of irrelevant warnings to fail2ban.log.(PPPM-12887)
  • The issue with AWStats calculating HTTP 206 response traffic twice for files with the ‘download’ MIME type was found to be a bug in AWStats, and will have to be fixed on the ASWtats side. (PPPM-12830)
  • Scheduled tasks of the “Fetch a URL” type now have the “Plesk (fetch_url utility)” User-Agent HTTP request header. (PPPM-12363)
  • Websites running on nginx + Apache can now work correctly over TLS 1.3. (PPPM-13038)
  • The SSH Terminal extension now works correctly if a custom SSH port is used on the server. (PPP-53727)
  • Plesk installation no longer fails with the “UnicodeEncodeError: ‘ascii’ codec can’t encode character u’\xdc’ in position 0: ordinal not in range(128)” on servers with “de_DE.UTF-8” set as the server’s locale. (PPPM-10782)
  • Upgrading from Plesk Onyx to Plesk Obsidian no longer results in misleading messages being written to the upgrade log. (PI-599)
  • Fail2Ban is now started automatically after Plesk initialization. (PPPM-13151)
  • Restoring a subscription with one or more wildcard subdomains no longer results in the “Wrong syntax for command’s “–del-all” parameter” warning. (PPP-54025)
  • On AlmaLinux 8 servers, using the Plesk firewall utility /usr/local/psa/bin/modules/firewall/settings no longer results in the “safeact: /usr/local/psa/var/modules/firewall/safeact.confirm: Address already in use” error. (PPPM-13120)
  • ‘systemctl status’ now correctly reports the actual status of Plesk firewall. (PPPM-13053)
  • Plesk firewall no longer blocks IPv6 neighbor discovery without multicast listener query in some environments. (PPPM-13145)
  • It is now possible to get an IPv6 address via DHCP on Plesk servers with Plesk Firewall enabled. (PPPM-13164)
  • Web statistics for websites using nginx as proxy are now calculated correctly on Plesk servers with Apache piped logs enabled. (PPPM-8252)
  • Opening the “Settings” tab of a domain’s DNS page no longer results in the “ERROR: Error: Call to undefined method DomainAlias” error if changes were made to the server-wide DNS template, but not applied to the domain in question. (PPPM-13176)
  • Plesk servers deployed on AWS no longer lose IPv6 connectivity once Plesk Firewall if enabled. (PPPM-13164)
  • Fail2Ban now works correctly after reloading. (PPPM-13096)
  • Scheduled tasks with notify set to “Errors only” now correctly stream stdout when running. (PPPM-13034)

Windows

  • Running the plesk repair web command for a single domain no longer results in all domains with hosting being repaired. (PPP-53690)

Third-Party Component Updates

Linux

  • Updated ModSecurity to version 3.0.5.
  • Updated OWASP ModSecurity CRS to version 3.2.0.
  • Updated sw-engine PHP to version 7.4.22.

Windows

  • Updated MariaDB to version 10.3.31.
  • Updated ASP.NET Core 5.0 to version 5.0.9.
  • Updated ASP.NET Core 3.1 to version 3.1.18.
  • Updated ASP.NET Core 2.1 to version 2.1.30.

PHP Updates

  • Updated PHP 8.0 to version 8.0.10.
  • Updated PHP 7.4 to version 7.4.23.
  • Updated PHP 7.3 to version 7.3.30.

Linux

  • Updated the following PHP components shipped with Plesk:

    • PEAR to version 1.10.13.
    • Imagick to version 3.5.1 for PHP 7.3.
  • Improved security of the systemd unit for PHP 7.4, 8.0.

Action Log 1.2.0

  • It has become easier to find an item in the log list. Now users can do the following:
    • Use the search.
    • Filter items by a range of IP addresses, by actions, and by changed fields.
  • When a user enters an incorrect IP address, the error message now appears at the top of the page.
  • Some UI elements could be missing if a user applied filters, and then went to the “Settings” tab and back. Fixed. (EXTPLESK-2825)
  • The “Period” filter now has the correct from date and to date prompts. (EXTPLESK-2692)

Node.js 2.0.0

Linux

  • The extension now automatically installs and updates supported LTS versions of Node.js. Versions 10, 12 and 14 are supported at the moment.
  • You can disable automatic version updates by adding the following lines to the panel.ini file:

      [ext-nodejs]
      updateVersionsAutomatically = false
    

Windows

  • IIS rewrite rules for Node.js now have unique names and can no longer break a website causing an HTTP error 500. (EXTNODEJS-127)

WordPress Toolkit 5.6.0

  • Server admin now has access to server-wide plugin blocklist on the global Settings screen. Adding plugin slugs to this blocklist will prevent site admins from installing or activating these plugins via WordPress Toolkit. If these plugins are installed through other means, they will be found and deactivated by WordPress Toolkit with extreme prejudice.
  • Site admins can verify checksums of WordPress core files if they suspect their site is infected by malware. They can also reinstall WordPress core without affecting site content.
  • The wp-cli utility was updated to version 2.5. All WordPress Toolkit features, including cloning, should now work properly on PHP 8. Due to this change, the minimum PHP version supported by WordPress Toolkit is now PHP 5.6, so websites working on PHP 5.4 and PHP 5.5 cannot be managed by WordPress Toolkit anymore.
  • wp-cli-bundle is now shipped together with wp-cli utility, providing access to many useful commands previously embedded in wp-cli itself.
  • Cloning and Smart Updates now properly handle popular caching plugins.
  • Users can see WordPress Toolkit log entries that happened before and after a filtered log entry by clicking the Show in context icon located to the right of the filtered entry.
  • You can now delete WordPress sites through CLI using the --remove command.
  • WordPress-based sites in Dynamic List now have a WordPress tab with shortcuts to key WordPress Toolkit features.
  • WordPress Toolkit now assigns the corresponding database to a site after installation or cloning.
  • Update process for multiple items now works significantly faster due to skipping many unnecessary operations, most of which are too embarrassing to mention here.
  • Smart Update procedure itself also works a bit faster in a number of cases.
  • Smart Update procedure now provides detailed information about which .htaccess customizations prevent it from working properly.
  • Detection of PHP versions was improved for WordPress installations accessible via several different domains.
  • The “Hotlink protection” security measure wasn’t really a security measure, so it was moved to a separate switch outside of the Check security window.
  • Error handling and reporting related to PHP 8 was improved.
  • Email notifications sent by WordPress Toolkit now include server hostname in message subject for easier identification.
  • Domain management link is now named “Manage domain” to be less confusing.
  • The “Refresh” button in the “Logs” window now properly works in all known cases (and probably in some unknown ones too). (EXTWPTOOLK-7996)
  • WordPress Toolkit no longer insidiously puts sites in endless maintenance mode under certain harmless circumstances. (EXTWPTOOLK-7957)
  • Smart Update procedure no longer fails with error if it isn’t possible to check one of the site pages due to HTTP status code 500 error. (EXTWPTOOLK-7979)
  • WordPress Toolkit no longer tries to update WordPress core if autoupdate is set to minor and there’s no actual update available. (EXTWPTOOLK-7863)
  • A long time ago, in a galaxy far, far away, WordPress Toolkit was showing installation IDs instead of installation names in error messages snown when a plugin couldn’t be deleted. This no longer happens and we’re not sure if it was a conscious stealth fix, or this bug simply died of old age. (EXTWPTOOLK-3573)

Google Authenticator 1.5.0

  • It is now possible to adjust the limit of attempts to provide code within the specified time interval (in seconds) by editing the panel.ini file. By default, the extension has the following panel.ini settings:

    [ext-google-authenticator]         
    allowedAttempts = 5
    rateLimitSeconds = 600   
    

Joomla! Toolkit 2.4.5

  • Added version checks to prevent unwanted major upgrades to Joomla! 4 and installation errors if the wrong package is downloaded. Joomla! 4 is not supported yet; we are adding full support for the new major version in the next update.

Slave DNS Manager 1.10.0

  • The extension now shows a warning if the custom backend script is not properly configured and offers to configure it if necessary.
  • Added the extension tab to the left navigation pane in Power User and Service Provider views.

Plesk Obsidian 18.0.37 Update 2

Linux

  • Updating to Plesk 18.0.37 and later no longer enables email delivery for mail accounts with disabled mailboxes. (PPPM-13129)
  • In Plesk 18.0.37 and later, Watchdog daily reports sent to the Plesk administrator by email no longer contain the “ERR [panel] No entry is registered for key ‘translate’” errors. (PPPM-13128)

SSL It! 1.9.3

  • The extension now shows more details about pending orders of purchased certificates.
  • It is now possible to turn OCSP stapling for domains on and off via the CLI.
  • Revamped the look of the extension’s screen with the list of certificates available for purchase.
  • It is now again possible to issue wildcard Let’s Encrypt certificates via the CLI. (EXTSSLIT-1476)

Sectigo SSL 1.3.4

  • If a domain name contains a brand name (for example, example-plesk.com), the extension now skips issuing a temporary DV certificate while securing the domain with an OV/EV certificate. (EXTPLESK-2842)

Plesk eCommerce Toolkit 1.2.0

  • Added the possibility to activate the trial version without purchasing a license first. Users can now try out the store features without any limitations for 14 days.

Mail Log Browser 1.1.0

  • Translated the extension into 31 languages: Arabic, Catalan, Chinese Simplified, Chinese Traditional, Czech, Danish, Dutch, Filipino, Finnish, French, German, Greek, Hebrew, Hungarian, Indonesian, Italian, Japanese, Korean, Malay, Norwegian Bokmal, Polish, Portuguese, Portuguese, Brazilian, Romanian, Russian, Spanish, Swedish, Thai, Turkish, Ukrainian, and Vietnamese.

Plesk Obsidian 18.0.37 Update 1

  • Updating Plesk to version 18.0.37 no longer fails if Plesk has domains that belong to the service plan whose name contains spaces at the beginning and end. (PPPM-13114)
  • Updating Plesk to version 18.0.37 can no longer rename server plans that have matching names but belong to different resellers. (PPPM-13118)

Linux

  • The output of the executed plesk repair all -y command no longer shows the false positive “File Not found” errors. (PPPM-13124)
  • panel.log no longer contains the “Cannot start event handler: Could not decode JSON” errors if Plesk has added event handlers whose actions produce a long output to be trimmed. (PPPM-13048)

SSH Terminal 1.2.0

  • Translated the extension into 31 languages: Arabic, Catalan, Chinese Simplified, Chinese Traditional, Czech, Danish, Dutch, Filipino, Finnish, French, German, Greek, Hebrew, Hungarian, Indonesian, Italian, Japanese, Korean, Malay, Norwegian Bokmal, Polish, Portuguese, Portuguese, Brazilian, Romanian, Russian, Spanish, Swedish, Thai, Turkish, Ukrainian, and Vietnamese.

PHP Updates

  • Updated PHP 8.0 to version 8.0.9.
  • Updated PHP 7.4 to version 7.4.22.

Linux

  • Updated the following PHP components shipped with Plesk:

    • Imagick to version 3.5.1.
    • Archive_Tar to version 1.4.14

Site Import 1.5.1

  • When migrating mail via IMAP between Plesk for Windows servers, mail in subfolders is now being correctly copied over to the destination server. (PMT-4943)

Plesk Migrator 2.21.2

  • When migrating mail via IMAP between Plesk for Windows servers, mail in subfolders is now being correctly copied over to the destination server. (PMT-4943)
  • Plesk Migrator no longer incorrectly reports errors during post-check after migrating one or more DNS records containing long text fields. (PMT-4952)
  • Migrating a subscription with the mail service disabled no longer results in the mail service being enabled on the destination server. (PMT-4870)
  • Migration no longer fails when migrating one or more plans with leading and/or trailing whitespace characters in the name. (PMT-2776)
  • Migrating from Debian 10 servers no longer fails with the “Source server OS is not supported” error. (PMT-4974)

Sectigo SSL 1.3.3

  • Internal improvements.

Mail Log Browser 1.0.1

  • Security improvements.

WordPress Toolkit 5.5.1

  • The size of WordPress Toolkit metadata in Plesk backup files was reduced to ensure that these backups can be restored on servers with huge amount of sites. (EXTWPTOOLK-7898)
  • Smart Updates no longer fail to analyze the site due to incorrect shortcode detection. (EXTWPTOOLK-5569)
  • Copy Data feature no longer copies the state of Search Engine Indexing option. (EXTWPTOOLK-7847)
  • WordPress Toolkit now properly works with mysqldump 8.0 and MariaDB / MySQL 5.7. (EXTWPTOOLK-7794)

Plesk Obsidian 18.0.37

  • Added the “Connection Info” to the Dashboard in the Dynamic List. Clicking it opens a drawer where users can easily view and change access information for FTP accounts and databases.
  • Clicking “Add Customer” now opens a drawer on the same page instead of going to a separate page. This should make the customer creation workflow faster and easier.
  • The PHP version currently in use for a domain is now shown below the “PHP Settings” button to make it easier to read at a glance.
  • Links to “Backup Manager” and “Scheduled Tasks” can now be found on the domain card as well as in the right sidebar. This should make these features easier to locate and access.
  • Mail Autodiscover is no longer supported for Microsoft Outlook 2019 and O365 versions. These mail clients use Microsoft proxy servers for autodiscover requests, and this configuration is not supported in Plesk.
  • Added password validation to the plesk bin database-server CLI utility. It is no longer possible to set database server password containing non-printable characters which caused issues with web statistics generation. (PPPM-12972)
  • It is now possible to create a subdomain for an additional domain with hosting type set to “no hosting”. (PPPM-12952)
  • Changing the language on the Plesk login page and then clicking the “Forgot password?” link no longer results in the password recovery page using the Plesk default language instead of the language chosen on the login page. (PPPM-12943)
  • Setting the number of automatic replies Plesk can send to a unique email address per day to more than 100 no longer results in an error. (PPPM-12434)
  • Trying to create a domain when the maximum number of domains allowed by the Plesk license or the reseller plan has already been reached no longer results in a blank screen. (PPPM-13030, PPPM-13043)
  • The “Use DKIM spam protection system to sign outgoing email messages” checkbox can now be selected or cleared even if the mail service for the domain is not activated. (PPPM-13041)

Linux

  • Added the ability to access the server from Plesk via a secure web-based SSH client. To use the SSH client, install the SSH Terminal extension.
  • Added the ability to check the statuses of all emails sent to and from a Plesk server by reviewing the maillog and filtering by date, source, or any string pattern. It is also possible to check the maillog in real-time (‘tail -fn0’ analog). To use this feature, install the Mail Log Browser extension.
  • Added the option to automatically remove emails forwarded from a mailbox in Plesk. The feature is disabled by default. To enable it, go to “Mail”, click the desired mailbox, open the “Forwarding” tab and select the “Do not deliver copies of forwarded emails to the Plesk mailbox” checkbox.
  • systemd-cron is now supported on Debian 9/10 and Ubuntu 18.04/20.04. The cron package can now be replaced with systemd-cron on servers with Plesk using the OS package manager. systemd-cron is a wrapper that converts cron tasks to systemd “timers”, which solves the well-known issue with a lot of emails being sent after a failed cron job.
  • Dovecot now reloads the configuration files instead of restarting whenever a mail certificate is renewed. This should resolve the issue with IMAP/SMTP connections often being closed without warning on Plesk servers hosting many domains.
  • The default chroot settings are no longer changed after updating Plesk to the latest version. (PPPM-12885)
  • The plesk repair utility no longer fails on file system check if the virtual host directory has been changed. (PPPM-12602)
  • Running the plesk repair utility no longer results in a misleading suggestion to repair incorrect permissions if the virtual host directory has been changed. (PPPM-12325)
  • On Debian/Ubuntu servers with Plesk PHP session files are now cleaned up properly if PHP from the OS repository is not installed on the server. (PPPM-13022)
  • Fai2ban no longer fails while processing the “plesk-panel” jail if debug mode is enabled in Plesk. (PPPM-13051)
  • Updating PHP packages from Remi’s RPM repository no longer resets permissions on /var/lib/php/session potentially causing PHP websites to malfunction. (PPPM-13068)
  • Converting a CentOS server with Plesk to AlmaLinux no longer fails if the EPEL repository is enabled on the server. (PPP-53540)

Windows

  • MariaDB error logs no longer contain misleading “Aborted connection” warnings related to the plesksrv service. (PPPM-12737
  • Errors encountered during Plesk update are now correctly recorded in the installer log. (PPP-52706)
  • Restoring a password-protected subscription backup created on another Plesk server no longer fails if the correct password is provided. (PPPM-13061)

Third-Party Component Updates

  • Dropped support for MySQL versions earlier than 5.7.

Linux

  • Updated sw-engine PHP to version 7.4.21.
  • Updated ProFTPD to version 1.3.7b.
  • Updated Courier-IMAP to version 5.1.3.
  • Updated Updated Dovecot and Pigeonhole to versions 2.3.15 and 0.5.15 respectively.
  • Updated phpMyAdmin to version 5.1.1.

Windows

  • Updated plesk-engine PHP to version 7.4.21.
  • Updated Node.js 12 to version 12.22.3.
  • Updated Git for Windows to version 2.32.0.
  • Updated MailEnable Standard to version 10.34.
  • Updated ASP.NET Core 5.0 to version 5.0.7.
  • Updated ASP.NET Core 3.1 to version 3.1.16.

SSL It! 1.9.2

  • Internal improvements.

Sectigo SSL 1.3.2

  • Internal improvements.

SSH Terminal 1.0.0

  • SSH Terminal is accessible via a button on website cards of all domains where the subscription system user has SSH access. This can be disabled by adding the following lines to the panel.ini file:

    [ext-ssh-terminal]
    domainAccessAllowed = false
    
  • SSH Terminal is accessible via a link from “Tools & Settings” and “Extensions” for root user if root access is allowed in Plesk. This can be disabled by adding the following lines to the panel.ini file:

    [ext-ssh-terminal]
    rootAccessAllowed = false
    
  • A user’s SSH Terminal session is terminated after they navigate away from the terminal page.

Mail Log Browser 1.0.0

  • First Public Release.

Panel.ini Editor 3.2.4

  • Minor internal improvements.

Advisor 1.9.2

  • Added the recommendation to fix the IIS server vulnerabilities.
  • The Plesk administrator can now hide recommendations by adding their IDs to the extension’s blacklist. For example, to hide the “Use the Sectigo SSL Extension” recommendation, add the following lines to the panel.ini file:

    [ext-advisor]         
    blacklist = 'SectigoSsl'
    

SSL It! 1.9.1

  • Creating customers no longer fails without an error message if the Plesk administrator has added the following lines to the panel.ini file: (EXTSSLIT-1684)

    [ext-letsencrypt]     
    secure-new-domain = true 
    

SSL It! 1.9.0

  • Customers of certain countries can now buy certificates in Plesk itself without going to Plesk Online Store.
  • The extension now shows more details about issuance of Sectigo certificates.
  • The extension’s email notifications of secured domains can no longer contain domains that were not actually secured. (EXTSSLIT-1426)
  • If webmail was created as an individual domain, the automatic renewal of the certificates can no longer mistakenly reassign the certificate of the main domain to webmail. (EXTSSLIT-1666)

PHP Updates

  • Updated PHP 8.0 to version 8.0.8.
  • Updated PHP 7.4 to version 7.4.21.
  • Updated PHP 7.3 to version 7.3.29.

Linux

  • Added support for Imagick for PHP 8.0.
  • Updated Imagick to version 3.5.0 for PHP 7.3 and 7.4.
  • In Plesk on CloudLinux, fixed an error due to which all domains on the server could become unavailable. The error occurred because the PHP-FPM master process was killed when one of its child processes exceeded the LVE limits. (PPP-53513)

PHP Updates

  • Updated PHP 8.0 to version 8.0.7.

  • Updated PHP 8.0 to version 8.0.6.

Sectigo SSL 1.3.1

  • Internal improvements.

WordPress Toolkit 5.5.0

  • WordPress Toolkit now logs every single action it performs.
  • Separate Smart Updates details log is now saved in the logs directory. This log is overwritten every time a new Smart Update procedure is launched.
  • Special interface for displaying WordPress Toolkit action logs is now accessible via “Logs” button on site cards. The interface includes filtering, real-time updates, and log rotation settings.
  • Database table prefix is now displayed on the “Database” tab of a site card.
  • Users can now hover their mouse over the website screenshot to see the date and time when it was made. Clicking the circular “Refresh” button in the top right corner will make a new screenshot.
  • New CLI command for setting or resetting WordPress administrator password is available: --site-admin-reset-password. Setting a new password is possible via environment variable.
  • On a related note, email notifications are now sent to server administrators by default.
  • Reduced the number of unnecessary screenshots made by the screenshotting service.
  • Site list now loads faster, especially if you have multiple sites.
  • Collapsed and expanded states of site cards are now saved per-user (technically, it’s per-browser, but let’s just pretend that’s per-user).
  • Mass operations on large number of sites now start much faster than before.
  • Site card list has undergone selective cosmetic surgery. No major changes, just a bit of loving polish.
  • Certain WordPress sites with DEFINER clause can now be properly cloned again. (EXTWPTOOLK-7744)
  • Errors are now properly displayed on the cloning and data copy screens, if they happen. (EXTWPTOOLK-7597)
  • Logs no longer display empty plugin versions under certain circumstances. (EXTWPTOOLK-7532)
  • Logs no longer display empty theme versions under certain circumstances (similar problem as above, but we have a separate bug for it, so why not a separate entry, eh) (EXTWPTOOLK-7533)
  • WordPress Toolkit no longer states that “All selected items were updated” even when it couldn’t update a theme due to licensing issues. (EXTWPTOOLK-7223)
  • Cloning to a subdomain with PHP8 no longer fails with “Uncaught TypeError: unserialize(): Argument #1 ($data) must be of type string” error. (EXTWPTOOLK-7374)
  • Cloning and data copying no longer panics when processing files with very long filenames or extensions. (EXTWPTOOLK-7745)
  • It’s now possible to update plugins and themes that have rc string in their version. (EXTWPTOOLK-7743)
  • WordPress Toolkit no longer drowns in the depths of infinite recursion under certain circumstances that involve parent and child plugins. (EXTWPTOOLK-7519)
  • Copy data procedure no longer displays confusing message about not being able to find any matching tables when everything actually went right. (EXTWPTOOLK-7735)
  • “Purchase” button no longer leads to “404 Not Found” page. (EXTWPTOOLK-7746)

Let’s Encrypt 2.13.4

  • To not exclude the www and/or webmail SANs when the issuance of a SAN certificate failed, add the following lines to the panel.ini file:

    [ext-letsencrypt]  
    require-www-webmail-sans = true
    

Docker 1.4.8

  • Closing error messages displayed by the Docker extension no longer takes the user to the Plesk home page. (EXTDOCKER-126)

Extension Catalog 1.13.10

  • The Extension Catalog no longer occasionally shows incorrect radio buttons with prices instead of the “Get if free” button next to the extension that is free and does not have the “Multiple offers” licensing model. (EXTCATALOG-511)
  • The search function in the Extension Catalog can now process search queries that contain spaces and special characters (!,@,#, and so on). (EXTCATALOG-493)

Advanced Monitoring 1.4.3

  • Installing Advanced Monitoring no longer automatically installs the Grafana extension because Grafana has changed its licenses. When you install Advanced Monitoring now, Plesk will prompt you to install the Grafana extension as well and show the button you need to click to automatically install the extension.
  • Updating Grafana to version 8.0 and later no longer breaks the extension. (EXTPLESK-2710)

    Note: To use Advanced Monitoring 1.4.3 with Grafana 8.0, you need to have the Grafana extension version 1.2.3.

Site Import 1.5.0

  • Connection to a website via FTP on some modern operating systems and Plesk versions no longer fails. (PMT-4874)
  • Now all valid secret keys are taken into account when importing websites. Previously, some valid secret keys could be considered corrupted or missing, which resulted in the “PleskAPIInvalidSecretKeyException : key is not found” error. (PMT-4903)
  • Changed the way a WordPress website’s URL is updated when importing so that it no longer works incorrectly in some edge cases. (PMT-4869)
  • Mail migration from a source server now tries to switch to a supported TLS protocol before failing in case of an “UNSUPPORTED_PROTOCOL” or “WRONG_SSL_VERSION SSL” error. (PMT-4873)
  • The extension no longer corrupts the names of folders that contain non-ASCII characters during import. (PMT-4958)

Plesk Migrator 2.21.1

  • Migration post-check no longer reports an issue if the HTTP response code changed from 200 on the source server to 301 on the target server due to the “Permanent SEO-safe 301 redirect from HTTP to HTTPS” option being enabled by default on Plesk Obsidian.
  • Migrating From Plesk Obsidian for Linux 18.0.36 no longer results in the “Failed to create the remote configuration dump on the target server. Not all settings may be migrated.” error during pre-check, which could lead to some settings not being transferred during migration. (PMT-4957)
  • Migrating from Confixx with a recent Perl version installed no longer fails with the “Failed to perform action: Fetch data from source Confixx” error. (PMT-4960)
  • The value of the ‘Permanent SEO-safe 301 redirect from HTTP to HTTPS’ option is now transferred over correctly when migrating from cPanel to Plesk Obsidian. (PMT-4611)
  • Migrating a domain with an APS application installed on the domain root with the “HTTPS” option enabled no longer results in misleading cautions during post-check. (PMT-4913)
  • CLI migration to a Plesk for Linux server with MariaDB 10.5 installed no longer fails with the “Service ‘mysql’ is not started on target Plesk server” error. (PMT-4935)
  • Plesk Migrator can now correctly decrypt passwords if the PLESK_BACKUP_PASSWORD environment variable is set on the source server. (PMT-4953)
  • The extension no longer corrupts the names of mail folders that contain non-ASCII characters during migration. (PMT-4958)
  • Replaced the missing warning.png and ok.png icons. (PMT-4933)

Grafana 1.2.3

  • Resolved compatibility issues with Grafana 8.0. (EXTPLESK-2710)

    Note: To use the upcoming Advanced Monitoring version 1.4.3 with Grafana 8.0, you need to have the latest version of the Grafana extension.

PHP Composer 1.1.3

  • The extension now works correctly with package data if Composer version 2 is used. (EXTPHPCOMP-185)

Amazon Route 53 2.8.1

  • The extension now correctly syncs domains` DNS records if the total number of records exceeds 100. (EXTPLESK-2698)
  • The extension now syncs a public zone instead of a private one for a domain with two hosted zones in AWS. (EXTPLESK-2359)

WordPress Toolkit 5.4.5

  • Security improvements.

SSL It! 1.8.5

  • The extension no longer reassigns an already issued Let’s Encrypt certificate to a domain every hour if its mail component should not be secured. (EXTSSLIT-1645)

SSL It! 1.8.4

  • The extension no longer reassigns an already issued Let’s Encrypt certificate to a domain every hour if its mail component is secured. (EXTSSLIT-1630)

Advisor 1.9.1

  • The extension now correctly validates a certificate in the “Secure Websites With SSL/TLS Certificates” recommendation. (EXTADVISOR-882)

WordPress Toolkit 5.4.4

  • Restoring a Plesk backup no longer fails if it contains a WordPress site broken for reasons unknown to WordPress Toolkit. (EXTWPTOOLK-7699)

Plesk Obsidian 18.0.36

  • In File Manager, it is now possible to upload files from remote servers by specifying the file URL.
  • It is now possible to install WordPress on CloudLinux used with the ALT-PHP handlers.
  • It is now possible to add and manage DNS records (including TTL) in a DNS zone via REST API.
  • Revamped the “Add Subscription” and “Add Domain” pages to make them consistent with other Plesk UX elements:

    • The “Webspace settings” section is now pre-filled and collapsed.
    • By default, Plesk now hides the Let’s Encrypt and Git sections when users create subscriptions, domains, and subdomains. To make the sections visible, add the following lines to the panel.ini file:

        [ext-sslit]
        enableSecuringNewDomain = true ; shows the "Secure with an SSL/TLS Certificate" section
        secure-new-domain = true ; makes the "Secure the domain with Let's Encrypt" checkbox selected by default
      
        [ext-git]
        enableOnSiteCreate = true ; shows the "Your Files to Copy to Hosting" section
      
  • Added a progress screen shown when users create domains.
  • Cleaned up the Plesk onboarding: removed distractions (for example, Plesk update notifications) that used to be shown once Plesk is installed.
  • Improved protection against open redirect. The trustedRedirectHosts setting now has the default “empty” value on all existing and new Plesk installations. trustedRedirectHosts specified with the “empty” value forbids Plesk from redirecting to any hosts using the success_redirect_url and failure_redirect_url parameters because such redirecting poses a security risk.
  • Plesk no longer shows DNS Helper if either IPv4 or IPv6 address resolves to the Plesk server. (PPP-52686)
  • Improved the message shown when a domain name is resolved to the IP address different from the Plesk server IP. The message no longer misleadingly states that the website is offline. (PPPM-12937)
  • When file upload fails in File Manager, Plesk now shows a detailed error message instead of the [[fileNotUploaded]] locale key. (PPPM-12929)
  • Backing up to the Microsoft OneDrive Backup storage can no longer fail because of a failed request for a new OneDrive access token. (EXTPLESK-2654)
  • The --create-map command of the pleskbackup utility is now deprecated. (PPPM-12940)
  • File Manager now shows a confirmation dialog before replacing an already existing file with the uploaded one that has the same name. (PPPM-12966)
  • Plesk now verifies that the number of simultaneously running backup processes to be set is more than zero. (PPPM-12927)
  • It is now possible to remove the Plesk email address of a subscription’s additional users if an external email address is specified. (PPPM-12849)
  • Restarting the Plesk server in Tools & Settings no longer causes the “Failed to fetch” warning to be shown in the Plesk interface. (PPPM-12962)
  • It is now possible to create a subdomain of an add-on domain that has the forwarding hosting type via API-RPC. (PPPM-10784)
  • The pleskbackup utility used with the --domains-name command no longer backs up the whole server instead of a subscription if the specified subscription does not exist. (PPPM-12797)
  • The plesk repair utility can now detect and fix the Plesk database inconsistency that leads to the “Unable to find row with id X in IP_Addresses table” error during migration or backup restoration. (PPPM-12843)

Linux

  • It is now possible to create a subdomain of a disabled domain if the “Force daily log rotation for all domains” server setting is turned on. (PPPM-11930)
  • Webmail is now turned on by default for domains created via API-RPC. (PPPM-12355)
  • The plesk repair utility now fixes incorrect permissions in /usr/local/psa/PMM/rsessions, which in turn fixes backup and restoration logs. (PPPM-12786)
  • If a domain’s IPv6 address is set to “none”, running the plesk repair db utility no longer shows the false positive “The following domains are assigned to already removed IP addresses.” error message. (PPPM-12988)
  • A system user that uses the “bash (chrooted)” shell can no longer lose the ability to connect via SFTP. (PPPM-12969)
  • Plesk now daily rotates PHP-FPM error logs to prevent them from consuming all the server disk space and eventually causing issues on the server. (PPPM-11362)
  • Fail2ban logs and database backups can no longer consume all the server disk space. (PPPM-12981)
  • Suspending a subscription that has an add-on domain with the forwarding hosting type and a subdomain of the add-on domain no longer breaks the Apache configuration. (PPPM-12939)
  • nginx now returns a 404 Not Found error when requesting a non-existent static file larger than 1023 bytes whose URL contains a trailing slash. (PPP-53248)
  • Disabling a domain whose webmail service was uninstalled no longer generates an incorrect webmail configuration. (PPPM-12984)
  • Removing the /usr/local/psa/PMM/rsessions directory and then going to Backup Manager no longer prevents further backup restoration and download of restoration logs. (PPPM-12785)
  • In Plesk on Ubuntu with libc6 version 2.31-0ubuntu9.3 or later, a subscription’s system user that uses the “bash (chrooted)” shell can now connect to the Plesk server. (PPPM-12954)
  • Subscriptions’ system users that use the /bin/false shell now log in to the Plesk server via FTP faster. (PPPM-12909)
  • In Plesk on a Debian-based system, rereading IP address to repair misconfigured ones no longer duplicates IP addresses in /etc/network/interfaces. (PPPM-12941)
  • If Plesk with Postfix that uses milter_protocol=2 receives an email, this no longer kills the pc-remote service. (PPP-53325)
  • Plesk Log Browser now displays logs compressed in the GZIP format. (PPPM-12976)
  • Plesk now correctly applies locale keys of non-English Horde interface languages. (PPPM-12886)
  • Generating a server report no longer fails in Plesk that has a large number of objects (for example, domains or mailboxes). (PPPM-12816)
  • Apache now runs if it is configured with TLS 1.3 ciphers only. (PPPM-12964)
  • Plesk now vacuums the Fail2ban database weekly to prevent it from growing large. (PPPM-12981)

Windows

  • Plesk no longer fails to create mail for a subscription that belongs to the service plan that has a disabled webmail client selected. (PPPM-12968)
  • Changes in the %plesk_dir%MySQL\my.ini file no longer prevent updating Plesk Onyx to Plesk Obsidian. (PPPM-12994)
  • Improved the error message shown when Plesk cannot restore a remote SFTP backup because one or more database server types (for example, Microsoft SQL Server) present on the remote storage server are not present on the Plesk server the backup is being restored on. (PPPM-12974)
  • It is now possible to turn on the Atomic Standard rule set in ModSecurity. (PPPM-13001)
  • The plesk repair mail utility no longer fails if the “DNS zones for DNSBL service” server-wide mail setting field contains a long string. (PPPM-13002)
  • Plesk now changes a domain’s PHP version in the IIS configuration files even if the PHP handler was previously uninstalled. (PPPM-12911)
  • The %plesk_dir%MySQL\Data*.err file can no longer contain errors and warnings related to the PleskWebSocket service. (PPPM-12737)

Third-Party Component Updates

  • Updated PHP used by Plesk to version 7.4.18.

Linux

  • Updated nginx and sw-cp-server to version 1.20.1.
  • Updated the sw-cp-server components: nginx-dev-kit to version 0.3.1 and lua-nginx-module to version 0.10.19.
  • Updated Phusion Passenger to version 6.0.8.
  • Updated Dovecot and Pigeonhole to versions 2.3.14 and 0.5.14 respectively.
  • Updated Xdebug to version 3.0.4.

Windows

  • Updated BIND to version 9.16.15.
  • Updated ASP.NET Core 5.0 to version 5.0.6.
  • Updated ASP.NET Core 3.1 to version 3.1.15.
  • Updated ASP.NET Core 2.1 to version 2.1.28.
  • Updated Node.js 12 to version 12.22.1.
  • Updated MariaDB 10.5 to version 10.5.10.
  • Updated MariaDB 10.3 to version 10.3.29.
  • Updated SQLite to version 3.35.4.
  • Updated Microsoft ODBC Driver 17 for SQL Server to version 17.7.2.1.

PHP Updates

  • Updated PHP 8.0 to version 8.0.7.
  • Updated PHP 7.4 to version 7.4.20.

Linux

  • Updated Archive_Tar to version 1.4.13 for PHP 7.4, 8.0.

Advisor 1.9.0

  • The extension now correctly validates a certificate chain with more than one intermediate certificate. (EXTADVISOR-693)
  • The extension now provides correct URLs to subscriptions in the “Switch to Up-To-Date PHP Versions” recommendation. (EXTADVISOR-819)
  • The extension no longer shows the “Enable HTTP/2” recommendation if LiteSpeed is used as a web server instead of nginx. (EXTADVISOR-821)
  • The extension now applies the enabled HTTP/2 recommendation without an error message and changes the recommendation status to “configured”. (EXTADVISOR-745)
  • It is no longer possible to apply the “Switch to HTTPS” recommendation to WordPress installations that do not support SSL. (EXTADVISOR-705)

Git 1.3.0

  • The extension interface improvements.
  • The extension form is no longer shown by default when users create subscriptions, customers, domains, and subdomains. To make the form visible, add the following lines to the panel.ini file:

    [ext-git]
    enableOnSiteCreate = true
    

Git 1.2.4

  • We have created the current extension’s “maintenance only” fork for Plesk versions 18.0.32-18.0.35 and labeled it version 1.2.4. We do not plan to update the fork unless any essential security fixes are necessary. We will introduce major changes updating only the master branch for Plesk Obsidian 18.0.36 and later.

DigitalOcean DNS 1.3.1

  • Expired OAuth2 access tokens are now automatically refreshed and no longer prevent the extension from syncing DNS records. (EXTPLESK-2693)
  • The “Invalid authorization token. Unable to authenticate you” error is no longer shown after successful OAuth2 authorization. (EXTPLESK-2687)

SSL It! 1.8.3

  • Internal improvements.

SSL It! 1.8.2

  • By default, the ability to issue Let’s Encrypt certificates while creating new subscriptions, domains, or subdomains is turned off. To turn it on, add the following lines to the panel.ini file:

    [ext-sslit]         
    enableSecuringNewDomain = true
    

    You can also specify the following settings:

    [ext-sslit] 
        
    ;Opens the "Secure with an SSL/TLS Certificate" panel 
    collapseSecuringNewDomain = false  
    
    ;Enables the "Secure the domain with Let's Encrypt" option (works only if enableSecuringNewDomain = true)
    secure-new-domain = true 
    
  • A user can now cancel a pending certificate order if they created it but then removed the extension of the corresponding certificate authority (for example, Sectigo SSL). (EXTSSLIT-1588)
  • If the “Keep secured” feature is enabled and a domain is secured with a non-Let’s Encrypt certificate, the extension now shows the correct security status of the domain. (EXTSSLIT-1535)
  • If the Qmail component is installed, the extension now applies Mozilla ciphers to all available services except Qmail without any issues (Qmail does not support the installation of TLS protocols). (EXTSSLIT-1567)

Plesk Obsidian 18.0.35 Update 2

  • Fixed an internal issue related to connection to Plesk additional services.

Let’s Encrypt 2.13.3

  • The extension now shows a human-readable error message if a user tries to secure a domain whose name is longer than 64 characters. (EXTLETSENC-724)

Keychain for API Secret Keys 1.1.1

  • The extension interface now shows key IDs instead of key values. To reflect this change, we also renamed the “Key” tab to “Key ID”. (EXTPLESK-2334)

Nextcloud 1.6.1

Linux

  • Revised how the latest version is determined. (EXTCERT-3412)

PHP Updates

  • Updated PHP 8.0 to version 8.0.5.
  • Updated PHP 7.4 to version 7.4.18.
  • Updated PHP 7.3 to version 7.3.28.

Linux

  • Updated Redis to version 5.3.4 for PHP 7.3, 7.4, 8.0.
  • Updated Xdebug to version 3.0.4 for PHP 7.3, 7.4, 8.0.

Plesk Obsidian 18.0.35 Update 1

  • In Plesk with enabled “DNS Helper”, the “DNS Settings” page of domains created under subscriptions without hosting no longer shows the “Internal Error” message. (PPP-52966)

Linux

  • It is now again possible to enable ModSecurity with the “Comodo (free)” rule set in the Plesk interface. (PPP-52965)

WordPress Toolkit 5.4.1

  • Scan no longer sends WordPress Toolkit into the infinite recursion spiral under certain rare circumstances. (EXTWPTOOLK-7518)
  • Icons on certain buttons are now visible again in Safari browser. (EXTWPTOOLK-7510)
  • Issues related to lack of HTTP to HTTPS redirection are now properly displayed in the list of SSL/TLS issues in the site card header, if they are found. (EXTWPTOOLK-7478)
  • Background task progress is now properly displayed on the Updates screen after page reload. (EXTWPTOOLK-7475)
  • Action links for SSL/TLS issues are now leading to correct domains in all cases. (EXTWPTOOLK-7474)

SSL It! 1.8.1

  • The extension can now secure a domain alias with a certificate issued for the alias alone (without the main domain name).
  • The extension now reissues a certificate that secures a cloned Plesk instance after the Plesk hostname was changed during cloning. (EXTSSLIT-1511)
  • The “Keep secured” task now renews certificates on domains with the forwarding hosting type and disabled SSL support. (EXTSSLIT-1509)
  • The extension can now renew certificates issued for domain aliases with mixed-case names. (EXTSSLIT-1545)

Let’s Encrypt 2.13.2

  • The extension now reissues a certificate that secures a cloned Plesk instance after the Plesk hostname was changed during cloning. (EXTLETSENC-888)

WordPress Toolkit 5.4.0

  • WordPress Toolkit now saves a log of important actions it performs on managed websites. Logs are written in plain text and stored on each domain in the following format: /logs/wpt_action_logs/action_log_#SITE_UUID#.log.
  • Cloning backend was fully redesigned for improved security and performance.
  • Workflow related to wp-cron management was redesigned:

    • The option was renamed to “Take over wp-cron.php” to avoid the classic “enable to disable” confusion.
    • It is now possible to explicitly choose if a replacement cronjob should be created or not via “Create a replacement task when takeover is initiated” switch.
    • Replacement cronjobs are now way less strict in regards to user modifications. If WordPress Toolkit cannot find its cronjob, it will not try to recreate the cronjob, concluding that it was knowingly modified or removed by user.
    • If user has butchered or removed the replacement cronjob by mistake, it can be recreated by switching off and on the corresponding “Create a replacement
” switch.
  • WordPress Toolkit now displays actual status of SSL/TLS support and certificate on a site card. If any issues are found, WordPress Toolkit provides a suggestion on how to fix them.
  • Added installation state as a separate column to the CLI site list output.
  • WordPress Toolkit now supports AlmaLinux OS on both Plesk and cPanel.
  • Improved pagination on website list.
  • Progress display in windows was standardized and unified for better experience.
  • Various warnings and notifications related to problematic PHP versions were improved and made more consistent.
  • Minimal WordPress version that can be installed via WordPress Toolkit was increased to WP v4.9.
  • Cloning can now properly handle URLs with encoded forward slash in database tables. (EXTWPTOOLK-6292)
  • Cloning no longer fails if WordPress directories do not have proper access permissions. (EXTWPTOOLK-3089)
  • WordPress Toolkit no longer confuses users by telling them they have no sites installed when the site list is empty due to applied filters. (EXTWPTOOLK-6155)
  • The list of themes is now properly refreshed after a theme is manually uploaded and activated from the global “Themes” tab. (EXTWPTOOLK-4372)
  • It is now possible again to use Log in functionality in Safari running on iOS devices. (EXTWPTOOLK-6412)
  • Thanks to the new ghostbusting algorithm, orphaned tasks left by killed processes or rebooted server no longer haunt users in the interface. (EXTWPTOOLK-6326)
  • Default autoupdate options for minor WordPress releases starting with WordPress 5.6 are now set correctly. (EXTWPTOOLK-6579)
  • WordPress Toolkit auto-updates management permission in Plesk now works properly again. (EXTWPTOOLK-6039)
  • WordPress Toolkit no longer sends email notifications about available updates after automatically installing these updates. Opinions vary on whether this was a user trolling algorithm or a split personality algorithm. (EXTWPTOOLK-6077)

Plesk Obsidian 18.0.35

  • In File Manager, it is now possible to do the following:

    • Upload directories.
    • (Plesk for Linux) Change file permissions recursively. Plesk for Windows has always supported that.
  • File Manager can now display SVG files.
  • Improved the interface of Dynamic List view. It is now easier to distinguish one domain card from another because we made the separating lines more distinct.
  • Reduced the domain creation time by four seconds. To achieve this, we split the mail service creation into a separate task.
  • Improved the “Add Domain” page. Plesk now automatically fills in the system user name and password boxes. We have also removed the password confirmation box.
  • The “Mail Settings” page of domains now shows a hint how to enable DKIM signing for an external DNS server. The hint shows the exact DNS records users need to add to the DNS server.
  • It is now possible to get information about subdomains via the CLI or REST API. (PPPM-12825)
  • Enabling the mail service via the CLI for a subdomain no longer creates the Plesk database inconsistency. (PPPM-12836)
  • Disabling the domain resolution check in panel.ini now hides the “Domain is not resolvable” message under “DNS Settings” of domains. (PPPM-12891)
  • The window shown after closing the Change View item in the left navigation pane now contains a correct text instead of placeholders. (PPPM-12863)
  • It is no longer possible to cause the Plesk database inconsistency by deleting an IP address assigned to a subscription without hosing. (PPPM-12876)
  • Introduced a new CLI command --assign-database, which assigns a database created via the API to a domain. (PPP-52056) The command has the following pattern:

    plesk bin subscription_settings --assign-database <domain_name> -database-id <database-id>
    
  • The “DNS settings” page of a subscription no longer fails to be opened with HTTP Error 500 if the Plesk database inconsistency occurs. (PPPM-12877)
  • Plesk can now restore backups of subdomains that belong to a domain with the forwarding hosting type. (PPPM-12903)
  • Improved a hint for creating temporary domains. The previous hint was incorrect and could mislead users into specifying a temporary domain name that did not work. (PPPM-12883)
  • Updating to Plesk Obsidian no longer fails if the /var/www/vhosts/ permissions are not sufficient. (PPPM-12872)
  • Removing an APS application can no longer cause the Plesk database inconsistency. (PPPM-12902)
  • The “DNS Settings” page of a non-resolvable domain can no longer show the “Unable to find subscription” error instead of a warning that the domain name does not resolve to the server IP address. (PPPM-12871)
  • The Plesk interface can no longer occasionally show the “Cannot read property ‘querySelector’ of null” error. (PPPM-12884)
  • If a service plan has the “Switch on the mail service” and “Enable mail autodiscover” mail settings disabled, subscriptions created on the basis of the service plan now inherit these disabled mail settings. (PPPM-12879)
  • Improved a confusing error message. When users try to remove an IP address used by the mail server, Plesk no longer incorrectly notifies that the IP address is used for hosting. (PPPM-7984)
  • If “DNS Helper” is enabled and an add-on domain has an alias, panel.log no longer contains confusing error messages. (PPPM-12906)
  • The plesk repair utility now detects issues with domains assigned to already removed IP addresses and suggests reassigning the domains to existing IP addresses. (PPPM-12865)
  • Improved a message shown after a Plesk password reset. (PPPM-12677)
  • File Manager can now display the content of files whose names contain Cyrillic characters. (PPPM-12897)
  • The pmmcli utility now ignores Error 152 and shows the path to the imported backup dump because the error does not actually affect the backup dump import. (PPP-52707)
  • The pmm-ras utility no longer creates archives and migration.log in the current working directory. The utility now creates migration.log in PMM_LOGS_D if the --session-path is not specified. The utility operation before the bugfix could occasionally cause server backups to fail. (PPPM-11752)
  • Sped up loading of lists with a large number of domains (more than 1000). (PPPM-12689)

Linux

  • Plesk can now be installed on AlmaLinux OS.

    Note: You can now in-place convert your Plesk server on CentOS 8 to AlmaLinux OS. To do so, run the script prepared by the AlmaLinux team on your CentOS 8 server.

  • Dropped support for Ubuntu 16.04.
  • Improved an error message shown when IP addresses registered in Plesk do not match those set up on the server and this mismatch caused an issue with the web server. The message now contains the link to the KB article with the steps on how to fix the issue.
  • Updating Plesk 18.0.33 and earlier to the latest Plesk version no longer causes Plesk Premium Antivirus to start sending false notifications that a Plesk Premium Antivirus license will expire soon. (PPP-52338)
  • Mail delivery to IDN emails no longer fails. (PPPM-12866)
  • Removed an unnecessary test run during Plesk installation. The failed test created a log warning message with a recommendation to check the network configuration. The test result affected neither Plesk installation nor performance. (PPP-41762)
  • Plesk now preserves the following custom settings of the [php-fpm-pool-settings] section in additional php.ini directives: chroot, clear_env, decorate_workers_output. (PPPM-12666)
  • phpMyAdmin can no longer show strange users without passwords (for example, the user “Any”). (PPPM-12793)
  • An IP address change can no longer fail because of unfinished MySQL initialization. (PPPM-12464)
  • A Plesk daily maintenance task can no longer replace Dr.Web Antivirus packages with those from Plesk Premium Antivirus. (PPPM-12850)
  • The official configuration of WordPress permalinks now works if nginx and PHP-FPM are used in tandem. (PPPM-12817)
  • If PHP-FPM is served by nginx in Apache+nginx hosting, custom error documents for PHP scripts now work. (PPPM-12815)
  • An add-on plan with disabled PHP settings can no longer affect the PHP settings of a subscription created based on the plan. (PPPM-12864)
  • The Fail2ban configuration issues can no longer prevent users from creating subscriptions. (PPPM-12045)
  • Scheduled tasks with the Null attribute no longer prevent Plesk from restoring server backups. (PPPM-12912)
  • When installing or updating Plesk, Plesk Installer can now detect and warn about unsupported Debian and Ubuntu repositories present on the server. (PPPM-12834)
  • Plesk Installer no longer occasionally shows that the MySQL server component can be updated instead of actually updating the component. (PPPM-12658)
  • Plesk can now check incoming mail by processing SPF TXT records that contain up to 1024 mechanisms. (PPPM-8103)
  • In Plesk on CloudLinux, the “Server Information” page in Tools & Settings can no longer show the Internal Server Error 500. (PPPM-11898)
  • Plesk now correctly counts statistics for an add-on domain not including statistics for the domain with the same name as the add-on domain (if any). (PPPM-12577)

Windows

  • For an external SMTP server used with Plesk, it is now possible to use a non-email username instead of a full email address (for example, just “mail” instead of “mail@example.com”). (PPPM-12896)
  • The Plesk Installer output now shows all characters of a package version. (PPPM-12842)
  • Removed a warning message about a 900-second delay after a PHP version change. (PPPM-12831)
  • If SmarterMail 100 is used, Plesk no longer backs up emails of domains whose mail service is disabled and warns about it. (PPPM-12522)
  • If the Windows system locale language is not English, Plesk no longer skips a subscription’s mail when backing up the subscription. (PPPM-12874)
  • It is now again possible to train SpamAssassin because SpamAssassin Imap.php no longer tries to connect to the localhost using TLS. (PPPM-12086)
  • Improved error reporting if backup creation fails with the “Failed to create archive: Repository error”. (PPPM-12697)

Third-Party Component Updates

  • Updated PHP used by Plesk to version 7.4.16.

Linux

  • Updated phpMyAdmin to version 5.1.0.
  • Updated Fail2ban to version 0.11.2.
  • Updated ProFTPD to version 1.3.7a.

Windows

  • Microsoft Drivers for PHP for SQL Server are now installed with PHP 8.0.
  • Updated Microsoft ODBC Driver 17 for SQL Server to version 17.7.1.1.
  • Updated Node.js 12 to version 12.21.0.
  • Updated Node.js 10 to version 10.24.0.
  • Updated Git to version 2.30.2.
  • Updated ASP.NET Core 5.0 to version 5.0.4.
  • Updated ASP.NET Core 3.1 to version 3.1.13.
  • Updated ASP.NET Core 2.1 to version 2.1.26.
  • Updated BIND to version 9.16.13.
  • Updated OpenSSL to version 1.1.1k.
  • Updated SpamAssassin to version 3.4.5.

Let’s Encrypt 2.13.1

  • The extension can no longer secure new domains during their creation. This feature is now available in the SSL It! extension only.

Plesk Migrator 2.21.0

  • It is now possible to migrate Plesk servers with remote databases.
  • It is now possible to migrate Plesk 12.5 servers that have WordPress websites. (PMT-4921)
  • The extension can no longer migrate additional users to a wrong subscription that belongs to the same owner. (PMT-4759)
  • Migration via the CLI no longer fails if a service or add-on plan to be migrated has no subscriptions. (PMT-4888)
  • It is now again possible to migrate subscriptions that belong to one hosting plan. (PMT-4915)
  • Migration no longer fails if the dump import was finished with the error code 152. (PMT-4909)

Linux

  • It is now possible to migrate servers on AlmaLinux OS.
  • It is now again possible to migrate cPanel servers with Perl version 5.21.3 and later installed. (PMT-4911)
  • The extension no longer migrates settings specified on the “Performance” tab of a hosting plan. Such migration caused an error because the “Performance” tab of hosting plans was removed in Plesk Obsidian. (PMT-4827)
  • If nginx is turned off on the source server, migration no longer resets PHP handlers. (PMT-4861)
  • The extension no longer limits the user name length of password-protected directories to 20 characters. (PMT-4893)
  • The extension now correctly detects the remoteip Apache module. (PMT-4914)

Git 1.2.3

  • Creating a repository no longer fails in Plesk with Git version 2.29.2 and later. (EXTGIT-126)

Windows

  • In Plesk for Windows, creating a repository for a domain no longer fails if the system user password of the subscription the domain belongs to contains special characters. (EXTGIT-131)

Microsoft Azure DNS 1.1.0

  • The extension now shows a warning if a custom backend script is not properly configured and offers to configure it if necessary.
  • Added a link to the extension to the left navigation pane in Power User mode.
  • Updated links to the documentation.
  • Improved an error message shown in the panel.log if the extension has incorrect credentials specified. (EXTPLESK-543)
  • The extension now correctly syncs DNS records of domains whose names contain uppercase characters. (EXTPLESK-1317)
  • The extension now correctly syncs TXT records that have the same hostname. (EXTPLESK-1319)

SSL It! 1.8.0

  • Internal improvements.

Sectigo SSL 1.3.0

  • Customers now receive more detailed information about Sectigo organization validation process.

Git 1.2.2

  • If a customer’s subscription has the Git management permission denied, the customer no longer sees the “Permission denied: the user does not have the manage permission” error instead of Plesk pages. We spotted this bug in the extension version 1.2.1. (EXTGIT-133)

Let’s Encrypt 2.13.0

  • New domains can now be automatically secured during their creation in one of the following cases:

    • The SSL It! extension is installed and enabled.
    • The panel.ini setting enable-securing-new-domain is turned on. By default, the setting is turned off. To turn it on, add the following lines to panel.ini:

        [ext-letsencrypt] 
        enable-securing-new-domain = true
      
  • Starting with its next release, the extension will not be able to secure new domains during their creation. This feature will be available in the SSL It! extension only.

DigiCert SSL 1.10.0

  • The extension now shows a link to the page with a detailed explanation of how DigiCert validates organizations.(EXTPLESK-2548)

Git 1.2.1

  • Added a detailed error message shown if the extension cannot perform git push because git-auto-push was configured for an add-on domain moved to another subscription. (EXTGIT-123)

G Suite 1.0.4

  • Temporarily disabled creating new and transferring external G Suite subscriptions due to maintenance work.

Plesk Obsidian 18.0.34 Update 2

  • Plesk Obsidian 18.0.34 and later behind Cloudflare with Rocket Loader enabled for a domain no longer shows empty customers’ and resellers’ pages. (PPPM-12844)

    Note: Although the issue was fixed, we recommend that you disable Rocket Loader. It does not benefit Plesk in any way.

Linux

  • Updating the Plesk server OS using dist-upgrade and updating Plesk Obsidian with Postfix installed to version 18.0.34 no longer breaks the Postfix configuration. (PPPM-12846)
  • In Plesk Obsidian 18.0.34 and later, the Plesk administrator no longer receives daily emails from the Plesk cron task notifying that “ls: cannot open directory /usr/lib64/httpd/modules”. (PPPM-12853)
  • In Plesk Obsidian 18.0.34 and later, updating SpamAssassin rules no longer fails with the “channel: no ‘mirrors.sought.rules.yerp.org’ record found” error. (PPPM-12848)
  • Updating Plesk Obsidian to version 18.0.34 no longer fails with the “Plesk database scheme was not upgraded completely” error if the Plesk server has the specific time zone set. (PPPM-12837)

Let’s Encrypt 2.12.7

  • The extension now shows the “Renew” button instead of “Install” if a domain is already secured with a Let’s Encrypt certificate. (EXTLETSENC-971)

Grafana 1.2.2

Windows

  • Security improvements.
  • Updating Grafana to version 7.4 and later no longer breaks the extension. (EXTPLESK-2499)
  • During its installation, the extension now downloads the latest stable Grafana version. (EXTPLESK-2509)

SSL It! 1.7.9

  • The extension now correctly processes certificates with more than one domain name in CN. (EXTSSLIT-1396)
  • The extension no longer incorrectly automatically resets the wildcard certificate assigned to a subdomain to “None”. (EXTSSLIT-1084)
  • Paid certificate orders will no longer disappear if users try to issue another certificate in a second browser tab opened before. (EXTSSLIT-1419)

Sectigo SSL 1.2.1

  • Wildcard certificates from Sectigo now secure webmail on domains. This improvement comes into effect as soon as the SSL It! extension version 1.7.9 is released.

DigiCert SSL 1.9.6

  • Wildcard certificates from Digicert now secure webmail on domains. This improvement comes into effect as soon as the SSL It! extension version 1.7.9 is released.

Transfer of DNS Records 1.0.1

  • The extension has been localized into 31 languages: Arabic, Catalan, Chinese Simplified, Chinese Traditional, Czech, Danish, Dutch, Filipino, Finnish, French, German, Greek, Hebrew, Hungarian, Indonesian, Italian, Japanese, Korean, Malay, Norwegian Bokmal, Polish, Portuguese, Portuguese, Brazilian, Romanian, Russian, Spanish, Swedish, Thai, Turkish, Ukrainian and Vietnamese.
  • Administrator and resellers can now import DNS zones for all domains they have permissions for, not just domains they own.
  • Improved the UI text.

DigitalOcean DNS 1.3.0

  • The extension now shows a warning if a custom backend script is not properly configured and offers to configure it if necessary.
  • A link to the extension was added to the left menu in Power User mode.
  • Updated links to the documentation.

Grafana 1.2.1

  • Clicking the “Fix installation” button on the extension’s main page now correctly reinstalls Grafana packages if they were removed for some reason. (EXTPLESK-1999)

DigiCert SSL 1.9.5

  • The extension now shows correct statuses of www and wildcard components when wildcard certificate is installed. (EXTPLESK-2097)
  • The extension now validates domain correctly while a certificate is being issued. (EXTPLESK-2361)

Plesk Obsidian 18.0.34

  • Added the Recycle Bin to File Manager. Users can now restore files deleted by mistake from the Recycle Bin.
    The Recycle Bin is turned off by default. To turn it on, add the following lines to the panel.ini file:

    [fileManager]
    trash.enabled = true
    trash.folder = .trash ; the name of the the Recycle Bin folder
    

    The Recycle Bin appears when a user deletes a file and chooses not to delete it permanently.

  • The “DNS Helper” and “Publicly resolvable temporary domain name” features introduced in Plesk Obsidian 18.0.32 will be enabled by default strating with Plesk Obsidian 18.0.34. To disable the features, add the following lines to the panel.ini file:

    [dns]
    enableResolveChecking = false ; disables resolve checking
    showDnsHelper = false ; hides DNS Helper
    [techDomain]
    subdomain.enabled = false ; removes the ability to create technical domains
    
  • Even if no DNS server is installed, Plesk will now show the information about configuring DNS for domains that could not be resolved.
  • Significantly sped up Plesk initialization and post-install configuration.
  • Revamped file editing in File Manager. Users now edit files in a drawer instead of going to a new page.
  • The image preview feature in File Manager works again in Plesk and the feature no longer needs the Image Preview extension. If the Image Preview extension is installed, updating Plesk to version 18.0.34 will remove the extension.
  • Plesk UI notifications on ModSecurity rule set updates are no longer enabled by default. The Plesk administrator now explicitly turns on the notifications if necessary.
  • If the Comodo rule set is not available for download because of an issue on the waf.comodo.com side, Plesk now shows an error message that describes what users can do.
  • Tools & Settings > Active Plesk Sessions (under “Security”) now differentiates sessions of the Plesk administrator and additional administrators. Additionally, Plesk now shows the “Another user with the same username (admin) is already logged in to Plesk” warning only if a user of the same type is logged in. (PPPM-6227)
  • It is now possible to add a description to a domain when creating the domain via REST API. (EXTREST-127)
  • The plesk repair db command can now fix the default certificate inconsistencies in the Plesk database. (PPPM-12795)
  • Plesk additional administrators can now change their passwords in Power User view. (PPPM-12316)
  • After logging in to Plesk updated to the latest version, the “Too few arguments to function Plesk_Base_Utils_Http::getUserIp()
” error is no longer occasionally shown. (PPPM-12696)
  • It is now again possible to create backups stored in FTP storage. This feature was broken since Plesk 18.0.33. (PPPM-12699)
  • Plesk sw-engine now correctly uses the system time zone defined in Tools & Settings > System time (under “General Settings”) As a result, after the system time zone was changed, sw-engine now operates in the correct time zone and writes log entries that have the correct time. (PPPM-12543)
  • In the output of the secret_key CLI utility, changed the “Key” field name to “Key ID” to avoid user confusion. (PPP-52085)
  • The “Unable to extract : To extract RAR archives, install UnRAR" error message now contains the correct link to the "How to install UnRAR" KB article. (PPPM-12550)
  • The Amazon S3 Backup extension now works with the S3-compatible storage Backblaze. To ensure compatibility, the extension no longer sends the RequestPayer option by default. (EXTPLESK-2107)
  • Removed the bandwidth value validation from Plesk API RPC. (PPPM-12708)
  • In Fail2Ban, a custom jail no longer disappears if it was saved with errors. We spotted this bug in Plesk 18.0.32 Update 2. (PPPM-12362)
  • Installing an invalid Plesk license no longer makes the “License Management” page reload continuously. (PPP-51903)
  • Getting a response to an XML API request sent to a Plesk server with a large number (100+) of secret keys or creating a new secret key on such a server no longer takes a disproportionately long time. (PPPM-12800)

Linux

  • It is now possible to extract RAR archives in File Manager on RHEL-based Plesk servers with unar installed and unrar not installed.
  • Apache graceful restart is now more stable and less likely to break Apache during log rotation.
  • Plesk now shows only actually installed Apache module versions in Tools & Settings > Apache Web Server (under “General Settings”).
  • The plesk repair mail <domain> command can now repair a mailbox even if the mailbox automatic reply contains non-ASCII characters.
  • Clean installations of Plesk 18.0.33 and later no longer have database inconsistencies. (PPPM-12806)

    Note: If you got a new Plesk 18.0.33 or later, run the plesk repair db command to fix the inconsistencies. Updating Plesk to version 18.0.34 will not automatically fix them.

  • After a domain was deleted or its hosting type was changed to forwarding, the Plesk database no longer has nginx.conf records left. (PPPM-12758)
  • Users can no longer get Dr.Web notifications on the upcoming expiration of their Dr.Web license even though the license has already been updated in Plesk. (PPPM-12761)
  • Applying the DNS template to all DNS zones no longer changes empty TTL values of the affected DNS records to 0. (PPPM-12752)
  • If the “Enable email subaddressing” option is disabled, it is not possible to create email addresses that contain special characters. If Plesk already has mailboxes whose email addresses contain special characters, it is not possible to enable the option. (PPPM-12781)
  • In Plesk on Debian 10 with non-standard packages installed, the Plesk DNSSEC extension no longer fails to sign the domain DNS zone. (PPPM-12589)
  • Plesk can now import MySQL dumps that have the DEFINER clause set. (PPP-52224)
  • After a subscription was suspended, the webmail page of the subscription no longer shows a confusing SSL warning. (PPPM-12580)
  • Website preview now works if “TLS versions and ciphers by Mozilla” of the SSL It! extension was enabled with the “Modern” option. (PPPM-12641)
  • After Plesk Premium Antivirus was uninstalled, entries in /var/log/maillog can no longer contain the drweb handler. (PPPM-12719)
  • Making changes on the Tools & Settings > Mail Server Settings page no longer enables all inactive mailboxes. (PPPM-12753)
  • In Plesk on Ubuntu, backup restoration no longer fails with the “Unrecognized option: ‘-dumps-root-dir’” error. (PPPM-12820)
  • If the Plesk administrator password is too long, the Plesk mail service no longer occasionally stops working. (PPPM-12503)
  • After updating Plesk Onyx 17.8 on Ubuntu with Postfix installed to Plesk Obsidian, the Postfix logs no longer contain compatibility warnings. (PPP-46809)
  • DHE ciphers are now again available for sw-cp-server and nginx. (PPPM-11435)
  • Plesk now regards PHP 8 as a secure handler. A change of the service plan PHP version from 7.4 to 8.0 no longer causes the “Conflicts with the server-wide security policy” message to be shown. (PPPM-12731)
  • In Plesk on CentOS 7, updating Plesk licences can no longer occasionally fail with the “floatFractionPart: Assertion value < 1.0’ failed” error. (PPPM-12445)
  • Update of Plesk Obsidian that has a large number of created secret keys (more than 20000) to version 18.0.34 now takes less time. (PPPM-12722)

Windows

  • Microsoft IIS Compression is now shipped with Plesk.
  • It is now possible to connect to a Plesk server connected to Active Directory via FTP using just the login and password of an FTP user (for example, john_doe as an FTP login instead of Plesk_server_hostname\john_doe previously).
  • If “Maximum CPU usage” for the IIS dedicated pool (in service plan or domain settings) has a set value, turning off the pool no longer resets the maximum CPU usage value to “Unlimited”. (PPPM-10314)
  • Plesk now propagates TTL values of DNS records to Simple DNS Plus. (PPPM-12766)
  • After the website PHP handler was changed to another version, the website FastCGI application of the previous PHP handler version is now removed. (PPP-51988)
  • Restoring a subscription no longer occasionally causes the “Call to a member function getType() on null” warning. (PPPM-12712)
  • Backups are now longer occasionally restored with the “Unable to restore the configuration of the error documents.” warning shown. (PPPM-12710)
  • Sped up how fast Plesk loads the mailbox setting page. (PPPM-12693)
  • Configured mail autodiscover no longer occasionally blocks access to Plesk. (PPPM-12767)
  • Plesk Reconfigurator that failed to change virtual host locations can no longer stop IIS, misconfigure all websites in Plesk, and make them unavailable. (PPPM-12707)
  • Plesk Reconfigurator now correctly changes the server IP address: the DNS server zones contain records with the new IP and the DNS server can resolve the new IP. (PPPM-12718)

Third-Party Component Updates

Linux

  • Updated PHP used by Plesk to version 7.3.27.
  • Updated Roundcube to version 1.4.11.
  • Updated Postfix to version 3.5.9.
  • Updated Horde to fix a security issue. We strongly recommend that you update Plesk.
  • Updated IMP to version 6.2.27.

Windows

  • Updated ASP.NET Core 5.0 to version 5.0.3.
  • Updated ASP.NET Core 3.1 to version 3.1.12.
  • Updated ASP.NET Core 2.1 to version 2.1.25.
  • Updated Horde PHP to version 7.3.
  • Updated Horde IMP to version 6.2.27.
  • Updated the Horde_Text_Filter library to version 2.3.7.
  • Updated Git to version 2.30.0.2.
  • Updated PHP used by Plesk to version 7.4.15.

PHP Updates

  • Updated PHP 8.0 to version 8.0.3.
  • Updated PHP 7.4 to version 7.4.16.

Advanced Monitoring 1.4.2

  • Improved the fidelity of the displayed graphs by showing undefined values as 0 instead of not showing them at all.
  • Clicking “Fix installation” in Advanced Monitoring now properly fixes the installation if Grafana was removed from the server. (EXTPLESK-1949)
  • CPU usage data is now shown in percentages instead of microseconds. (EXTPLESK-2337)

Linux

  • Plesk administrator can now enable comparison between subscriptions without enabling integration with customers’ subscriptions. (EXTPLESK-2377)

Ruby 1.3.12

  • The extension no longer breaks Plesk 18.0.34 and later. (EXTRUBY-90)

DigitalOcean DNS 1.2.4

  • Exceeding 200 domains no longer blocks the extension functioning and does not lead to the API rate limit issue. (EXTPLESK-2450)

Amazon RDS 1.0.3

  • All Amazon regions are now present in the extension. (EXTPLESK-2446)
  • Changing the Plesk administrator’s interface language can no longer break the extension interface. (EXTPLESK-990)

Plesk Obsidian 18.0.33 Update 1

  • Security improvements.
  • The “Change View” button in the bottom left corner of the screen is now again available for resellers. The button was absent from the reseller interface starting with Plesk Obsidian 18.0.32. (PPP-52256)

SSL It! 1.7.8

  • Security improvements
  • The extension can now secure the www subdomains of domain aliases with wildcard SSL/TLS certificates. (EXTSSLIT-1370)
  • The extension now saves issued valid SSL/TLS certificates in the extension storage even if the certificate installation failed for some reason. The extension can try installing the SSL/TLS certificates from the storage later. (EXTSSLIT-1378)
  • The “Keep secured” task now writes entries with correct domain names to panel.log. (EXTSSLIT-1373)

Sectigo SSL 1.2.0

  • Domains are now secured with temporary DV certificates while ordered OV/EV certificates are being issued.
  • Users can now change their domain control validation (DCV) method via the Sectigo web interface.

WordPress Toolkit 5.3.3

  • Autoupdate task no longer fails with PHP fatal error under certain circumstances. (EXTWPTOOLK-6454)

WordPress Toolkit 5.3.2

  • Updates no longer fail to be installed on sites with more than 30 plugins and themes. (EXTWPTOOLK-6445)

Transfer of DNS Records 1.0.0

  • Initial release. The extension works in Plesk Obsidian 18.0.33 and later.

G Suite 1.0.3

  • If the extension does not support a user’s G Suite subscription plan, the transfer of the subscription now changes the user plan to the the most suitable supported plan (G Suite Basic, G Suite Business, or G Suite Enterprise).

WordPress Toolkit 5.3.1

  • When copying data between sites, “Remove missing files” and “Replace files modified on target” options are now working correctly again. (EXTWPTOOLK-6426)

Let’s Encrypt 2.12.6

  • Internal improvements.

Advisor 1.8.4

  • Added the recommendation to use the Virusdie extension.

WordPress Toolkit 5.3.0

  • The wp-cli utility was updated to the latest version, so WordPress Toolkit now works on PHP 8. Yay! On the other hand, minimum PHP version supported by WordPress Toolkit is now PHP 5.4, so websites working on PHP 5.2 and PHP 5.3 cannot be managed by WordPress Toolkit anymore.
  • WordPress Toolkit now supports new autoupdate defaults introduced in WordPress 5.6. Autoupdate settings on new WP 5.6 installations are now set to “major and minor updates” by default. Existing WordPress installations updated to version 5.6 will keep their previous autoupdate settings.
  • New WordPress 5.6 installations managed by WordPress Toolkit are not using the WP_AUTO_UPDATE_CORE constant for configuring autoupdate settings anymore. Existing WordPress installations updated to 5.6 will keep the constant in wp-config.php file until autoupdate settings are changed. The only exception to both these cases is complete disabling of all autoupdates, which will still require WordPress Toolkit to add the constant to wp-config.php.
  • WordPress Toolkit now identifies and visually marks websites using unsupported version of WordPress, outdated (EOLed) version of PHP, or unsupported version of PHP.
  • It is now possible to clone websites with defined DEFINER clause in the database dump. If you were ever given issue ID EXTWPTOOLK-946 by our support team for tracking purposes, it’s time to rejoice.
  • WordPress Toolkit no longer adds WP_AUTO_UPDATE_CORE constant to wp-config.php file during operations not initiated by the customer (like checks for availability of updates, and so on). This constant will be added only after site admin has explicitly modified WordPress autoupdate settings.
  • WordPress Toolkit now tries its best to create site screenshots for quarantined and otherwise unsupported sites.
  • Site list loading speed was increased.
  • WordPress sites with very long rows in the database can now be properly cloned. (EXTWPTOOLK-939)
  • Plugins are now installed with locale matching current WordPress site locale, if possible. (EXTWPTOOLK-5167)
  • WordPress Toolkit can now properly work with sites that have filters and closing PHP tags in wp-config.php. (EXTWPTOOLK-4104)
  • It is now possible to clone sites with large database tables without encountering the “Got packet bigger than ‘max_allowed_packet’ when dumping table” error. (EXTWPTOOLK-5778)
  • It should now be possible to clone sites with huge (>10 GB) database tables without encountering the 504 error when opening the cloning screen. (EXTWPTOOLK-5154)
  • The field formerly known as Login URL had its name and hint text updated to clarify that you don’t need to specify the full URL here, only the suffix. (EXTWPTOOLK-6107)
  • It is now possible to copy data from a site if it has files containing spaces in their names. (EXTWPTOOLK-6360)
  • WordPress Toolkit now displays a nicer error message when it cannot install the remote management plugin on a site due to upload_max_filesize restrictions on a remote server. (EXTWPTOOLK-6157)
  • Maintenance log no longer contains exceptions if there’s at least one remote site connected via plugin on the server. (EXTWPTOOLK-6083)
  • Advisor measure “Turn on security autoupdates” can now be applied even if certain sites in the list are broken. (EXTWPTOOLK-6208)

PHP Updates

  • Updated PHP 8.0 to version 8.0.2.
  • Updated PHP 7.4 to version 7.4.15.
  • Updated PHP 7.3 to version 7.3.27.

Linux

  • Updated PHP used by Plesk to version 7.3.27.
  • Updated Redis to version 5.3.3 for PHP 7.3, 7.4, 8.0.
  • Updated Archive_Tar to version 1.4.12 for PHP 7.3, 7.4, 8.0.

DigitalOcean DNS 1.2.3

Joomla! Toolkit 2.4.4

  • Added support for PHP 8.

Let’s Encrypt 2.12.5

  • It is now possible to secure the www subdomains of domain aliases with wildcard SSL/TLS certificates. The fix works for the standalone Let’s Encrypt extension only. For Let’s Encrypt in the SSL It! extension, the issue still remains and will be fixed later. (EXTLETSENC-568)
  • It is now possible to secure the Plesk login page with an SSL/TLS certificate if the server hostname is set up as the custom Plesk login URL, while another domain is set up as the default one for the server IP address. (EXTLETSENC-980)
  • The extension now shows a clear error message if an SSL/TLS certificate cannot be issued because of misconfigured IPv6 addresses. (EXTLETSENC-752)

Site Import 1.4.7

  • Migration can no longer fail with the “PleskAPIInvalidSecretKeyException” error. (PMT-4890)

SEO Toolkit 1.1.13

  • Log Analyzer can no longer get stuck in an infinite loop being constantly loaded. (XOVI-3738)
  • Resolved Side Audit issues that happened during the quick check. (XOVI-3049)
  • Fixed value formatting in Rank Tracker on the Position Trend chart.
  • Fixed PHP notifications in log files. (XOVI-3635)

Sectigo SSL 1.1.0

  • Extended the list of certificates available for purchase by adding the following ones:

    • PositiveSSL EV (EV certificate)
    • InstantSSL (OV certificate)
    • InstantSSL Wildcard (wildcard OV certificate)

SSL It! 1.7.7

  • Added the certificate products coming in the next Sectigo SSL release to the default list.
  • Resetting the list of certificate products to the default value via the CLI no longer fails. (EXTSSLIT-1369)

Repair Kit 1.2.3

  • If iotop is absent from the server on which Plesk is being installed, this no longer stops installation of Repair Kit and correspondingly installation of Plesk. (EXTPLESK-1827)
  • Fixed the output of the plesk ext repair-kit --help command. (EXTPLESK-1703)
  • Repair Kit now actually fixes the database inconsistencies. (EXTPLESK-1570)
  • Fixed the incorrect use of the term. Repair Kit in Power User view now shows the term “webspace” instead of “subscription”. (EXTPLESK-816)

Advanced Monitoring 1.4.1

Windows

  • The extension no longer writes the errors about the missing resctrl service to php_error.log. (EXTPLESK-2341)

Plesk Obsidian 18.0.33

  • Plesk now supports MySQL 8 as the local (Plesk for Linux) and the remote database server. To learn how to switch the Plesk local database server to MySQL 8 or to perform a clean installation of Plesk on a server with MySQL 8, refer to this KB article.
  • It is now possible to hide the controls related to Plesk updates (“Check for updates” and the “Update Plesk” buttons/links) on the Home page (in Service Provider view) and on the Websites & Domains screen (in Power User view).

    To hide the controls, add the following lines to the panel.ini file:

    [updates]
    showControls = false 
    
  • It is now possible to hide plesk.com in the Plesk page footer. To do so, add the following lines to the panel.ini file:

    [promos]
    pleskFooter = false
    
  • Added the “Database management” checkbox to Restricted Mode. Selecting the checkbox hides the “Database management” controls in the Plesk interface and prohibits the database management.
  • Manual setup of email clients now shows the information about the required mail ports and their differences.
  • Starting with this update, the Plesk database stores hashes of secret keys used to authenticate API requests rather than ciphertexts. This way, even if a threat actor were to read the Plesk database, they would no longer be able to retrieve any information that would allow them to authenticate via API.
  • Security improvements.

    Note: Special thanks to Tarek Bouali (@iambouali) for reporting a security issue.

  • Improved the Plesk interface and texts on the “DNS Settings” (domains) and DNS Template > Zone Settings Template (the Plesk server) screens. It should more clear now which field manages the default TTL value for the zone.
  • If the reseller login consists of 10 digits (1234567890), the reseller’s incremental backups no longer have the size of the full backup. (PPPM-12533)
  • XML API requests now return the correct number of subdomains in a subscription. (PPPM-12592)
  • It is now possible to upload a logo file in the SVG format in Tools & Settings > Branding (under “Plesk Appearance”). (PPPM-12339)
  • The “Update Domain Status” event is no longer run daily when the domain status does not change (for example, when the subscription the domain belongs to is suspended). (PPPM-12644)
  • Backing up to Dropbox no longer shows the checksum warning message. (PPPM-12583)
  • It is now possible to set the Plesk language and the description for a customer via REST API. (PPPM-12596)
  • Plesk now preserves custom mailbox size and units of measurements and does not reset them each time the mailbox page is opened. (PPPM-12647)
  • The mail autodiscover feature disabled on the Plesk server can no longer cause issues for resellers’ subscriptions (previously resellers’ subscriptions could be locked and could not be synced again). (PPPM-12661)
  • The additional user with the single “Manage DNS settings” permission can no longer see logs. (PPPM-12630)
  • File Manager is now opened faster when displaying a large number of files whose extensions are not hardcoded (for example, .exe or .pdf). (PPPM-12635)
  • File Manager is now opened significantly faster when displaying a large number of DLL files (more than 300). (PPPM-12634)
  • It is now possible to create DNS records that contain placeholders in the middle. (PPPM-12521)
  • If a Plesk license was terminated on a server, the customers no longer receive daily repetitive notifications of resource overuse. (PPPM-12636)
  • It is now possible to use the Amazon RDS Integration with MariaDB engine. (PPPM-12645)
  • The Contact Support button in Tools & Settings > Support (under “Assistance and Troubleshooting”) > “Contact support without generating a technical report.” now redirects to the correct Plesk Support URL. PPP-51824)

Linux

  • Added Brotli support to nginx.

    Brotli compression is enabled by default.

    To disable Brotli on a single domain, specify brotli off; in additional nginx directives.

    To disable Brotli globally, either specify brotli off; in /etc/nginx/conf.d/yy000_brotli_tweaks.conf or run the plesk bin nginx -d brotli command.

  • Dropped support for Red Hat Enterprise Linux 6.
  • Dropped support for Apache 2.2 and Apache mod_rpaf module (as a part of the change mentioned above).
  • It is now possible to add a CNAME record pointing to another CNAME record. (PPP-49117)
  • If PHP support was disabled in an add-on plan, the add-on PHP settings can no longer be applied to a subscription in any way. For example, assigning the add-on plan to the subscription will not change the subscription PHP settings. (PPP-49098)
  • After installation of or upgrade to Plesk Obsidian, the plesk repair fs command no longer mistakenly detects files with the incorrect permissions in /var/log/plesk. (PPPM-12584)
  • In Plesk on CentOS 7 with PHP from the OS vendor, the Apache module php5 can now be enabled or disabled. (PPPM-12628)
  • IMAP and POP3 mail accounts configured in Outlook now correctly show emails with UTF-8 characters. The related “Your E-mail reader did not enable Unicode support” error message is no longer shown. (PPPM-12639)
  • If Plesk Obsidian was upgraded from Plesk Obsidian 18.0.30 and earlier, the nginx cache size equal to 0 can no longer break the nginx configuration. (PPPM-12605)
  • The login name length of password-protected directory users can now be up to 32 characters. Backup restoration no longer throws an error if the password-protected directory login name contains more than 20 characters. (PPPM-12409)
  • Improved an error message shown in an attempt to enable Fail2Ban when Plesk does not have Fail2Ban installed. (PPP-51635)
  • If web statistics are not generated properly, customers can now understand why because AWStats errors are now logged and customers can see them in the panel.log file (if the show.util_exec_io setting is set to true in the panel.ini file). (PPPM-9832)
  • Plesk administrators can no longer set a rule in the Plesk Firewall that blocks themselves and, as a result, can no longer lose access to the Plesk interface. (PPPM-12469)
  • The server shutdown in Tools & Settings > Shut Down Server (under “Server Management”) is now executed immediately on the same page after confirmation. The server can no longer be shut down twice if the Plesk administrator kept the shutdown link in the browser and refreshed it after the first shutdown. (PPPM-12091)
  • In ModSecurity, the switch from the Atomic Standard to the Comodo rule set no longer causes false-positive bans. (PPPM-12291)
  • Plesk Reconfigurator no longer fails if msmtp is installed. (PPPM-12662)
  • Migration or backup restoration now preserves the mailbox antivirus settings. (PPPM-12378, PPP-50311)
  • Upgrade to Plesk Obsidian from Plesk Onyx on a Debian-based OS can no longer make phpMyAdmin inaccessible. (PPPM-12509)

Windows

  • In Plesk 17.8 on Windows Server 2012 R2, the Tools & Settings > Updates (under “Plesk”) page no longer hinders customers from upgrading to Plesk Obsidian. The page occasionally got stuck in an infinite loop and was constantly refreshed. (PI-603)
  • Absence of the Plesk \etc\plesk-release file now throws an error and stops the non-interactive upgrade because such upgrade could make Plesk inaccessible. (PPPM-12581)
  • SpamAssassin no longer fails to learn if the autogenerated password for the sa_bayes database contains the hash character (#). (PPPM-12579)
  • It is now possible to change the \vhosts folder location using Plesk Reconfigurator. (PPPM-12649)
  • It is now possible to create a mailbox via the CLI if Auth Policy Status is enabled in MailEnable. (PPPM-12595)
  • In Plesk on Windows Server 2012 R2, the Plesk login page can no longer open the default Plesk page after the login to Plesk because the login page does not redirect to HTTP instead of HTTPS. (PPPM-12660)
  • File Manager now opens files using links in domain log entries without any issues. (PPPM-12675)

Third-Party Component Updates

Linux

  • Updated Dovecot to version 2.3.11.3.
  • Updated PHP used by Plesk to version 7.3.26.
  • Updated Roundcube to version 1.4.10.

Windows

  • Updated the Plesk Perl package to version 5.30.3.
  • Updated OpenSSL to version 1.1.1i.
  • Updated Git to version 2.29.2.3.
  • Updated ASP.NET Core 5.0 to version 5.0.2.
  • Updated ASP.NET Core 3.1 to version 3.1.11.
  • Updated ASP.NET Core 2.1 to version 2.1.24.
  • Updated Node.js 12 to version 12.20.1.
  • Updated Node.js 10 to version 10.23.1.
  • Updated PHP used by Plesk to version 7.4.14.

Plesk Migrator 2.20.3

  • Added MySQL 8 support.

Microsoft Azure DNS 1.0.3

  • Significantly improved the extension’s performance.

DigiCert SSL 1.9.4

  • The extension now shows correct statuses of the organization validation steps. (EXTPLESK-2343)

Sectigo SSL 1.0.1

  • Minor internal improvements.

Amazon S3 Backup 1.4.3

  • After configuring the Amazon S3 Backup extension via the CLI, it is no longer shown as not configured in the Plesk interface. (PPPM-13332)

SSL It! 1.7.6

  • Temporarily disabled the session resumption option. (EXTSSLIT-1351)
  • If a domain is without hosting and the mail service is disabled, the extension interface now shows the link to configure the mail settings to secure webmail with a certificate. (EXTSSLIT-1232)

DigitalOcean DNS 1.2.2

  • DNS records of Plesk domains can now be resynced with DigitalOcean DNS.
  • Significantly improved the extension’s performance.
  • The DigitalOcean DNS extension now shows a warning if some DNS records were not synced. (EXTPLESK-1852)

Sectigo SSL 1.0.0

  • Initial release. The extension gives the ability to buy SSL/TLS certificates from Sectigo in the SSL It! extension. At the moment, the following certificates are available for purchase:

    • PositiveSSL (DV certificate)
    • PositiveSSL Wildcard (wildcard DV certificate)

PHP Updates

  • Updated PHP 8.0 to version 8.0.1.
  • Updated PHP 7.4 to version 7.4.14.
  • Updated PHP 7.3 to version 7.3.26.

Linux

  • Updated Xdebug to version 3.0.2.

Plesk Migrator 2.20.2

  • Improved processing of encrypted data in backups.
  • Plesk Migrator no longer tries to migrate content of disabled mail accounts. (PMT-4756)
  • Plesk Migrator no longer tries to migrate hidden Plesk extensions. (PMT-4790)
  • Customers’ and resellers’ login names that contain digits are now shown in the Plesk Migrator interface. (PMT-4791)
  • Improved mail migration stability. (PMT-4865)

Linux

  • Plesk Migrator can now migrate databases whose tables have the ROW_FORMAT=FIXED option. (PMT-4814)
  • Migration no longer fails when the HTTPD_VHOSTS_D variable contains capital letters. (PMT-4863)

Windows

  • ODBC DSN connections are no longer false positively marked as “failed” after migration. (PMT-4824)

Advisor 1.8.3

  • The extension now suggests NTP time synchronization only on those OSes that support it. (EXTADVISOR-858)

WordPress Toolkit 5.2.4

  • WordPress Toolkit no longer adds WP_AUTO_UPDATE_CORE constant to wp-config.php file right after scanning process adds a WordPress installation. This constant will be added only after site admin has explicitly modified WordPress autoupdate settings.
  • WordPress Toolkit no longer adds irrelevant comment to WP_AUTO_UPDATE_CORE constant if it’s added to wp-config.php file. (EXTWPTOOLK-6060)
  • Notifications about quarantined WordPress sites are no longer sent for suspended or disabled domains. (EXTWPTOOLK-5398)
  • Customized login URLs can now be properly opened in case of certain plugins. (EXTWPTOOLK-5555)
  • Searching on the tabs Plugins or Themes will no longer affect displaying a list of sites. (EXTWPTOOLK-6112)
  • While searching the list of sites, the irrelevant message “You don’t have WordPress sites connected yet” will not be shown anymore if nothing was found. (EXTWPTOOLK-6111)

Advanced Monitoring 1.4.0

  • Introduced the new “Enable integration with the Cgroups Manager” feature available for Plesk installations where the Plesk Cgroups Manager license is installed.

    With this feature, Plesk users can see how much resources their subscriptions consume. The Plesk administrator, in turn, can see and compare load between multiple subscriptions (up to 10).

    The feature will be gradually turned on: first on Plesk servers that have fewer than 10 subscriptions. However, the Plesk administrator can turn on the feature for servers with a larger number of subscriptions by adding the following lines to the panel.ini file:

      [ext-monitoring]
      allowCgroupsManagerIntegration = true
    
  • It is now possible to specify the default time range for all graphs in Advanced Monitoring (Settings > Parameters).
  • Plesk UI “critical” notifications related to Advanced Monitoring now contain recommendations on how to fix the reported issues.
  • Clicking the “Check server health” button in Plesk UI “OK” notifications now leads to the correct Advanced Monitoring tab. (EXTPLESK-1990)

Plesk Obsidian 18.0.32 Update 2

  • Added the missing translations for certain UI messages. (PPP-51477)

Linux

  • Installation or update of Plesk Obsidian 18.0.32 and later no longer fails on CentOS 8.3. (PPPM-12582)
  • In Plesk Obsidian 18.0.32 and later, customers can now again manage per-site PHP performance and security settings of their subscriptions. (PPPM-12604)

Repair Kit 1.2.2

  • After the password of the Plesk database server was changed via the API, opening Tools & Settings > MySQL Process List (Beta) no longer shows an HTTP error 500. (EXTPLESK-1331)
  • The interface of “Diagnose & Repair” in “Tools & Settings” can now show check results that contain a large number of detected issues. (EXTPLESK-1707)
  • Sorting by columns now works in “MySQL Process List (Beta)” in “Tools & Settings”. (EXTPLESK-1702)
  • Improved the tooltip text shown for “Process List” in the left navigation pane. (EXTPLESK-1871)

Linux

  • “MySQL Process List (Beta)” in “Tools & Settings” now correctly calculates the total RAM usage. (EXTPLESK-1854)

Windows

  • If Plesk on Windows Server 2016 is opened with Internet Explorer 11, “MySQL Process List (Beta)” in “Tools & Settings” no longer shows an empty screen. (EXTPLESK-1657)

Grafana 1.2.0

  • Extended the Grafana extension API. The extension now provides the ability to do the following:

    • Describe organization entities.
    • Connect all previously implemented entities in the extension to user entities in Grafana.

    Any changes made to the entities via the Grafana extension will be synced with Grafana as software.

    Note: To enjoy new features of Advanced Monitoring version 1.4.0, which will be presented soon, you need to have the latest version of the Grafana extension.

  • Internal and performance improvements.
  • The extension no longer occasionally shows the “OAuthLogin” error instead of Grafana graphs. (EXTPLESK-1236)

Diskspace Usage Viewer 2.0.9

Linux

  • Tightened restrictions for deleting files from the Plesk system directories.

Docker 1.4.7

Linux

  • After the extension’s installation on CloudLinux 8, Red Hat Enterprise Linux 7, and Red Hat Enterprise Linux 8, the extension’s interface is now available. (EXTDOCKER-114)

Plesk Obsidian 18.0.32 Update 1

  • Databases of applications installed on additional domains are now again backed up. (PPPM-12593)
  • “Web Statistics SSL/TLS” and “Web Statistics” now work again for subscriptions with several domains. (PPPM-12594)

Linux

  • The plesk repair fs command now works again and does not fail reporting the issue with incorrect permissions in /var/log/plesk. (PPPM-12584)
  • In Plesk Obsidian 18.0.32 and later, ModSecurity enabled with any rule set and in any mode no longer occasionally hangs if Plesk was accessed via https://<server-IP-or-hostname>. (PPPM-12591)
  • In Plesk Obsidian 18.0.32 and later, switching to ModSecurity3 on nginx no longer shows false positive results when domains are actually incompatible with nginx settings and the web server configuration files can be broken. (PPP-51432)
  • In Plesk Obsidian 18.0.32 and later, Apache configuration can no longer cause the webAppFirewallSettings variable error being shown in the Plesk interface. (PPPM-12586)

Domain Connect 1.4.1

  • Security improvements.

Plesk Obsidian 18.0.31 Update 3

Linux

  • Issued REST API secret keys now work again in Plesk Obsidian 18.0.31 and later. (PPPM-12569)
  • Installation or update of Plesk Obsidian 18.0.31 no longer fails in non-interactive mode if the server OS is CentOS 8.2 or 8.3. (PPPM-12582)

WordPress Toolkit 5.2.3

  • Security improvements.

Advanced Monitoring 1.3.2

  • Internal improvements.

Let’s Encrypt 2.12.4

  • The extension can now automatically issue SSL/TLS certificates only for those domains that Plesk verified to be resolvable. Users will no longer see an error from Let’s Encrypt occurred when the extension failed to secure non-resolvable domains.

    This improvement will be gradually turned on by default for all Plesk Obsidian installations.

    Note: For this feature to work, add the following lines to the panel.ini file:

    [dns]
    enableResolveChecking = true
    

SSL It! 1.7.5

  • The extension can now automatically issue Let’s Encrypt SSL/TLS certificates only for those domains that Plesk verified to be resolvable. Users will no longer see an error from Let’s Encrypt that occurred when the extension failed to secure non-resolvable domains.

    This improvement will be gradually turned on by default for all Plesk Obsidian installations.

    Note: For this feature to work, add the following lines to the panel.ini file:

    [dns]
    enableResolveChecking = true
    

Plesk Obsidian 18.0.32

  • PHP 8.0 is now supported.

    Note: PHP 8 is still very recent (it came out on November 26) and includes significant changes, including the removal of deprecated functions and changes to how code works.

    Because of this, many PHP applications that were written for PHP 5 and PHP 7 may not work correctly with PHP 8. This includes WordPress, which will fix most (but not all) PHP 8 compatibility issues in version 5.6 that will be released on December 8.

    PHP 8 will not be included into the “Recommended” installation set and won’t be installed on new servers or when updating to Plesk Obsidian 18.0.32.

  • DNS Helper - a new feature meant to help users understand that their domain does not resolve to the server’s IP address and is inaccessible over the internet, and also to make it easier for them to make their domain resolve correctly. The feature will be rolled out to Plesk servers in waves. To enable it manually, add the following lines to the panel.ini file:

    [dns]
    enableResolveChecking = true
    showDnsHelper = true
    
  • Added a new CLI command plesk checkupgrade in both Plesk for Linux and Plesk for Windows. Running the command before updating Plesk checks for issues that may prevent the server from updating safely.
  • Added the support for ModSecurity 3 to nginx. ModSecurity 2.9 + Apache remains for now the recommended option. To switch to ModSecurity 3 + nginx, go to “Tools&Settings” > “Web Application firewall”.
    • Switching to ModSecurity 3 may hinder your existing applications. We strongly recommend trying ModSecurity 3 out on a test server before switching your production environment to that version.
    • At the moment you can only choose the OWASP ruleset in the Plesk UI for ModSecurity 3. You can download the Comodo ruleset and upload it to Plesk as a custom ruleset. We plan to make it possible to enable the Comodo ruleset for ModSecurity 3 directly from the Plesk UI in Plesk Obsidian 18.0.33.
    • You can disable switching to ModSecurity 3 by adding the following lines to the panel.ini file:

      [modSecurity] webServer.nginx = Off

  • This version introduces a guided onboarding workflow to help new users create their first website right after the new server initialization stage. Users can choose to start with a WordPress website, a PHP application, or a static HTML/CSS website. They can upload a website they already have or choose a sample website provided with Plesk. To disable this function, add the following lines to the panel.ini file:

    [ext-onboarding]
    enabled = 0
    
  • As of Plesk Obsidian 18.0.32, Internet Explorer 11 support has been deprecated and will be removed in Plesk Obsidian 18.0.33. Learn more.
  • Red Hat Enterprise Linux 6 has entered the vendor end of support phase. Plesk Obsidian 18.0.32 is the last Plesk Obsidian version that supports that OS. Learn more.
  • The File Sharing and Bandwidth Limiting (mod_bw) component has been removed. Learn more.
  • The UX of renaming websites in Plesk has been improved.
  • A publicly resolvable temporary domain name can now be chosen during a website’s creation. The temporary domain name allows you to start working on a new project even if you have no registered domain name. The feature will be rolled out to Plesk servers in waves. To enable it manually, add the following lines to the panel.ini file:

    [techDomain]
    subdomain.enabled = true
    
  • The <your_domain> option is no longer marked as recommended in domains’ hosting settings because selecting it can result in an infinite redirection loop under specific conditions. (PPP-50944)
  • Cloning a database from a local MySQL server to an external one no longer fails if a database with the same name as the one chosen for the cloned database exists on the local database server. (PPPM-12499)
  • When creating a mail account, the “Password” and “Confirm password” fields are now correctly marked as required. (PPPM-12515)
  • Updating a MySQL database user’s password via XML-RPC no longer returns a malformed response if the specified password does not meet the requirements of the server password strength policy. (PPPM-12393)
  • Updating a subscription’s system user password via XML-RPC now correctly updates the password used to access web statistics for that subscription to the same value. (PPPM-12463)
  • Running the plesk bin domain -i command for a domain now correctly shows the log rotation status (on or off) for that domain. (PPPM-12544)
  • Full backups are no longer created instead of incremental ones when backing up a subscription with an APS application installed if that application’s database is owned by a different subscription. (PPPM-12537)
  • When viewing logs for a subscription, entries from custom logs added via “Logs” > “Manage Log Files” > “Add Custom Log” are no longer incorrectly filtered out. (PPPM-12554)
  • Usable error message is now shown if the MySQL writer process is terminated during database cloning. (PPPM-12450)
  • Restoring a subscription with the “Drupal-8.9.5-171” APS application installed from a backup no longer results in an error. (PPPM-12477)
  • After renaming a PHP handler via the plesk bin php_handler command, the custom name is now shown in Plesk instead of the original name. (PPPM-12556)
  • Restoring a backup created on a Plesk server with a large (1000+) number of customers and/or subscriptions no longer fails with the “The specified backup file is corrupted, modified, created on another server or in an earlier Plesk version” error. (PPPM-12461)

Linux

  • Creating a domain for a subscription while simultaneously changing PHP settings for an existing domain belonging to the same subscription no longer results in both processes hanging endlessly. (PPPM-12447)
  • When creating a subscription on a Plesk Obsidian server that was updated from an earlier Plesk version, the value of the “Restrict following symbolic links” parameter is now correctly passed from the service plan to the subscription. (PPPM-12532)
  • Plesk no longer specifies excessively large smtpd_proxy_timeout and smtpd_timeout values in Postfix configuration files during Plesk installation or whenever the plesk repair mail command is run. (PPPM-12236)
  • Running the plesk repair mail -y command for a domain no longer removes Postfix SSL configuration for that domain’s aliases. (PPPM-12103)
  • Opening “PHP Settings” for a domain no longer results in the “ERROR: Method Smb_Form_Final_Web_PhpSettings::__toString() must not throw an exception” error under specific circumstances. (PPPM-12456)
  • Firewall rules can now be managed via the “Firewall” extension on Plesk Obsidian servers running in VZ containers created from the ubuntu-20.04-x86_64 OS template. (PPPM-12390)
  • On Debian 10 servers with the “msmtp” component installed, sending mail via an external SMTP server no longer results in an error. (PPPM-12540)
  • On Debian 10 servers with the “msmtp” component installed, sending mail via an external SMTP server is now correctly logged to the mail.log file. (PPPM-12540)
  • On Plesk servers with Courier IMAP installed, all incoming emails are no longer duplicated for mail accounts that were disabled and then re-enabled. (PPPM-12530)
  • Plesk now correctly reports CPU and memory usage for the MySQL (MariaDB) service. (PPP-50838)
  • The sw-cp-server service no longer fails to reload or restart under specific circumstances. (PPPM-12525)
  • On Plesk servers with the “Plesk Web Server Configuration Troubleshooter” component installed, running the plesk repair web -n command no longer results in the misleading “Problem with nginx default limit for open files is possible” error. (PPPM-12453)
  • SDK and internal Plesk utilities no longer treat directories with special bits as files instead of directories. (PPPM-12573)
  • On Plesk servers with the “Fix incorrectly set sender for outgoing mail” option enabled in “Tools & Settings” > “Mail Server settings” and outgoing mail control enabled and set to unlimited, sending mail no longer results in the “Error during ‘limit-out’ handler handlers_stderr: ERROR:main:list index out of range” error being written to the mail log. (PPPM-12448)
  • It is no longer necessary to reload the page after Plesk initialization to log in if the WebSocket service is stopped on the server. (PPPM-12377)
  • Autoresponder now sends replies correctly to messages with national characters in the mail header. (PPPM-11553)
  • The “Tools&Settings” > “Services Management” page no longer becomes unresponsive for a long time when starting or stopping certain services (for example, nginx). (PPPM-12252)
  • Plesk Installer logs are now rotated correctly if the /root/.autoinstallerrc file contains the line ‘SEPARATE_LOGS=”yes”’. (PPP-47902)
  • Changing an IP address on a Plesk server no longer causes issues with sending mail if the old IP address was selected in “Tools&Settings” > “Mail Server” > “Outgoing mail mode” > “Send from the specified IP addresses”. (PPPM-12466)

Windows

  • Security improvements.
  • Plesk no longer assigns the system privilege “Replace a process level token” to IIS users created by Plesk. We believe this to be a more secure configuration, despite it being recommended by Microsoft.
  • Plesk also explicitly removes the privilege “Impersonate a client after authentication” from IIS_IUSRS group. We believe this to be a more secure configuration, despite it being recommended by Microsoft.
  • On Plesk servers with SmarterMail version 100.0.7593 or later installed, creating a backup including one or more subscriptions with mailboxes no longer fails with the “Unable to back up mail messages. Error: Failed to list mail messages” error. (PPPM-12454)
  • Creating scheduled backups in FTP storage no longer intermittently fails with the “Unable to validate the remote backup. It may not be restored.” error. (PPPM-12482)
  • Runnig the repair fs -y command using the name of an add-on domain as the argument now shows a recommendation to use the name of its parent domain instead. (PPPM-12505)
  • During the cloning procedure, the MySQL root user password is now correctly changed. (PPPM-12320)
  • Changing ASP.NET settings for a domain no longer results in the “assemblies” node in the domain’s web.config file getting removed. (PPPM-12561)
  • Changing ASP.NET settings for a domain no longer results in the “authentication” node in the domain’s web.config file getting duplicated.(PPPM-12568)
  • Changed ASP.NET settings for a domain no longer reset to the default value the “configuration” element in the domain’s web.config file has the “xmlns” attribute. (PPPM-12555)
  • Folders named “tmp” can now be created, copied, moved, or deleted in File Manager. (PPPM-12443)
  • Plesk migration no longer gets stuck for a long time on the “Fetch configuration data from Plesk servers” step. (PPPM-12552)
  • Running plesk repair ftp on a server behind NAT no longer results in an unnecessary warning. (PPPM-12520)

Third-Party Component Updates

Linux

  • Updated PHP used by sw-engine to version 7.3.25.
  • Updated ionCube loader for PHP 7.2, 7.3, 7.4, and also for PHP used by Plesk to version 10.4.5.

Windows

  • ASP.NET Core 5.0 is now supported.
  • Updated ASP.NET Core 3.1 to version 3.1.10.
  • Updated ASP.NET Core 2.1 to version 2.1.23.
  • Updated PHP used by plesk-engine to version 7.4.13.
  • Updated MariaDB 10.5 to version 10.5.8.
  • Updated MariaDB 10.3 to version 10.3.27.
  • Updated Node.js 12 to version 12.19.1.
  • Updated Git to version 2.29.2.2.

Google PageSpeed Insights 2.1.6

  • Improved statistics handling to avoid too many log entries.
  • Updated the cacert.pem file to the latest version provided by Mozilla.
  • Fixed handling of the response from the new API version in the scheduled task.

WordPress Toolkit 5.2.2

  • Log In link on domain overview page in Active List now works properly. (EXTWPTOOLK-6049)

Plesk Obsidian 18.0.30 Update 4

  • Security improvements.

WordPress Toolkit 5.2.1

  • Website screenshots no longer have to be regenerated after the update to WPT 5.2. (EXTWPTOOLK-6048)

SSL It! 1.7.4

  • Accessing the SSL It! page for a domain no longer results in a 500 error if the product that was used to secure the domain has since been disabled in the SSL It! product list. (EXTSSLIT-1287)

Plesk Obsidian 18.0.31 Update 2

  • Security improvements.
  • Creating a mail account as a customer when the “All subscriptions” option is selected in the subscription selection menu no longer fails with the “The specified limit is invalid” error. (PPP-50987, PPP-51161)

WordPress Toolkit 5.2.0

  • Resellers now have their own plugin and theme sets.
  • It is now possible to choose which theme should be activated upon the installation of a set. This functionality is available both in UI and CLI. As a bonus, similar functionality is now also available for plugins in sets.
  • Users will now see a visual indication next to “Check Updates” link if there’s a Smart Update test run that was completed and is now waiting for user review.
  • WordPress Toolkit now fully supports plugins and themes with underscore symbol in their name. Users of js_composer plugin, rejoice!
  • CentOS 8 support was added.
  • CloudLinux 8 support was added.
  • Rules added by WordPress Toolkit to web server config files now have short descriptions explaining what they do.
  • (cPanel) A simple dashboard that lists all WordPress Toolkit Deluxe accounts was added. This dashboard can be opened from the “Settings” screen.
  • WordPress site management interface is now expanded by default after a site is installed or cloned.
  • (cPanel) Multiple performance improvements.
  • Checkbox for selecting all sites in the list no longer looks always selected if WordPress Toolkit license is not available. (EXTWPTOOLK-5654)
  • Ugly placeholder is no longer displayed in place of WordPress site title if the site was installed with empty “Website title” field. Now users will see a better-looking placeholder! (EXTWPTOOLK-5793)
  • “Autoupdate settings” screen no longer works in a weird way if there is more than one site in the list. (EXTWPTOOLK-5983)
  • Backup task no longer blows up the interface if current disk space quota is not enough to finish the backup. (EXTWPTOOLK-5784)
  • Smart Updates had their optimism reduced and no longer provide false negative prognosis under certain circumstances. (EXTWPTOOLK-6024)
  • Smart Updates no longer confuse what exactly needs to be updated during mass updates if “Updates” screen was refreshed after item selection. (EXTWPTOOLK-5761)
  • Unclear error sometimes shown during a failed installation of a WordPress site finally became a pretty clear error after all. (EXTWPTOOLK-5133)
  • (cPanel) WordPress Toolkit now properly uses session locale settings, displaying the interface in the expected language. (EXTWPTOOLK-5818)
  • (cPanel) Renaming user account via “Rename prefixed databases and database users” option now properly updates database prefix of WordPress sites installed in subdirectories. (EXTWPTOOLK-5632)
  • (cPanel) WordPress Toolkit Deluxe is no longer incorrectly disabled in the default feature list during WordPress Toolkit update, if it was enabled before. (EXTWPTOOLK-5893)
  • (cPanel) It is now possible to create a new domain in cPanel with WordPress Toolkit on CloudLinux 7 if there are more than, uhh, 1280 domains on the server. (EXTWPTOOLK-5989)
  • (cPanel) Site administrator email is now generated using parent domain name during WordPress installation on a wildcard domain via CLI. (EXTWPTOOLK-5618)
  • (cPanel) Server administrators will no longer be annoyed by the “no packages marked for update” email message on a daily basis. (EXTWPTOOLK-6009)
  • (cPanel) WordPress Toolkit now can be installed if tty is required in /etc/sudoers defaults. (EXTWPTOOLK-5876)
  • (Plesk) Infinite redirection no longer occurs when opening website if preferred domain was changed after WordPress installation. (EXTWPTOOLK-478)

PHP Updates

  • Updated PHP 7.4 to version 7.4.13.
  • Updated PHP 7.3 to version 7.3.25.

Linux

  • Updated Xdebug to version 3.0.0 for PHP 7.4, 7.3, and 7.2.
  • Updated Archive_Tar to version 1.4.11 for PHP 7.4, 7.3, and 7.2.
  • Updated ioncube loaders to version 10.4.5 for PHP 7.4, 7.3, and 7.2.
  • Updated Redis to version 5.3.2 for PHP 7.2.

DigiCert SSL 1.9.3

  • Customers can now choose methods of domain control validation (DCV).
  • Customers now receive more detailed information about DigiCert organization validation process.
  • Customers now see a suggestion to turn off a 301 redirect from HTTP to HTTPS to pass DCV while a certificate is being issued.

Let’s Encrypt 2.12.3

  • The extension no longer sends repetitive email notifications about usage of the deprecated API protocol. (EXTLETSENC-945, EXTLETSENC-946)

SSL It! 1.7.3

  • The extension no longer sends repetitive email notifications about usage of the deprecated API protocol. (EXTSSLIT-1263)
  • The extension can no longer incorrectly treat DigiCert Wildcard OV certificates as DV ones. (EXTSSLIT-1173)

Diskspace Usage Viewer 2.0.8

Linux

  • The extension now calculates the block size instead of the apparent size. (EXTCERT-3206).

Node.js 1.4.0

  • Removed a non-existent Plesk class from the extension. The extension is no longer occasionally broken with the “Class ‘CommonPanel_Validate_FileSharing_FolderName’ not found” error. (EXTNODEJS-128)

My Start Page 1.1.1

  • The absolute URL is now used for redirect to avoid redirect errors.

Plesk Obsidian 18.0.30 Update 3

  • Security improvements.

Git 1.2.0

  • Security improvement.

Plesk Obsidian 18.0.31 Update 1

  • Security improvements.
  • Updates of WordPress Toolkit installations in Plesk Obsidian 18.0.31 no longer cause the “ArgumentCountError: Too few arguments to function CommonPanel_Aps_Model::logAction()” errors in the Plesk log. (PPP-50964)

WordPress Toolkit 5.1.1

  • WordPress sites installed via APS no longer experience errors during the update. (EXTWPTOOLK-5903)

DigiCert SSL 1.9.2

  • Internal improvements.

Site Import 1.4.6

  • Mail migration from Yahoo servers no longer fails. (PMT-4860)

PHP Updates

  • Updated PHP 7.4 to version 7.4.12.
  • Updated PHP 7.3 to version 7.3.24.

Linux

  • Updated Redis to version 5.3.2 for PHP 7.3, 7.4.

WordPress Toolkit 5.1.0

  • Product changelog is now accessible through the WordPress Toolkit Settings window.
  • Service plans now have the option to limit the number of backups allowed for each WordPress site.
  • Website autoupdate tasks will no longer be accidentally skipped in certain rare cases. (EXTWPTOOLK-5825)
  • Popup window about automatic updates on the installation drawer was visited by Captain Obvious, so it can now be closed by the X (Close) button. (EXTWPTOOLK-5783)
  • Backup creation date is now shown with a proper timezone. (EXTWPTOOLK-5777)
  • Backup creation date is no longer displayed as one month in the past under certain circumstances. (EXTWPTOOLK-5776)
  • When Update Settings window is closed, Available Updates window no longer opens if it wasn’t opened before. (EXTWPTOOLK-5673)
  • Smart Updates are no longer confused about what to update in certain cases when previous Smart Update run has detected issues, but update was not applied. (EXTWPTOOLK-5129)
  • WordPress sites on a subscription are no longer displayed as broken if access permissions of wordpress-backups directory are set to 000. On a side note, why would somebody do this?! (EXTWPTOOLK-5739)
  • Sites connected via remote plugin no longer become broken after debug is enabled. (EXTWPTOOLK-5716)
  • Purchase prompts in WordPress Toolkit Lite no longer lead users to 404 Not Found page. (EXTWPTOOLK-5682)
  • WordPress Toolkit data should now be properly restored or migrated by Plesk Migrator without the embarassing Unable to restore Plesk extension ‘wp-toolkit’ for subscription error. (EXTWPTOOLK-5142)
  • It is now possible to install a manually uploaded plugin or theme if the archive size is more than 12288 kB. (EXTWPTOOLK-5122)
  • Login to WordPress as admin now works after migrating WordPress site to Plesk. (EXTWPTOOLK-1581)

Plesk Migrator 2.20.1

  • Migration from DirectAdmin no longer occasionally fails to be started. (PMT-4848)
  • Migration from cPanel to Plesk on CentOS 8 now preserves group and other permissions. (PMT-4840)
  • Migration to a remote Microsoft SQL server no longer fails with the “AttributeError: ‘NoneType” error. (PMT-4852)
  • Improved the interface error reporting when config.ini does not contain mandatory parameters. (PMT-4856, PMT-4857)

Plesk Mobile Center 1.3.0

Install the latest version of the Plesk Mobile application in Apple Store and Google Play.

  • Added iOS 14 support.
  • Added Android 11 support.
  • Added FaceID support.
  • Domains can now be sorted by name.
  • Push notifications are now enabled by default.

Plesk Obsidian 18.0.31

  • A custom TTL value can now be configured for individual DNS records.
  • The “X-Powered-By” header can now be removed from pages served by Plesk servers by adding the following lines to the panel.ini file:

    [webserver]
    xPoweredByHeader = off
        
    and then rebuilding the web server configuration. Go to "Tools & Settings" > "Diagnose & Repair" (under "Assistance and Troubleshooting") and click the "Repair" button corresponding to "Web & FTP Servers".
    
  • Mailman links are now served via HTTPS.
  • Added the option to validate newly created backups via the checksum to the Dropbox Backup and Amazon S3 Backup extensions.
  • Sending a request to a Plesk Obsidian server using an XML-RPC API protocol version earlier than 1.6.9.1 (latest) now results in a warning being logged to the panel.log file. Note: we do not recommend using XML-RPC API protocol versions earlier than 1.6.9.1 with Plesk Obsidian.
  • Security improvements. (PPPM-12231)
  • A custom domain name for mail autodiscover can now be specified via the plesk bin mailserver --set-mail-autodiscover-domain-name <domain name> reconfigure-dns true CLI command. The command works for both new and existing domains. (PPPM-12370)
  • Removing a subscription with WordPress installed as an APS app no longer results in misleading errors in the Plesk interface and the panel.log file. (PPP-50310)
  • It is no longer possible to create mail accounts without a password by clearing the “Access to the Customer Panel” checkbox during mail account creation. (PPPM-8076)
  • Mailbox quota for domains based on a service plan with mailbox quota specified is no longer set to “unlimited” in the Plesk database. (PPPM-12417)
  • Specifying an external email address and an internal email address for a customer no longer results in the internal email address being shown as the customer’s email address to the Plesk administrator. (PPPM-12433)
  • Plesk Premium Antivirus no longer fails to start on Plesk servers that have no Plesk Premium Antivirus license key, have TLSv1 disabled for sw-cp-server, have IPv6 disabled, and do not have the /etc/sw-cp-server/conf.d/ipv6_ports.inc file on the file system.(PPPM-12368)

Linux

  • CloudLinux 8 is now partially supported. Some of the features may not yet work properly. The choice of PHP selector and the CageFS mode are not currently supported.
  • Sending an email from a “*@gmail.com” mail address to a mailbox in Plesk no longer results in SPF handler failure if the domain in Plesk has IPv6 configured and the Plesk server has “include:spf.antispamcloud.com” SPF local rule configured. (PPPM-12075)
  • Re-reading IP addresses on the server no longer results in the same IP address being displayed twice (with and without the “Main IP address” flag in Plesk under specific circumstances. (PPPM-11484)
  • The plesk sbin statistics utility now reports directories’ stat type as well as size when run with the “-v” option. (PPP-50555)
  • Setting “Outgoing mail mode” to “Send from the specified IP addresses” and then to “Send from domain IP addresses” or “Send from domain IP addresses and use domain names in SMTP greeting” in “Tools & Settings” > “Mail Server Settings” no longer results in multiple issues with mail in Plesk due to the Plesk database getting corrupted. (PPPM-12375)
  • Running the plesk bin repair --db command after updating to Plesk Obsidian 18.0.30 no longer results in a misleading error message. (PPPM-12392)
  • The DMARC handler now logs specific details about DMARC failures to /var/log/maillog. (PPP-50754)
  • The DMARC handler no longer fails when processing mail with one or more double quotation mark (“) characters in the sender mail address. (PPPM-12331)
  • Moving the main domain of a subscription to a different subscription now sets the correct ownership of the domain’s document root directory. (PPPM-12251)
  • Running the plesk repair fs command on a Debian-based OS with rpm installed no longer results in an error. (PPPM-12274)
  • Sending an email from a mail account with auto-reply enabled to itself no longer results in the account sending an auto-reply message to itself. (PPPM-12343)
  • Plesk now correctly detects Lenovo cloud as as KVM virtualization allowing for the use of VPS license keys. (PPPM-12420)
  • Browsing websites hosted on Plesk servers with nginx installed and enabled no longer sometimes opens the Plesk login page instead. (PPP-50362)
  • Plesk now validates custom nginx configuration before applying it. It is no longer possible to misconfigure nginx in a way that is impossible to undo via the Plesk interface. (PPPM-12101)
  • Running the plesk repair dns command with umask set to “077” no longer breaks the permissions for named configuration files and all zones by setting incorrect permissions on them. (PPPM-12437)
  • Sending an email from a mailbox associated with domain A to a mailbox associated with domain B that is hosted in Plesk with “Fix incorrectly set sender for outgoing mail” enabled in “Tools & Settings” > “Mail Server Settings” and forwards mail to a mailbox associated with domain C no longer changes the “From” header as if the email originated from domain B and not domain A. (PPPM-12293)
  • Running CLI commands managing the Fail2Ban utility on a Plesk server with inconsistent package system no longer results in a misleading error message. (PPPM-12079)
  • Disabling chrooted shell for a system user now correctly results in the /etc/passwd and /etc/group files being deleted. (PPPM-10750,PPPM-10149)
  • Improved the nginx cache size validation. (PPPM-12428)

Windows

  • The plesk repair installation command is now available in Plesk Obsidian for Windows.
  • The path to the ASP.NET dynamic compilation temporary file storage location can now be specified on the “Websites & Domains” > “ASP.NET Settings” page. By default the path is set to “%plesk_vhosts%<domain name>\tmp”.
  • Updated PHP used by plesk-engine to version 7.4.11.
  • Adding an IP address without a subnet mask or with the /32 mask in “DNS Settings” > “Zone Transfers” for a domain no longer results in all DNS records for the domain being silently removed from the Microsoft DNS Server. (PPPM-12373)
  • ModSecurity is now updated correctly during Plesk update. (PPPM-11793)
  • Updating a Plesk Onyx server with a custom logo uploaded to Plesk Obsidian no longer results in the “{body}” tag being shown on the bottom of the login page. (PPPM-12412)
  • Plesk now puts the tag in its proper place in the `web.config` file. (PPPM-11031)
  • phpMyAdmin no longer hangs on LOCK TABLES statements on Plesk servers with MySQL 5.7 installed under specific circumstances. (PPPM-10413)
  • Database migration no longer fails on Plesk servers with a secondary MySQL server installed on localhost as default using a different port. (PPPM-12435)

Third-Party Component Updates

  • Updated phpMyAdmin to version 5.0.3.

Linux

  • Updated Phusion Passenger to version 6.0.6.

Windows

  • Updated ModSecurity to version 2.9.3.
  • Updated MariaDB 10.5 to version 10.5.6.
  • Updated MariaDB 10.3 to version 10.3.25.
  • Updated Node.js 12 to versions 12.18.4.
  • Updated Node.js 10 to versions 10.22.1.

SSL It! 1.7.2

  • The “Keep secured” feature enabled for the www subdomain (www.example.com) now actually secures the subdomain and the message shown next to it informs that a valid certificate will be later automatically issued and installed. (EXTSSLIT-1222)
  • Improved detection of the website security status shown in Websites & Domains. The status now reflects the fact that the www subdomain can be or can be not secured depending on the actual configuration (enabled “Keep secured”, “HSTS”, and so on). (EXTSSLIT-1192)

SSL It! 1.7.1

  • After a certificate purchase in Plesk Online Store, the certificate order is now automatically reloaded in SSL It!.
  • If the DigiCert SSL extension is installed, the SSL It! extension can now be installed without any errors. (EXTSSLIT-1211)
  • SSL It! now generates the list of the recommended extensions dynamically based on the extensions actually available in the Extensions Catalog. If SSL It! cannot show any recommended extensions (for example, they are blocked), SSL It! will show the corresponding message. (EXTSSLIT-1205)
  • Improved an error message shown when the “Keep Plesk secured” feature ran earlier than Plesk was initialized. (EXTSSLIT-1209)

Let’s Encrypt 2.12.2

  • Translated the Let’s Encrypt description shown in the SSL It! extension. (EXTLETSENC-932)

DigiCert SSL 1.9.1

  • SSL/TLS certificates from DigiCert issued for a domain (for example, example.com) now also secure the www subdomain (www.example.com) automatically.
  • The extension no longer supports the legacy DigiCert API. To issue SSL/TLS certificates from DigiCert, users need to install the SSL It! extension.
  • Translated the DigiCert description shown in the SSL It! extension. (EXTPLESK-2094)
  • SSL/TLS certificates from DigiCert do not support SAN. Fixed the incorrect description that said otherwise. (EXTPLESK-2047)

Plesk Migrator 2.20.0

  • External IDs of customers, resellers, and subscriptions can now be migrated in the extension’s interface. Previously, it was possible to migrate external IDs only via the CLI.
  • It is now possible to install the extension in Plesk on CloudLinux that has LVE Manager installed. (PMT-3777, PMT-4832)
  • Migration of WordPress applications from Plesk 12.5 to Plesk Obsidian no longer fails with the “Element ‘wordpress-instance’: This element is not expected.” error. (PMT-4712)
  • If the source DirectAdmin server has MySQL 5.7 or later, the extension now migrates database users without any errors. (PMT-4746)
  • Mail migration from DirectAdmin now works for accounts not owned by the administrator. (PMT-4816)
  • Migration of Microsoft SQL 2019 databases no longer fails with the “Access is denied” error. (PMT-4817)
  • Email messages migrated twice are no longer displayed as source code. (PMT-4820)
  • In Plesk for Windows, permissions of FTP users are now completely migrated. (PMT-4821)

SSL It! 1.7.0

  • Added the “Keep Secured” feature for Plesk (Tools & Settings > SSL/TLS Certificates (under “Security”)). The feature is enabled by default and automatically secures Plesk with an SSL/TLS certificate from Let’s Encrypt.
  • Users that purchased SSL/TLS certificates are now automatically redirected from Plesk Online Store back to the SSL It! page.
  • Added the ability to cherry pick the exact components (mail, webmail, and/or the “www” subdomain) for which users can enable “Keep Secured”.
  • If a website is not secured with a valid SSL/TLS, Plesk UI notifications inform the website owner about it and suggest securing the website with a valid certificate on the SSL It! page.

Repair Kit 1.2.1

  • Introduced timeouts for the plesk repair operations. If an operation takes longer than expected, the extension’s interface is unlocked and ready for new tasks. This improvement solves the issue when the extension’s interface hung because of a failed operation.

    By default, the extension has preconfigured timeout values. They are specified by the aspectTimeout settings in panel.ini, for example:

    [ext-repair-kit]
    aspectTimeoutMail = 30 minutes
    
  • The “MySQL Process List (Beta)” button in Tools & Settings > Process List (under “Assistance and Troubleshooting”) now opens the MySQL process list instead of showing the “Request failed with status code 500” error. (EXTPLESK-2075)
  • If the extension does not work because the /var/log/plesk directory has the incorrect permissions, the extension now shows a clear error message, which may help users to fix the issue. (EXTPLESK-2082)
  • The extension now correctly runs the plesk repair utility with custom parameters instead of showing the “t.map is not a function” error. (EXTPLESK-1298)
  • The extension now shows the overall CPU usage correctly. (EXTPLESK-2076)

Let’s Encrypt 2.12.1

  • The Let’s Encrypt extension installed without the SSL It! extension cannot automatically renew SSL/TLS certificates that secure mail. The extension now shows the corresponding message and suggests installing SSL It!. (EXTLETSENC-884)

Extension Catalog 1.13.3

  • Minor internal improvements.

PHP Updates

  • Updated PHP 7.4 to version 7.4.11.
  • Updated PHP 7.3 to version 7.3.23.
  • Updated PHP 7.2 to version 7.2.34.

Extension Catalog 1.13.1

  • If the Extensions Catalog does not show prices for certain items for any reason, users will be redirected to Plesk Online Store to buy these items.

PHP Composer 1.1.2

  • Security improvements.

Plesk Obsidian 18.0.30 Update 2

  • After update to Plesk Obsidian 18.0.30, Plesk no longer stops Apache instead of restarting it on certain Debian and Ubuntu servers. (PPPM-12387)
  • After update to Plesk Obsidian 18.0.30 Update 1, scheduled backups no longer fail with the “The following files were not found or were corrupted” error if backed up add-on domains have DKIM enabled. (PPPM-12384)

WordPress Toolkit 5.0.0

  • Two words: interface update! No need to worry, though, as the new UI for managing WordPress sites is a logical evolution of the old UI based on newer technologies. Site administrators will find themselves in a fresh-yet-familiar interface with increased focus on site updates, better UX, improved performance and responsiveness.
  • WordPress Toolkit Lite experience (applicable for owners of Plesk Web Admin edition) has been redesigned to prettify it and make it more uniform across different screens.
  • The list of features available in WPT Lite was updated to make it more consistent and logical:
    • Management of Search Engine Indexing is now available for free in WPT Lite
    • Debugging management is now available for free in WPT Lite
    • Password Protection is now available for free in WPT Lite
    • Update settings for individual sites are now available for free in WPT Lite
    • Upload of plugins & themes in the plugins / themes management is now available for free in WPT Lite
    • Mass update operations (including modification of update settings for multiple sites at once) are now available only in the full (paid) version of WPT
  • Starting with version 5.0, WordPress Toolkit requires Plesk Obsidian to work. Existing WordPress Toolkit installations on Plesk Onyx 17.8 will continue to function, but will no longer receive feature updates. Critical security fixes for WordPress Toolkit on Plesk Onyx 17.8 will continue to be delivered until Plesk Onyx 17.8 reaches end-of-life. We strongly recommend updating to Plesk Obsidian for the best Plesk and WordPress Toolkit experience.
  • Branding of default maintenance mode template was updated. It now mentions being powered by WordPress Toolkit instead of Plesk.
  • Restoration of backup files no longer fails if they contain some files with read-only permissions. (EXTWPTOOLK-5561)
  • Websites are no longer getting stuck in maintenance mode under certain mysterious circumstances after being updated. (EXTWPTOOLK-5531)
  • Checkboxes are no longer missing on Security and Updates screens on Safari. (EXTWPTOOLK-5396)
  • Other checkboxes were not missing on Safari, but they were not aligned properly, so this was fixed as well. (EXTWPTOOLK-5367)
  • WordPres Toolkit now properly updates site URL when a WordPress site is hosted on a subdomain and the main domain is renamed. (EXTWPTOOLK-2268)
  • Smart Updates no longer compare shortcode values, avoiding certain false positives during the analysis. Shortcode names are still compared. (EXTWPTOOLK-4618)
  • Backup / Restore functionality is no longer displayed as available for sites connected via remote management plugin (because it was never actually available, mind you, not because we removed the feature). (EXTWPTOOLK-5446)
  • WordPress Toolkit now displays a helpful hint for Firefox users with enabled pop-up blockers trying to log in to WordPress via WPT. Unsurprisingly, the hint is: turn off pop-up blocker on this page if you want to log in to WordPress via WPT. (EXTWPTOOLK-5634)

Extension Catalog 1.13.0

  • The Plesk administrator and additional administrators can now purchase extensions without leaving the Extensions Catalog.
  • A purchased extension is now automatically installed and the extension’s license key is now automatically received.

Panel.ini Editor 3.2.3

  • Minor internal improvements.

Plesk Obsidian 18.0.30 Update 1

  • Fixed the note about SSL warnings on the Plesk login screen. (PPP-50397)

Windows

  • Plesk Onyx 17.8.11 that has add-on domains can now be upgraded to Plesk Obsidian 18.0.30 without any issues. (PPP-50357)

Let’s Encrypt 2.12.0

  • The extension now supports a new chain of trust based on ISRG Root. Before January 11, 2021, the old IdenTrust root remains the default one, while the new ISRG Root is an alternative one. After January 11, 2021, the extension will issue SSL/TLS certificates based on the new ISRG Root, while the old IdenTrust root will become an alternative one.

    To have the extension issue SSL/TLS certificates based on the alternative root (which is ISRG Root before January 11, 2021, and IdenTrust after this date), add the following lines to panel.ini:

    [ext-letsencrypt]
    use-alternate-root = true
    
  • Improved an error message shown when the “Keep secured” task fails if the email address of a domain owner is missing. (EXTLETSENC-887)

WordPress Toolkit 4.10.2

  • WordPress installations accessible via several domains with the same docroot can now be updated properly. (EXTWPTOOLK-5566)

Plesk Obsidian 18.0.30

  • The Plesk login page can now show a notification what hostname to use for logging in to avoid the warning about an untrusted connection. The notification is shown when a user logs in to Plesk using the server IP address, while the server is secured with a valid SSL/TLS certificate from Let’s Encrypt.
  • To enhance security, Plesk now generates a random prefix for a temporary server hostname.
  • Dropped support for the File Sharing feature. File Sharing is no longer available in Plesk Obsidian by default.
  • G Suite can now be set up with the Plesk DNS service because it is now possible to set an MX priority value to 1 in the Plesk interface.
  • Dynamic List view now shows a number of subdomains and domain aliases (if any) and a number of pages they occupy.
  • Increased the load speed of Dynamic List view.
  • Improved the look of the empty list of Plesk UI notifications.
  • If IP mapping to a public IP address is configured, plesk bin dns --reset no longer mistakenly resets DNS zones. (PPPM-12186)
  • Improved error reporting when UTF-8 characters are malformed (it may happen, for example, during backup restoration). (PPP-50033)
  • The statistics (Tools & Settings > Summary Report (under “Statistics”)) no longer contain obsolete mail redirect fields. (PPPM-12336)
  • A correct database is now shown on the left side of the screen in phpMyAdmin when one database user exists for multiple databases and the “User has access to all databases within the selected subscription” option is enabled. (PPPM-4734)
  • Backup creation no longer occasionally fails with the “Unable to create backups: Unable to create remote backup. Error: Unable to export backup: Transport error: unable to list directory: Curl error: (28)” error. (PPPM-12215)
  • A subdomain is no longer created with the mail account tab if the subdomain’s subscription belongs to the service plan that has the “Ability to change mail settings” option disabled. (PPPM-12314)
  • The server-wide certificates page (Tools & Settings > SSL/TLS Certificates (under “Security”)) no longer fails to be opened if the server has a large number of subdomains (more than 500) secured with SSL/TLS certificates. (PPPM-12350)
  • It is now possible to configure and use FTP storage on the vsftpd 3 servers. (PPPM-12277)
  • The plesk repair db utility can now fix the mail service records in the IpAddressesCollections table. (PPPM-4845)
  • Improved error reporting of Backup Manager. Backup Manager now considers content errors to be warnings and proceeds with backup restoration. (PPPM-12334)
  • Improved error reporting of Backup Manager. Backup Manager now sends the information about all occurred issues to the email address configured in the scheduled backup task. Failures to dump subscription databases are now regarded as important issues because they prevent subscriptions from being fully restored. (PPPM-12097)
  • Fixed the path to the Plesk favicon. Previously it could be occasionally incorrect. (PPP-49932)

Linux

  • Plesk now supports VERP-style email addresses. The corresponding setting (“Enable email subaddressing”) is enabled by default in Tools & Settings > Mail Server Settings (under “Mail”) on new Plesk Obsidian installations.
  • The plesk repair web -php-fpm-configuration command can now detect PHP-FPM misconfigurations and fix them by removing obsolete PHP-FPM configuration files.
  • To mitigate the Apache and nginx symlinks vulnerability, the “Restrict the ability to follow symbolic links” option is now enabled by default for new service plans and new custom subscriptions. Learn more about mitigating the symlinks vulnerability.
  • Made integration with phpMyAdmin more robust.

    Note: phpMyAdmin files are now located in /usr/local/psa/phpMyAdmin.

  • Updated sw-engine to version 2.30.1.
  • Updated sw-engine PHP to version 7.3.22.
  • Watchdog can now be activated on CentOS 8 in VZ containers.
  • Under specific circumstances, Plesk no longer fails to detect the main IP address on the server. (PPPM-11484)
  • If, in Restricted Mode Settings, Firewall (under “Tools & Resources”) is selected, while Extensions management (under “Extensions”) is not, going to Tools & Settings > Firewall no longer shows the “permission denied” error when Power User view and Restricted Mode are enabled. (PPPM-8847)
  • The dk_sign mail handler no longer throws segmentation faults if an email contains DKIM-Signature as the last header. (PPPM-12221)
  • Users can no longer lose access to phpMyAdmin via Plesk after updating to Plesk Obsidian or after Plesk Obsidian updates. (PPPM-11253)
  • AWStats TXT files are now completely removed after the corresponding TTL has expired. (PPPM-10655)
  • Plesk now detects and shows the warning if a new PostgreSQL database name and user name are the same. (PPPM-12224)
  • Auto-replies can now be delivered via a relay host to email addresses whose names contain non-ASCII characters. (PPPM-11553)
  • Made the “IP address ban period” field of Fail2Ban longer. The field now completely displays large values. (PPPM-12349)
  • Improved a confirmation message shown when plesk repair ftp can remove an orphaned system user. Additionally, plesk repair ftp no longer removes the user’s home directory. (PPPM-11058)
  • A domain alias can no longer point to a subdomain instead of the main domain. (PPP-49923)
  • It is no longer possible to create a subdomain with the webmail prefix (for example, webmail.example.com) if the main domain already has webmail enabled. (PPPM-12356)
  • If a domain’s access_ssl_log contains lines with the malformed URI sequence, the log browser no longer shows the blank page instead of the actual log. (PPPM-12345)
  • In Plesk on CentOS 8, a mailing list can now be restored from a backup. (PPPM-12347)
  • Fixed specific cases when a Plesk license for virtual machines could not be installed on KVM virtualization. (PPPM-12317)
  • After some domains were deleted from a server and PHP-FPM was reloaded, php-fpm.sock of some domains is no longer lost and the domains no longer become unavailable. (PPPM-12280)

Windows

  • Updated PHP used by Plesk to version 7.4.10.
  • Customers can no longer log in to mail using Horde IMP with an incorrect case password. (PPPM-8584)
  • An LDAP query no longer throws the “LDAP local: No Memory” error because libcurl was updated to version 7.71.1. (PPPM-10971)
  • A mail account can now be updated via the CLI without any issues after the limit of a subscription’s mailboxes was reached. (PPPM-11679)
  • It is now possible to switch to the latest version of SmarterMail without any issues. (PPPM-12295)
  • ModSecurity no longer conflicts with SmarterMail API: SmarterMail sites no longer contain ModSecurity modules. (PPPM-12296)
  • After Plesk 11.0 was upgraded to Plesk Obsidian, it is now possible to remove subscriptions. (PPPM-12177)
  • Fixed error reporting when the SMTP server refuses connection. (PPPM-12267)
  • Mail forwarding now works in SmarterMail. (PPPM-12246)
  • Plesk updates no longer change an installed myLittleAdmin additional license key to the default myLittleAdmin license. (PPPM-12244)
  • MySQL ODBC 3.51 DNS can now be configured with the required settings. (PPPM-12233)
  • The plesk bin repair --reconfigure-ftp-sites command can now fix anonymous FTP users. (PPP-46657)
  • Plesk now correctly logs issues when ODBC DSN resources are lost after backup import. (PPP-50196)

Third-Party Component Updates

Linux

Windows

  • ionCube Loader 10.4.1 is now shipped with PHP 7.4.
  • Updated BIND to version 9.16.6.
  • Updated ASP.NET Core 3.1 to version 3.1.8.
  • Updated ASP.NET Core 2.1 to version 2.1.22.
  • Updated MariaDB to version 10.5 (both for the Plesk database and for customers’ websites).
  • Updated libcurl to version 7.71.1.

DigiCert SSL 1.9.0

  • The DigiCert SSL extension now supports DigiCert APIv2.
  • The DigiCert SSL extension UI has been integrated with the SSL It! extension. From now on, please issue SSL/TLS certificates via SSL It! The DigiCert standalone UI can be used to finish orders placed via the legacy DigiCert API. The DigiCert standalone UI does not support DigiCert APIv2 and will be removed in the future.
  • By default, SSL It! only shows a small subset of all available SSL/TLS certificates. To see more certificates, go to “Extensions” > “My Extensions” > “SSL It!” and click “Configure”.
  • Ordering a secure site wildcard certificate from Symantec for a wildcard subdomain (for example, “*.example.com”) no longer fails. (EXTPLESK-1600)
  • Ordering a RapidSSL certificate no longer fails when the certificate’s owner country is set to “United Kingdom of Great Britain and Northern Ireland”. (EXTPLESK-1695)
  • Starting to order a certificate for a subscription and then renaming it before finishing the order will no longer result in failures. (EXTPLESK-1634)
  • Fixed several translation issues.

WordPress Toolkit 4.10.0

  • Site administrators can now back up and restore individual WordPress sites using the brand new ‘Back Up / Restore’ functionality exclusive to WordPress Toolkit. Site backup files are included in subscription backups by default, so site administrators can use Plesk Backup Manager functionality like scheduled backups or backing up to cloud for further processing. Note: this feature isn’t available on Plesk 17.8 Onyx for Windows.
  • Updated and improved multiple text messages shown in the product.
  • Security improvements.
  • Updating WordPress to version 5.5.1 does not trigger wp-cli errors anymore. (EXTWPTOOLK-5490)
  • Additional user accounts no longer blow up WordPress Toolkit (figuratively speaking), when accessing Plugins or Themes tabs. (EXTWPTOOLK-5219)
  • Server administrators now can access default plugin and theme sets on cloned Plesk installations. (EXTWPTOOLK-3132)
  • “Change default database table prefix” security measure does not fail anymore if database table has a period in its name. (EXTWPTOOLK-5376)
  • WordPress Toolkit no longer fails to remove one of several WordPress sites if another site under the same user account was broken in a quite specific way that we’d better not explain here for brevity’s sake. (EXTWPTOOLK-5486)
  • “Update Site URL” control now works properly in List view. (EXTWPTOOLK-5037)

SSL It! 1.6.0

  • In Plesk for Windows, domains with the “Forwarding” hosting type can now be secured via SSL It!.
  • The extension now supports the latest Mozilla preset in Plesk Obsidian. Also improved the UX and fixed a number of issues that the new preset can cause. (EXTSSLIT-541)

    Note: The “modern” preset is not supported on CentOS 8.

  • Added the new “Session resumption” settings: session_timeout and session_cache improve the security and also increase the load speed of a website by speeding up the TLS handshake.
  • Improved the SSL It! interface when the website status is “Security can be improved”. Now it should be easier for users to understand which settings to turn on to get the the “Safe and sound!” status.
  • The “Keep websites secured” feature no longer substitutes a custom email in an SSL/TLS certificate with one that belongs to the website owner. (EXTSSLIT-531)
  • Checkboxes are now again shown in the extension’s interface opened in Safari. (EXTSSLIT-1080)
  • If an issue occurred, the executed “Keep websites secured” task no longer substitutes the error message that explains the cause of the issue with an unrelated error message. (EXTSSLIT-1052)
  • The extension’s interface now works for a domain when the list of SSL/TLS certificates offered by SSL It! is empty and the domain has an alias. (EXTSSLIT-1047)
  • A subdomain secured with a wildcard SSL/TLS certificate is no longer wrongly shown as “Not secured” if the certificate was assigned to the main domain. (EXTSSLIT-669)

PHP Updates

  • Updated PHP 7.4 to version 7.4.10.
  • Updated PHP 7.3 to version 7.3.22.

Linux

  • Updated PHP 7.4 to version 7.4.10.
  • Updated PHP 7.3 to version 7.3.22.
  • Updated ionCube loader for PHP 7.3 and PHP 7.4 to version 1.4.2.

DigiCert SSL 1.8.4

  • Fixed the issue where icons for DigiCert products were not shown in “SSL\TLS Certificates”. (EXTPLESK-2034)

Plesk Obsidian 18.0.29 Update 3

  • The headers of notifications in the Notification Center are no longer malformed. (PPP-50118)
  • Outgoing Mail Control now works correctly if the time zone on the server is set to one of the USA time zones (e.g. New York, NY, USA GMT-4). (PPPM-12321)

Linux

  • ModSecurity security rules no longer stop working after an unsuccessful attempt to update rules. (PPPM-12324)

PHP Composer 1.1.1

  • Removing a domain with the composer.json file present no longer results in errors being logged to the panel.log file, potentially breaking integrations. (EXTPHPCOMP-129)

WordPress Toolkit 4.9.2

  • It is now possible again to change database setting via the CLI for existing WordPress sites. (EXTWPTOOLK-5384)

Plesk Obsidian 18.0.29 Update 2

  • Checkboxes are now again shown in the interfaces of the WordPress Toolkit and SSL It! extensions opened in Safari. (PPP-50041)

Linux

  • After update to Plesk Obsidian 18.0.29, custom Comodo rule sets are no longer removed after daily task execution. (PPP-50022)

PHP Updates

  • Updated PHP 7.4 to version 7.4.9.
  • Updated PHP 7.3 to version 7.3.21.
  • Updated PHP 7.2 to version 7.2.33.

Linux

  • Updated Redis to version 5.3.1 for PHP 7.2, 7.3, 7.4.
  • Updated libwebp to version 1.1.0 for PHP 7.2, 7.3, 7.4.

DigiCert SSL 1.8.3

  • Improved the overall performance of the Digicert SSL extension as a plugin of the SSL It! extension. (EXTPLESK-2017)

SSL It! 1.5.3

  • Sped up the load time of Plesk pages if the extension is installed. (EXTSSLIT-1068)

Joomla! Toolkit 2.4.3

  • Added the administrator login button to the domain overview page - the button is only displayed if the credentials are provided.
  • Improved the bulk process result message if errors occur during the long task process.
  • Batch Update (Core&Extensions) - The update process does not stop if an extension update fails. (EXTCERT-3034)
  • Fixed the backup limit set to 0 (not unlimited) and the error message if the limit is reached. (EXTCERT-3026)
  • Fixed the backend link in the row view - if auto-login is possible, the direct administrator link is displayed.

Plesk Obsidian 18.0.29 Update 1

  • It is now again possible to set the Plesk administrator’s email address using subaddressing. (PPPM-12260)

Windows

  • Update to Plesk Obsidian no longer fails because of certain unnecessary Horde files, which Microsoft Security falsely detected as malware. (PPPM-12266)
  • Forwarding to a domain without SSL support can now be set up again. (PPP-49922)

WordPress Toolkit 4.9.1

  • WordPress Toolkit version and build number is now displayed on top of the “WordPress Toolkit Settings” screen.
  • CLI utility for the Update Site URL feature was added. It can be accessed through the plesk ext wp-toolkit --update-site-url command.
  • CLI utility for managing various wp-config.php settings was added. It can be accessed through the plesk ext wp-toolkit --wp-config command.
  • Security measure “Block access to potentially sensitive files” now also blocks public access to .ini files. This change is not applied automatically: to enforce it, reapply the measure on required websites.
  • Installing a WordPress site via WPT CLI will no longer display unnecessary and overwhelming information in a background task window inside Plesk UI. (EXTWPTOOLK-5217)
  • Jetpack plugin is now installed without PHP errors on Plesk for Windows. (EXTWPTOOLK-5259)

SSL It! 1.5.2

  • Email notifications about failed renewal of wildcard certificates on domains with the external DNS service are now sent according to the notification settings. (EXTSSLIT-1056)

Plesk Obsidian 18.0.29

  • The list of domains in Dynamic List view now has indents for domain aliases and subdomains.
  • Increased the load speed of Dynamic List view.
  • The backup process now correctly calculates server space necessary for a backup by ignoring files configured to be skipped during backing up.
  • Repair Kit can now detect and fix the database inconsistency: missing entries in IpAddressesCollections.
  • When a user changes a website’s PHP handler, Plesk now informs that this change will make the website unavailable for a number of seconds.
  • Increased SecResponseBodyLimit of ModSecurity: certain websites in Plesk can no longer become unavailable because of the “ModSecurity: Output filter: Response body too large” error.
  • It is now possible to hide “Skins and Color Schemes” and “Interface management” in Restricted Mode.
  • Improved the picture and text shown when the Plesk UI notification pane is empty.
  • The “View Certificates” button (Websites & Domains > domain > SSL/TLS Certificates > Advanced Settings) is no longer shown if the Plesk administrator did not configure the button’s link to a website where customers can buy SSL/TLS certificates. (PPP-49711)
  • If a database user has the “User has access to all databases within the selected subscription” option enabled, it is now possible to get information about the database user via XML API. (PPPM-12202)
  • Changed the reseller’s permission name “Subscription creation in Server Administration Panel and domain creation in Customer Panel” to “Domains Management”. The new name now matches the same permission in resellers’ plans and does not confuse customers and resellers. (PPPM-12184)
  • Add-on domains can now be restored from backups created on another Plesk server. (PPPM-12122)
  • The “Management of access to the server over SSH” permission in resellers’ service plans now works correctly: a reseller’s subscription system user can no longer receive SSH access that conflicts with the permission. (PPPM-12124)
  • A website’s sitemap.xml generated by Web Presence Builder now includes the www and HTTPS prefixes of the website URLs when “Permanent SEO-safe 301 redirect from HTTP to HTTPS” is selected and the www domain is preferred. (PPPM-6867)
  • File Manager breadcrumbs now show the correct location. (PPP-49542)
  • Custom buttons can now be created in Additional Services. (PPPM-12171)
  • Backing up to FTP storage no longer occasionally fails with the “Unable to find archive metadata” error. (PPPM-12213)
  • When trying to open domains’ logs, users no longer occasionally see an HTTP error 500. (PPP-37350)
  • If an additional Plesk administrator is logged in to Plesk in Power User view, “Logged in as” no longer shows the username of the main Plesk administrator. (PPPM-12135)
  • An additional user’s email address can no longer be created based on a subscription that has the mail service disabled. (PPPM-12188)
  • If a Plesk server’s public IP address was set an then removed from the IP addresses, the Plesk Home page (“System Overview”) no longer shows empty brackets next to the Plesk IP address. (PPPM-12117)
  • Customers’ external_id can now be updated via REST API. (EXTREST-97)
  • A REST API request to retrieve the Plesk administrator’s details now returns the correct type value. (EXTREST-103)
  • A REST API request to change a customer’s name now needs only the name field value to be submitted. (PPPM-12198)

Linux

  • Ubuntu 20 is now supported. Plesk Migrator supports migration from Ubuntu 16 and 18 to Ubuntu 20.
  • Introduced the new option “Fix incorrectly set sender for outgoing mail” that significantly reduces the likelihood of outgoing emails landing in spam (if DKIM and SPF are also enabled and properly set up). If the option is enabled, Plesk fixes incorrect sender headers and the envelope-sender address for outgoing mail.
  • Security improvements.
  • Update to Plesk Obsidian 18.0.29 will reconfigure Apache and nginx websites.
  • Updated PHP used by Plesk to version 7.3.20.
  • In Plesk on CentOS 8.1 and Debian 10 with IPv4 and IPv6 addresses, fixed unnecessary steps in the generated firewall script. (PPPM-11795)
  • Nginx configs are now removed after nginx support was disabled. (PPPM-11197)
  • If a large number of websites use the same PHP handler, the PHP handler change of one website no longer makes websites that use the target PHP handler temporarily unavailable. (PPPM-12241)
  • Premium Antivirus by Dr.Web now works without a license key installed when TLSv1 is disabled for sw-cp-server. (PPPM-5740)
  • It’s possible to customize MySQL variables used by database export and import via the server-wide my.cnf. (PPPM-10773)
  • The “Website Copying” feature can no longer exceed the hard disk quota. (PPPM-11523)
  • Plesk Repair can no longer break the Apache configuration and cause websites’ downtime if an SSL/TLS certificate that secures one of the websites has the empty cert_file value in the Plesk database. (PPPM-10522)
  • If the free Comodo rule set is selected and WordPress is installed on a website, Fail2Ban can no longer block the Plesk server’s IP address after customers spend some time working in WordPress. (PPPM-11961)
  • The list of static files served directly by nginx now contains the webp extension. (PPPM-12109)
  • Plesk Repair now checks the ulimit value before showing a warning about it. (PPP-47989)
  • If the submitted text of the mailbox quota warning is too long, Plesk now informs that this text cannot be longer than 2000 characters. (PPPM-12089)
  • Removed excessive debug messages “ERR [panel] ADD” from the Plesk log. (PPPM-12156)
  • Emails sent from a Plesk server with Horde and SpamAssassin enabled are no longer wrongly labeled as spam. (PPPM-12120)
  • Site Preview now opens a website even if the website URL does not have a trailing slash. (PPPM-12149)
  • The Watchdog (System Monitoring) component can now be enabled in Plesk on CentOS 8 in Virtuozzo containers. (PPPM-12247)
  • Update to Plesk Obsidian 18.0.28 no longer fails if Plesk has two protected directory users who have the same names but the letter cases are different. (PPPM-12107)
  • If a user scheduled backups to be stored in FTP storage and the FTP timeout is low, the user no longer receives the repetitive warning message “Export error: Size of volume 
 does not match expected one 
 . The remote backup may not be restored.” (PPPM-12084)

Windows

  • After checking web & FTP servers, “Diagnose & Repair” no longer mistakenly informs that a domain’s temporary file folder is missing. (PPPM-12196)
  • If the Plesk administrator’s profile is broken, Plesk Migrator now shows a more detailed error message instead of the general “Unable to set backup sign certificate” error. (PPPM-12105)
  • Migration of Microsoft SQL database servers no longer occasionally fails with the “Login failed for user ‘admin’” error. (PPPM-12169)
  • When fixing FTP users, Plesk Repair no longer occasionally fails with the “Failed to recreate the junction: ftpmng failed: C structured exception: 0xc0000005” error. (PPPM-12174)
  • Mass email messages can now be sent if no template is used and only selected customers are chosen. (PPP-49645)
  • plesk_fopen errors are now correctly processed: if a customer does not have the permission to view a certain file, the customers will now see the correct error message. (PPP-49766)
  • When trying to open domains’ logs, users no longer occasionally see the “Class ‘Plesk_Log_Timestamp’ not found” error. (PPPM-12165)
  • If Plesk installation was interrupted, Plesk is no longer broken and does not show the “ImpersonationCache.db uninitialized/corrupted” error. (PPPM-11384)
  • MySQL databases that contain non-ASCII characters can now be again exported without any issues. (PPPM-12116)

Third-Party Component Updates

Linux

  • Updated nginx and the sw-cp-server service to version 1.18.0.
  • Updated Kronolith to version 4.2.29.
  • Updated Roundcube to version 1.4.7.

Windows

  • Updated ASP.NET Core 3.1 to version 3.1.6.
  • Updated ASP.NET Core 2.1 to version 2.1.20.
  • Updated Horde to version 5.2.23.
  • Updated BIND to version 9.16.4.

PHP Updates

Linux

  • Argon2 usage in PHP 7.2 and 7.3 no longer causes errors in PHP applications (for example, 503 HTTP errors during attempts to log in to TYPO3 and Nextcloud). (PPP-49780)

WordPress Toolkit 4.9.0

  • Server Administrators can now use Service Plans to limit the number of WordPress sites that customers can install and manage in WordPress Toolkit.
  • “Global Settings” screen now has the option to define the default database table name prefix for new WordPress installations.
  • It’s now possible again to log in to WordPress installations after changing the access password in WordPress Toolkit and not refreshing the installation info via “Refresh” button or other means. (EXTWPTOOLK-5156)
  • Security measures are no longer applied to detached websites. (EXTWPTOOLK-5107)
  • Redundant backslashes in non-English email notifications from bug EXTWPTOOLK-4699 have returned from the dead and were quickly sent back packing. (EXTWPTOOLK-5042)
  • Websites can now be properly cloned if their scheduled task created to replace native wp-cron has no description. (EXTWPTOOLK-5033)
  • Update version of manually uploaded plugins and themes is now detected correctly. (EXTWPTOOLK-4966)
  • WordPress Toolkit working in Lite mode now correctly accepts update settings specified by users in wp-config.php file. (EXTWPTOOLK-682)

Plesk Migrator 2.19.6

  • The extension can now be installed in Plesk on Debian 10.
  • The extension can now migrate large mailboxes (more than 2 GB) to SmarterMail at a time.
  • Fixed the following issues that could occasionally happen if the target mail server uses IMAP to restore mail (for example, SmarterMail 100 or later):
    • Texts of email messages were not migrated completely.
    • Errors occurred when the emails were restored on the target mail server. (PMT-4768)
  • Migration now works if the source server has freshly installed cPanel of the latest version. (PMT-4795)

Advisor 1.8.2

  • Added the recommendation to install the Imunify360 extension.

SSL It! 1.5.1

  • No error now occurs when the “keep-secured” scheduled task tries to renew a certificate uploaded manually to a domain. (EXTSSLIT-1036)

PHP Composer Advisories 1.0.1

  • Internal security improvements.

Plesk Obsidian 18.0.28 Update 3

  • Security improvements.
  • Error messages related to an incorrect AUTO_INCREMENT value in the Plesk database now show a suggestion to fix the error using the Repair utility (either in the Plesk interface or in the CLI).

Linux

  • Fixed the following issues previously occurred when the Plesk mail server is secured with an SSL/TLS certificate from Comodo whose certificate chain points to the expired Sectigo root:
    • Connections from webmail and mail clients to the mail server no longer fail. The improvement does not work in Plesk on CentOS 6/RHEL 6/CloudLinux 6.
    • The rule set from Comodo can now be activated.
  • Changes of a website’s PHP handler cause the website’s downtime if the Apache restart interval has a non-zero value. To prevent the website’s downtime, it is now possible to ignore the Apache restart interval and to force the web server restart on each change of PHP handler settings. To do so, the Plesk administrator needs to add the following lines to panel.ini:

    [webserver]
    restartApacheWhenChangingFpmHandler=1
    

SSL It! 1.5.0

  • The list of secured components on a domain’s SSL It! page was rearranged. Absence of a non-wildcard certificate and a certificate that secures mail is no longer displayed as an error at the top of “Secured Components”.
  • If panel.ini contains invalid values of SSL It! settings, a domain’s SSL It! page no longer fails to be opened with a 500 HTTP error. (EXTSSLIT-959)
  • A certificate can now be issued for a domain that is used to access Plesk (the “Customizing Plesk URL” feature). (EXTSSLIT-962)
  • IDN domain aliases can now be automatically renewed. (EXTSSLIT-978)

Linux

  • Domains with the “Forwarding” hosting type can now be secured via SSL It! with certificates from Let’s Encrypt. The feature works in Plesk Obsidian for Linux with the Let’s Encrypt extension version 2.11 and later.

Windows

  • If SmarterMail is selected as a webmail client, webmail can now be secured.
  • When SmarterMail is selected as a webmail client, renewal of a Let’s Encrypt certificate that secures webmail no longer resets the webmail status to “Not secured”. (EXTSSLIT-886)

DigiCert SSL 1.8.2

  • Users can specify “The United Kingdom (UK)” in contact information while issuing a certificate. (EXTPLESK-1695)

PHP Updates

  • Updated PHP 7.4 to version 7.4.8.
  • Updated PHP 7.3 to version 7.3.20.
  • Updated PHP 7.2 to version 7.2.32.
  • Introduced PHP updates are the last ones for Debian 8 “Jessie”. See Plesk EOL Policy for details.

Linux

  • ionCube Loader is now shipped with PHP 7.4.
  • Updated the following PHP components shipped with Plesk:
    • ionCube to version 10.4.0.
    • Redis to version 5.3.0.
    • xdebug to version 2.9.6.
    • Imagick to version 3.4.4.
    • PEAR components: Pear to version 1.10.12, Archive_Tar to version 1.4.9, Console_Getopt to version 1.4.3, and XML_Util to version 1.4.5.
  • Argon2 is now shipped with both FastCGI and FPM. (PPP-49652)

Plesk Mobile Center 1.14

  • The extension now uses a new Apple Push Notification service certificate.

Let’s Encrypt 2.11.0

  • Sped up the remove-expired-tokens.php task. Expired tokens are now removed faster from the acme-challenge directory on servers with a large number of domains. (EXTLETSENC-845)
  • A certificate can now be issued for a domain that is used to access Plesk (the “Customizing Plesk URL” feature). (EXTLETSENC-874)
  • The server setting of panel.ini is now removed as deprecated. (EXTLETSENC-879)

Plesk Obsidian 18.0.28 Update 2

  • After updating to Plesk Obsidian 18.0.28, users that have custom web server templates no longer occasionally have web server reconfigurations errors. (PPPM-12119)
  • After updating to Plesk Obsidian 18.0.28, Backup Manager no longer occasionally shows false positive errors that a backup is invalid. If the backup is indeed invalid, an error message is shown and the corresponding entry is written to a log. (PPPM-12110)
  • After updating to Plesk Obsidian 18.0.28, a full server backup is no longer erroneously created instead of an incremental one when the base backup exists and it is valid. (PPPM-12112)

Ruby 1.3.10

  • The extension can now be installed on Debian 10.

Plesk Obsidian 18.0.28 Update 1

  • Debian 10 “Buster” is now supported. Plesk on Debian 10 “Buster” has the following limitations:

    • PHP versions 5.2-5.6 and 7.0 are not distributed with Plesk.
    • The time synchronization settings are not available.
    • Connection to the server might be interrupted the first time the Plesk Firewall rules are activated.

    Note: Plesk does not support any dist-upgrade scenarios for Debian 10. To upgrade to Debian 10 from previous Debian versions or other OSes, use Plesk Migrator.

Linux

  • The plesk bin repair --db -n command works correctly again and does not return the “Wrong admin password is found for PSA database server” error. (PPPM-12094)

G Suite 1.0.2

  • The extension is now compliant with the new Google customer account transfer procedure.
  • If a password contains the & symbol, a G-Suite subscription can now be activated. (EXTPLESK-1961)
  • When a trial period ends, seats are now counted correctly. (EXTPLESK-1959, EXTPLESK-1890, EXTPLESK-1920)
  • G Suite licenses are now displayed correctly in the customer account after verification. (EXTPLESK-1921)

WordPress Toolkit 4.8.4

  • Update of certain plugins & themes will not mark WordPress sites as broken if there were JSON decoding errors. (EXTWPTOOLK-4736)
  • Trying to update a commercial plugin or theme that requires a license will not cause JSON decoding errors anymore. (EXTWPTOOLK-5048)
  • Password protection can be enabled on websites that have a double quote character in the site title. (EXTWPTOOLK-5086)
  • Permalinks no longer can be broken under certain circumstances when plugins or themes are updated. (EXTWPTOOLK-5118)
  • Permalinks no longer can be broken under certain circumstances when a theme is activated. (EXTWPTOOLK-5119)

Plesk Migrator 2.19.5

  • The extension can now be installed in Plesk on Debian 10.
  • When migrating a domain secured with an SSL/TLS certificate from Direct Admin, the certificate is now correctly selected in Plesk after migration. (PMT-4789)
  • Emails migrated to SmarterMail 100 no longer have their sending and delivery dates replaced with the date of migration in the SmarterMail web interface. (PMT-4786)

Plesk Obsidian 18.0.28

  • The Plesk administrator can now disable all promotions in Plesk by adding the following lines to the panel.ini file:

    [promos]
    enabled = false
    
  • By default, Plesk is now automatically secured with an SSL/TLS certificate from Let’s Encrypt. See more details.
  • Updated sw-engine PHP to version 7.3.18.
  • Rebuilt PHP 7.4.7 on CentOS 7/RHEL 7/CloudLinux 7 because of the Oniguruma update.
  • Running the plesk repair fs command now shows a clearer message if suspicious ownership of files and directories is detected in the root directory of a domain. (PPPM-4400)
  • If the AUTO_INCREMENT issue appears, the Plesk administrator can now fix it by running the plesk repair db -y command. (PPP-49217)
  • Websites’ screenshots in Dynamic View are now rendered significantly faster. (PPPM-11589)
  • Improved the search for domains: extra spaces or tabs no longer empty the search results. (PPP-49037)
  • The resellers’ mailbox quota is now calculated correctly. (PPPM-11653)
  • The “Site name” drop-down list on the “Website copying” screen now shows websites in alphabetical order. (PPP-49370)
  • Changes in the server-wide SpamAssassin settings now actually update these settings. (PPPM-11983)
  • Limited the number of email addresses that can be added to the mail forwarding list. (PPPM-10677)
  • Changing a PHP version now preserves the selected PHP handler type if the PHP version supports the handler. (PPPM-10694)
  • It is now possible to add non-endpoint IP addresses via the Plesk interface. (PPP-49198)
  • When Plesk has several subscriptions, the “Open” button next to “Databases” on the domain page in Power User view now opens the “Databases” screen. (PPPM-9466)
  • PHP settings in site-isolation-config now work again. (PPPM-12020)
  • It is now possible to add only IP addresses (without a mask) in Domains > domain > DNS Settings > Zone Transfers. (PPPM-10874)
  • Removed the outdated release-tier and autoupgrade-stable parameters from the plesk bin server_pref utility. (PPPM-11614)
  • During backups’ restoration, Plesk now resets the objects selected to restore each time users change a type of objects to restore (for example, database or files of domains). This prevents the impression that multiple objects types can be restored at once. (PPPM-12028)
  • The password reset link is now present for mail on subscriptions that do not belong to the Plesk administrator. (PPPM-12033)
  • Statistics in summary reports are now calculated for resellers. (PPPM-11034)
  • An attempt to delete a non-existent remote backup no longer results in an error. (PPP-47687)
  • Put a limit on long scheduled tasks to prevent cases when the Plesk interface hangs because of massive data stored in a long task. (PPPM-11966)
  • It is now possible to restore a full server backup stored in the Google Drive Backup storage when the “Restore this backup despite the fact that it does not have a valid signature” option was not enabled and the Plesk server has a large number of subscriptions (more than 100). (PPPM-12029)
  • The “Activate/Deactivate Services” button is no longer missing for mail of a subscription created under a hosting plan that has the 0 value in “Maiboxes”. (PPPM-10770)
  • Network errors no longer can hinder backing up and restoration. (EXTPLESK-1948)
  • The Plesk interface now clearly shows that backup rotation depends on a number of stored backup files. (PPPM-11931)
  • It is now possible to back up a server to FTP storage if the server has customers whose names contain German characters. (PPPM-11967)
  • “Mail configuration and content” is no longer shown during backing up in Plesk without mail. (PPP-48943)
  • It is now possible to see details of backups if the backups were created by resellers and contain resellers’ subscriptions. (PPPM-11914)
  • Editing DNS records can no longer occasionally lock subscriptions. (PPPM-11940)
  • It is now possible to remove a mail account from an add-on domain if the mail service of the mail domain is disabled. (PPPM-11974)
  • Resellers can now increase outgoing mail limits in the email address settings if they have already been changed. (PPPM-11496)
  • The “SSL/TLS support” and “Permanent SEO-safe 301 redirect from HTTP to HTTPS” options are now automatically enabled in hosting settings of customers’ subscriptions created under a hosting plan in which the settings were disabled. (PPPM-11563)
  • It is now possible to update a subdomain’s settings via the CLI or API when the main domain has the disabled PHP support. (PPPM-11947)
  • Removing a subscription with configured remote storage settings now also removes all the subscription’s backup settings from the psa.BackupsSettings table. (PPPM-11933)
  • If FTP storage was configured for a domain that had already used the storage and then the storage had some connectivity issues, it no longer takes about a minute to open the domain’s Backup Manager. (PPPM-12060)
  • It is no longer possible to lose access to a MySQL database if the database name has the maximum allowed size and contains underscores. (PPPM-12057)
  • Errors in extensions’ custom buttons can no longer break the whole Plesk page. (PPPM-12021)
  • Sped up the migration of subscriptions to the target server with the same OS and Plesk version as the source by removing unnecessary information from backup.log and the XMl-configuration file when the subscriptions are backed up. (PPPM-11919)
  • Plesk now shows sizes and numbers of tables for all databases of a subscription if the subscription has a large number of databases (more than 25). (PPPM-12062)
  • Backup Manager now shows comments (if any) under the “Comments” column for backups stored in remote storage. (PPPM-11714)

Linux

  • PHP shipped with Plesk now supports Argon2.
  • Removed the mirroring feature from Plesk Autoinstaller.
  • Moving a domain that uses PHP-FPM handlers to another subscription no longer occasionally fails. (PPPM-4225)
  • If the root (/) and /var directories are located in different partitions, it no longer negatively affects chroot setups. (PPPM-11977)
  • Resellers can now choose the exact FPM application type (served by Apache or by nginx) in their own service plans. (PPPM-12019)
  • Running the plesk bin http2_pref --enable command to enable HTTP/2 now updates TLS versions for nginx. (PPPM-11991, PPPM-11965)
  • After update to Plesk Obsidian, IMAP and POP3 mail accounts configured in Outlook now correctly show emails with UTF-8 characters. (PPPM-11248)
  • If the SpamAssassin filter is enabled, it is now possible to return to a previous domain name without the “Integrity constraint violation: 1062 Duplicate entry” error. (PPPM-12016)
  • Plesk now validates the Apache and nginx directives more strictly: users are less likely to accidentally break nginx. (PPPM-11962)
  • Removed obsolete Python modules. After a Plesk update, the var/log/plesk/install/plesk_<version>_installation.log log will no longer contain confusing error message from these modules. (PPPM-11981)
  • If Plesk is configured with a remote database server, databases are now backed up. (PPPM-11993)
  • The cgi-bin directory is now added to the website directory template on new Plesk installations. As a result, the directory is created in /var/www/vhosts/ when “CGI support” is selected in a domain’s hosting settings. (PPP-46488)
  • It is now possible to change an email password via webmail in certain network configurations because xinetd ACL now allows all correct connections from the localhost. (PPPM-11839)
  • Postfix Sender Rewriting Scheme (SRS) now works with email addresses that contain the plus sign (+). (PPPM-10128)
  • After a PHP script located in the customer’s home directory was run by a scheduled task, chroot environment is no longer set up for the directory. (PPPM-11985)
  • The greylisting logs now contain the information explaining why emails were rejected. (PPP-47900)
  • Plesk Autoinstaller now checks for errors in yum/dnf during a Plesk update. If the errors are found, the update is stopped and an error message is shown. (PPPM-11956)
  • It is now possible to add or remove a large number of items (more than 2000) to or from the black/white list. (PPPM-11900)
  • The Roundcube and Horde php.ini templates now have the local open_basedir directive that does not override the global one in the Plesk php.ini. This prevents customers from accidentally breaking the Plesk php.ini.
  • After the PHP-FPM handlers’ configuration was updated, Plesk now force restarts PHP-FPM. As a result, if the new configuration failed to be applied, users will see an error in the Plesk interface right away. (PPPM-11570)
  • “Quick Preview on a domain name in Plesk” now works for domains hosted on a IPv6 server. (PPPM-12008)
  • Greylisting no longer rejects emails from Instagram. (PPPM-11674)
  • The plesk repair fs utility now fixes incorrect permissions in /var/www/vhosts. (PPPM-12051)
  • Improved a message shown after the Comodo rule set was activated. (PPPM-10829)
  • Creating or deleting domains on a server that has a larger number of subscriptions (more than 100) no longer occasionally causes the “httpd: Syntax error on line” error being shown. (PPPM-9180, PPPM-7236)
  • The /var/log/httpd/error_log file no longer contains the following multiple error messages: “client denied by server configuration: /usr/share/plesk-service.localdomain/”. (PPPM-11377)
  • Improved a message shown when nginx is not enabled but there was an attempt to start it. (PPP-46905)
  • Mail Autodiscover now works when the www domain is selected as the preferred domain. (PPPM-11747)
  • Mail now works on a subscription that belongs to a hosting plan whose mail service was disabled and then enabled both for the hosting plan and the subscription. (PPPM-11958)
  • A subscription’s disk usage statistics can no longer show the chroot directories category with a non-zero value if the chroot shell environment was not enabled. (PPP-49136)
  • Fixed the iptables version detection in the Plesk firewall script on operating systems with nftables (CentOS 8 and Debian 10). (PPPM-11795)
  • It is now possible to create a mailbox on a subdomain after the plesk repair utility fixed the subdomain. (PPPM-11954)
  • The “Mailbox usage exceeded 95% quota” email notification now has the date header with the current server time: the notification is less likely to be misplaced. (PPPM-12055)
  • It is no longer possible to select a disabled PHP handler for a domain after switching between “No web hosting” and “Website hosting” in the domain’s hosting settings. (PPPM-11928)
  • A full server backup is now created without warning messages after a domain was moved to another subscription. (PPPM-11765)
  • It is no longer possible to change the database server used for the Plesk psa database or change the database’s password via the CLI or API. (PPPM-11086)

Windows

  • Plesk no longer gets stuck on the “Initializing” screen if the selected trial license option failed to be processed. (PPP-49156, PPP-47384)
  • To prevent issues with accessing Plesk, the urlrewrite package is now updated before the panel package. (PPPM-12027)
  • It is now possible to manage databases on SQL Server 2008 and SQL Server 2008 R2 in Plesk. (PPPM-11942)
  • When SSL/TLS certificates are updated, an old certificate is now automatically deleted after it was replaced with the newly issued one. (PPPM-11953)
  • Custom buttons’ icons are now loaded correctly. (PPPM-12038)
  • An update from Plesk Onyx to Plesk Obsidian is now blocked and a warning message is shown if Active Directory Domain Controller and Plesk are installed on the same server. Resuming the update with this configuration will break Plesk after the update. (PPP-48660)
  • It is now possible to add multiple server headers at once via the CLI by using the -add-web-server-header option with the plesk bin domain --update-web-server-settings <domain_name> command. (PPPM-12031)
  • The installation of Microsoft .NET Core 3.1.4 - Windows Server Hosting no longer fails with code 1638 and no longer breaks Plesk. (PPPM-12030)
  • Plesk now hides the “Add database” button when the limit of MySQL databases is reached. (PPPM-11939)
  • Plesk can now import dumps of very large Microsoft SQL databases without any errors. (PPPM-11996)
  • The outdated PHP handlers (versions 5.6 and 7.0) no longer contain custom upload_tmp_dir as their values. (PPP-49179)
  • Plesk can now export MySQL 5.1 databases. (PPPM-12002)
  • It is now possible to rename a subscription if its mail service was secured with an SSL/TLS certificate generated in Plesk (for example, a Let’s Encrypt certificate or a self-signed one). (PPPM-11995)
  • It is now possible to change the administrator’s credentials for the Microsoft SQL server in Plesk. (PPPM-12001)
  • Plesk can now use the custom DumpTempDir value for temporary backup files. (PPPM-11935)
  • After an attempt to install WordPress via Applications on a server that has disabled PHP handlers and MySQL, a clear error message is now shown instead of an HTTP error 500. (PPPM-10705)
  • Plesk now backs up unassailable log files without warning messages. (PPPM-10885)
  • PowerShell scheduled tasks now work in Plesk on Windows Server 2019. (PPPM-11321)
  • It is now possible to rename a database user of the remote Microsoft SQL database in the Plesk interface. (PPPM-12059)

Third-Party Component Updates

Linux

  • Updated Roundcube to version 1.4.6.
  • Updated Horde to version 5.2.23.
  • Updated Dovecot to version 2.3.10.1.

Windows

  • Updated ASP.NET Core 3.1 to version 3.1.15.
  • Updated ASP.NET Core 2.1 to version 2.1.19.
  • Updated MariaDB to version 10.3.23 (both for the Plesk database and for customers’ websites).
  • Updated MariaDB Connector/C to 3.1.8.
  • Updated BIND to version 9.16.3.
  • Updated Node.js 12 to versions 12.18.0.
  • Updated Node.js 10 to versions 10.21.0.
  • Fixed a severe vulnerability in myLittleAdmin.

Panel.ini Editor 3.2.2

  • Added a number of descriptions of the Let’s Encrypt extension’s settings.

Let’s Encrypt 2.10.2

  • Panel.ini Editor now shows all necessary Let’s Encrypt settings. (EXTLETSENC-648)
  • After a Plesk daily task was executed, the “PHP Fatal error: Modules_Letsencrypt_CustomInfo” error no longer appears in the logs. (EXTLETSENC-861)

Grafana 1.1.6

  • After update to Grafana 7, the pages of the Grafana and Advanced Monitoring extensions no longer show the “login.OAuthLogin(state mismatch)” error instead of the expected content. (EXTPLESK-1868)

PHP Updates

Linux

  • Rebuilt PHP 7.4.7 on CentOS 7/RHEL 7/CloudLinux 7 because of the Oniguruma update.

PHP Updates

  • Updated PHP 7.4 to version 7.4.7.
  • Updated PHP 7.3 to version 7.3.19.

Advanced Monitoring 1.3.1

  • The extension can now automatically detect server hardware changes and make the necessary adjustments: redraw graphs and recalculate thresholds of the notifications.
  • It is now possible to set thresholds in MB and GB instead of bytes (which was previously the single option).
  • The memory usage graph in Plesk for Windows now shows more available metrics.
  • Units on the y-axis are now displayed more accurately: the fractional part is no longer rounded. (EXTPLESK-1844)
  • The extension no longer interprets custom thresholds in the custom-health-config.xml file as the default ones. (EXTPLESK-1789)
  • In Plesk for Windows, the threshold of physical and virtual memory usage is now calculated correctly. (EXTPLESK-1743)
  • If the Parallels.MonitorSrv.exe.Config component is not installed correctly during the extension’s installation in Plesk for Windows, the component is now automatically fixed and the extension is installed without any issues. (EXTPLESK-1435)
  • If the health-monitoring component is absent from Plesk for Windows for any reason, the component is now automatically installed and the System Health Monitor service is present. (EXTPLESK-1864)

Let’s Encrypt 2.10.1

Windows

  • The extension can now issue an SSL/TLS certificate to secure the server hostname if no domain with this hostname and no default website exist in Plesk. (EXTLETSENC-855)
  • The extension no longer fails to issue SSL/TLS certificates if the common challenge directory support is enabled and the plesk binary path is absent from the IIS process environment. (EXTLETSENC-854)

PHP Composer Advisories 1.0.0

  • Initial release.

WordPress Toolkit 4.8.3

Windows

  • IIS web server configs are no longer erroneously applied to all domains in a subscription with shared IIS application pool if at least one of these domains had WordPress installed. (EXTWPTOOLK-5044)

PHP Composer 1.1.0

  • Added support for Composer 2.0. The extension now works with Composer 1.0 and 2.0.
  • The Composer utility shipped with the extension is now automatically updated by default.
  • When two applications are installed on a domain, it is now possible to switch between the applications’ folder in PHP Composer. (EXTPHPCOMP-104)
  • The PHP Composer button is no longer shown for a domain alias whose main domain does not have web hosting. (EXTPHPCOMP-100)
  • Starting with Plesk Obsidian 18.0.20, the page in “Applications” > “Manage My Applications” shows the message that informs how to locate a Composer application. (EXTPHPCOMP-56)

SSL It! 1.4.1

  • If a domain has a subdomain with the SSL support disabled, the SSL It! domain page no longer fails to be opened with a 500 HTTP error. (EXTSSLIT-955)
  • If domains have the SSL support disabled, only SSL/TLS certificates from Let’s Encrypt can now be selected to secure the domains’ webmail. Previously it was possible to select SSL/TLS certificates from DigiCert but they cannot secure webmail of the domains without the SSL support. (EXTSSLIT-952)
  • Domains are now again can be secured when they are created (when the “Secure the domain with Let’s Encrypt” option is selected). (EXTSSLIT-953)
  • When a domain was secured with an SSL/TLS certificate and then the SSL support for the domain was disabled, the “Websites & Domains” page for the domain is now opened without any issues. (EXTSSLIT-954)

G Suite 1.0.1

  • Internal security improvements.

SSL It! 1.4.0

  • In Plesk for Windows, significantly decreased a number of cases when the extension cannot issue a Let’s Encrypt certificate because the HTTP-01 challenge cannot be passed. To achieve this, we made the common challenge directory support turned on by default. This features has been already introduced in Plesk for Linux for quite some time. Now it works for Windows as well.

    Note: If necessary, you can turn off the common challenge directory support via the CLI. However, we recommend that you always keep the support on.

  • The extension can now secure webmail on domains without web hosting.

  • The CLI can now manage wildcard certificates issue and turning on and off HSTS. To see details, use the plesk ext sslit –help command.
  • Added cache to store domains’ security status. In certain cases, it speeds up the loading of the extension’s domain screen.
  • Redesigned the extension’s icons to make them more in tune with the Plesk Obsidian style.
  • For non-Let’s Encrypt certificates, added the “Suggest renewing” indicator on a domain card. The indicator means that an SSL/TLS certificate is about to expire and the extension cannot renew it automatically. We suggest that users renew the certificate manually in due time.
  • When a domain is secured with a custom SSL/TLS certificate, the domain’s security status is now identified correctly. (EXTSSLIT-784)
  • When a domain has only its www alias secured (for example, only www.example.com is secured but not example.com), the “Domain with the “www” prefix` option” is no longer marked as not secured. (EXTSSLIT-802)
  • Significantly sped up Plesk search on servers that have a large number of subscriptions (more than 100) and the extension installed. (EXTSSLIT-806)
  • Cleaned up the code executed after a user clicks to issue or renew an SSL/TLS certificate. The extenion no longer shows the “Get it free” button instead of “Renew” and the “No CA plugins available” message by mistake. (EXTSSLIT-832)

WordPress Toolkit 4.8.2

  • Corrected mistakes in English locale.
  • Additional fix was added for the issue previously addressed in WPT 4.8.1: Apache rewrite rules are no longer erroneously applied to all domains in a subscription if at least one of these subscriptions had WordPress installed. (EXTWPTOOLK-5017)

DigitalOcean DNS 1.2.1

  • Synced locale languages supported by the extension.

WordPress Toolkit 4.8.1

  • Under certain circumstances, Apache rewrite rules could stop working with enabled hotlink protection, block authors scan, or bot protection security measures. (EXTWPTOOLK-5009)

WordPress Toolkit 4.8.0

  • Server administrators can now define default WordPress installation language in the global WordPress Toolkit settings.
  • CLI command for enabling and disabling Smart Updates on a site was added. Run plesk ext wp-toolkit --smart-update to access it.
  • Plugins and themes that require a license for automatic update will now cause a proper error message when users try to update them via WordPress Toolkit without a license.
  • Backup / Restore links now always lead to the corresponding subscription’s Backup Manager screen. (EXTWPTOOLK-1582)
  • Smart Updates can now update plugins and themes uploaded manually to WordPress Toolkit if their updates were also manually uploaded to WPT. (EXTWPTOOLK-4080)
  • WordPress Toolkit buttons are now properly displayed in Action List if Plesk is in restricted mode. (EXTWPTOOLK-4596)
  • German translation for multisites was corrected. (EXTWPTOOLK-4627)
  • Certain manually uploaded plugins with incorrect plugin slugs no longer display a broken Changelog link. (EXTWPTOOLK-4662)
  • It is no longer possible to disable native wp-cron on WordPress sites that use disabled or absent PHP handler. (EXTWPTOOLK-4799)

Let’s Encrypt 2.10.0

  • Automatic renewal of Let’s Encrypt certificates no longer fails when a domain has a large number of secured subdomains (more than 200). (EXTLETSENC-644)
  • Challenge token files (which are created after certificates failed to be renewed or issued) are now deleted after 3 months. The extension’s folders are no longer cluttered. (EXTLETSENC-676)
  • In Plesk for Windows with Bind, wildcard challenge DNS records are now added automatically to the DNS zone of a domain that you try to secure with a wildcard certificate. (EXTLETSENC-813)

Plesk Obsidian 18.0.27 Update 1

  • Website configs are now regenerated if Plesk had previous upgrades from version 11 or earlier. (PPPM-11952)
  • Added certain translations that were missing from Plesk 18.0.27. (PPP-49052)

Linux

  • Enabling Plesk Firewall no longer crashes the sw-cp-server service. (PPPM-9966)
  • Multiple sw-cp-server restarts no longer cause Plesk downtime on Ubuntu 18.04. (PPP-49063)
  • Plesk Obsidian can be now updated to version 18.0.27 without the “20200423164000-create_stored_sslmng_configuration” warning being shown. (PPPM-11943)
  • Hosting settings can now be changed if the sysuser login has more than 20 characters. (PPPM-11955)

Amazon Route 53 2.8.0

  • It is now possible to have white-label or vanity name server with Amazon Route 53. To configure them, users need to select the “Manage NS and SOA records” checkbox and then follow step 7 and further in the Amazon Route 53 guide.

    The feature described above was introduced by the extension’s user. We express our gratitude and welcome the contribution of Amazon Route 53 users into further development of the extension.

  • Added the warning message shown after users click the “Sync All Zones” button. The warning explains that Plesk will overwrite all DNS records in Route53 with those in Plesk and will remove those DNS records from Route53 that do not exist in Plesk.
  • The extension can now handle 2048-bit DKIM keys. (EXTPLESK-286)

Grafana 1.1.5

  • Resolved compatibility issues with Grafana 7.0. (EXTPLESK-1867)

PHP Updates

  • Updated PHP 7.4 to version 7.4.6.
  • Updated PHP 7.3 to version 7.3.18.
  • Updated PHP 7.2 to version 7.2.31.

Plesk Migrator 2.19.4

Linux

  • It is now possible to migrate subscriptions containing additional Apache and nginx directives to Plesk 18.0.27. (PMT-4783)

Plesk Migrator 2.19.3

  • Migration now works in Plesk 18.0.26 and later. (PMT-4781)

Plesk Welcome Guide 1.1.0

  • Refactoring for Plesk Obsidian.
  • Increased requirement to 18.0.23.
  • Added core permission check “manage_server_modules” to check whether user has the right to install extensions.
  • Updated presets (added Email Security & Joomla! Toolkit).
  • Replaced Toggle Button with Switch element for status change.
  • Updated copyright year.
  • PSR-12.

Plesk Obsidian 18.0.27

  • The GD library shipped with Plesk PHP packages now supports WebP.
  • Fixed inconsistencies found in the Plesk database before initializing Plesk.
  • Subscription backups are no longer created in invalid state if there are improper values in the ‘protected_dirs’ table in the Plesk database.(PPPM-11889)
  • In German locale, on the administrator’s home page, a number of words are now displayed in German instead of English. (PPPM-11887)
  • It is now possible to configure which TLS version to use when creating backups in FTP storage by adding the following lines to the panel.ini file: (PPPM-11906)

    [pmm]
    ftpMaxTlsVersion = 12
    
  • It is now possible to hide the “Cookies” link found on the login screen by adding the following lines to the panel.ini file: (PPPM-11808)

    [gdpr]
    cookieSettings.loginFormEntrypointEnabled = false
    
  • The File Sharing and Bandwidth Limiting (mod_bw) components have been deprecated and will be removed soon. Learn more.
  • In a number of non-English locales, the database export progress dialog messages are now shown in the corresponding language instead of English. (PPPM-11875)
  • On servers with the “Skins and Color Schemes” extension installed and enabled and a custom skin installed, logging in to Plesk and refreshing the page no longer resets the skin to the default one. (PPPM-11831)
  • Operations in Plesk no longer sometimes fail with the “Integrity constraint violation: 1062 Duplicate entry for key ‘PRIMARY’” error. (PPP-48787)
  • Creating a backup in Amazon S3 storage no longer produces unhelpful error messages in case of failure. (EXTPLESK-1742)
  • Restoring a customer account from backup no longer fails if the customer’s password is missing from the backup. (PPPM-11867)

Linux

  • Updating Plesk no longer results in system packages and installed extensions being updated as well, which should decrease the number of failed updates.
  • It is now possible to enable beta support for dynamic IP addresses by adding the following lines to the panel.ini file (not recommended for use in production, please report any issues you encounter on the Plesk Forum):

    [network]
    dynamic_ipv6 = on
    
  • Using Dovecot on Plesk servers deployed on LXC no longer results in errors. (PPPM-11878)
  • The plesk repair web <domain.tld> no longer reports all domains without physical hosting as having problems. (PPPM-10907)
  • The plesk repair web <domain.tld> now correctly repairs web server configuration issues for domains without physical hosting. (PPPM-10907)
  • Under specific circumstances, Plesk no longer fails to detect the main IP address on the server. (PPPM-11484)
  • On Red Hat Enterprise Linux 8 and CentOS 8 servers, installing Plesk now finishes successfully if the chsh utility is missing from the server. (PPP-48847)
  • PostgreSQL database server is shown in “Tools & Settings” > “Database Servers” even if it is not started or initialized. (PPP-48341)
  • Enabling a disabled Fail2ban jail no longer results in misleading errors being written to the ‘/var/log/fail2ban.log’ file. (PPPM-8105)
  • Running the apache2ctl -t or systemctl restart httpd commands after creating a certificate for a domain via the Let’s Encrypt extension and the removing the ‘*-ca.crt’ part no longer breaks Apache configuration.(PPPM-11899)
  • On Red Hat Enterprise Linux and CentOS servers, constants for selecting SSL/TLS versions are now available in PHP shipped with Plesk. (PPPM-11904)
  • Running the plesk repair web -y command now correctly fixes Apache configuration if the ‘*-ca.crt’ part of SSL/TLS certificate is missing for one or more domains. (PPP-48798)
  • Trying to log in over FTPS using an incorrect password for an existing user no longer results in the connection being reset due to ProFTPd experiencing a segfault. (PPPM-11866)
  • On Red Hat Enterprise Linux 8 and CentOS 8 servers, the Postfix service no longer fails to start. (PPP-48637)
  • On CloudLinux 7 servers, installing Plesk with Phusion Passenger, installing and configuring CageFS, and then installing the passenger-cagefs package no longer fails with the “clcommon.cagefs python module is unavailable” error. (PPPM-11922)

Windows

  • Running the plesk repair fs command now also checks for missing, corrupted or outdated Plesk files.
  • The plesk sbin websrvmng --configure-plesk-website command no longer fails if an “application/octet-stream” MIME type for the .* file extension exists on the server. (PPP-48654)
  • Publishing a site snapshot in Web Presence Builder no longer results in an error if the “Enable Win32 long paths” policy is disabled on the server. (PPPM-10611)
  • Restoring a backup when there is not enough free disk space on the server now results in a more helpful error message. (PPPM-11912)
  • PHP scripts using the file_get_contents() function no longer fail with the “Warning: file_get_contents(): SSL operation failed with code 1.” error. (PPPM-11909)
  • On Plesk servers with SmarterMail installed, mail content for newly created domains is now correctly stored in the “C:\SmarterMail\Domains\example.com” directory instead of “C:\SmarterMail\Domains\Domains\example.com”. (PPPM-11659)

Third-Party Component Updates

  • Updated Horde to version 5.2.22.

Linux

  • Updated OpenSSL used by nginx to version 1.1.1g.

Windows

  • Updated SpamAssassin to version 3.4.4.
  • Updated OWASP ModSecurity CRS to version 3.2.0.
  • Updated MariaDB to version 10.3.22 (both for the Plesk database and for customers’ websites).
  • Updated plesk-engine PHP to version 7.3.17.
  • Updated Git to version 2.26.2.

WordPress Toolkit 4.7.4

  • Updated the hint for “Disable wp-cron” feature in accordance with official WordPress documentation.

Domain Traffic Monitor 1.3.2

  • vhosts-traffic-monitor now restarts successfully when the worker process is dead but the pidfile exists. (EXTPLESK-1235)

WordPress Toolkit 4.7.3

  • Fine-tuned Jetpack license checks to avoid clogging up the log files.
  • Update of WordPress Toolkit extension no longer fails under certain specific conditions with “Value is not allowed. Allowed one numeric value and ‘*’” error. (EXTWPTOOLK-4798)

WordPress Toolkit 4.7.2

  • A bunch of new default WordPress site names was added. Also, some of the gloomier old names were changed to more positive ones for the sake of cheering people up a bit.
  • Updated the destination of Changelog links on the Updates screen. (EXTWPTOOLK-4733)
  • It’s now possible to properly disable wp-cron.php if scheduled tasks with missing PHP handlers are present on the server. (EXTWPTOOLK-4764)

Plesk Obsidian 18.0.26 Update

  • Plesk now supports CentOS 7.8. (PPPM-11893)

DigitalOcean DNS 1.2.0

  • It is now possible to authorize the extension using DigitalOcean API tokens as well as OAuth 2.
  • NS records for vanity DNS servers (“ns1.yourdomain.com” instead of “ns1.digitalocean.com”) are now correctly synchronized from Plesk to DigitalOcean.
  • Changes made to the TTL values of DNS zones in Plesk are now correctly synchronized to DigitalOcean. (EXTPLESK-1677)
  • CAA records created in Plesk are now correctly synchronized to DigitalOcean.(EXTPLESK-1745)

SSL It! 1.3.2

  • Managing a domain’s SSL/TLS certificates using Internet Explorer no longer results in a blank page. (EXTSSLIT-822)

PHP Composer 1.0.6

  • Opening PHP Composer in Internet Explorer no longer results in a blank page. (EXTPHPCOMP-128)

WordPress Toolkit 4.7.1

  • Made nginx caching great again (well, now you can enable and disable it again). (EXTWPTOOLK-4746)

PHP Updates

  • Updated PHP 7.4 to version 7.4.5.
  • Updated PHP 7.3 to version 7.3.17.
  • Updated PHP 7.2 to version 7.2.30.

WordPress Toolkit 4.7.0

  • WordPress Toolkit now can update paid plugins & themes, if these updates are available in the WordPress admin area. Note that certain plugins and themes do not support automatic updates, but display notifications about update availability anyway. This particulal scenario isn’t fully supported yet.
  • WordPress administrators now have the option to disable the execution of wp-cron.php via default WordPress mechanism. Enabling this option will automatically create a regular scheduled task in Plesk, which means users can manually adjust the frequency of wp-cron.php task execution on a per-site basis.
  • “Updates” window now displays Changelog links for plugins and themes.
  • It’s now possible to filter WordPress sites in the “Installations” list by their labels.
  • Reduced the number of screenshot creation timeouts.
  • Exterminated redundant backslashes in non-English email notifications. (EXTWPTOOLK-4699)
  • Remote WordPress sites connected via plugin can now be properly updated again. (EXTWPTOOLK-4622)
  • WordPress Toolkit now works again on Windows 2012 R2, if access to Plesk via port 443 is enabled. (EXTWPTOOLK-4166)
  • Creation time of restore points is not updated anymore if data copy or update procedure is carried out without creating a new restore point. (EXTWPTOOLK-4115)
  • Updates for manually uploaded plugins and themes will now be visible in the interface if they become available in WordPress admin area. (EXTWPTOOLK-1785)

SSL It! 1.3.1

  • On CentOS 6 servers, automatic renewal of SSL/TLS certificates issued via the Let’s Encrypt extension no longer fails. (EXTSSLIT-821)

Advisor 1.8.1

  • Adjusted the logic for the “Plesk Email Security” recommendation.

Advisor 1.8

  • Plesk Advisor now recommends installing the Plesk Email Security extension.

Plesk Obsidian 18.0.26

  • With this update (18.0.26) Plesk Obsidian is now considered to be a “stable” (late adopter) release.

    Late adopter release. By the time this tier becomes available, the latest Plesk version has been out long enough to have most of its nagging issues discovered and fixed. You can be certain that the Plesk version you are about to install has already been used in production environments for some time, and there are no major issues that could compromise the stability of your Plesk servers.

  • Which domain to use to access Plesk via the standard HTTPS port can now be configured via the Plesk GUI. Go to Tools & Settings and look for Customize Plesk URL (under “General Settings”).
  • Domains with the “Forwarding” hosting type now support HTTPS. The support for securing such domains with Let’s Encrypt certificates via the Let’s Encrypt extension will be added later. (PPP-42238)
  • Plesk interface no longer partially fails to load on Plesk Obsidian servers protected by CloudFlare with RocketLoader enabled. Still, we do not recommend using RocketLoader with Plesk, as not only it will not speed up UI rendering, but may slow it down and cause UI to flicker.
  • Certain Plesk features (Web Users, Web Presence Builder, and Website Copying) that are hidden in Dynamic View by default can now be returned to the Plesk interface by adding the following lines to the panel.ini file:

    [dynamicList]
    enableFeatures = webusers, sitebuilder, sitecopy
    
  • Updated xdebug to version 2.9.4.
  • Updated uuid to version 1.1.0.
  • Updated sw-engine to version 2.27.6.
  • Updated sw-engine PHP to version 7.3.16.
  • The File Sharing and Bandwidth Limiting (mod_bw) components will be deprecated in the next Plesk Obsidian release (18.0.27). Learn more.
  • The “PHP Settings” button is no longer missing in Power User view on Plesk servers with the Restricted Mode turned on, “PHP version and handler management” enabled, and “Hosting settings management”, “Common PHP settings management”, and “Setup of potentially insecure web scripting options that override provider’s policy” disabled. (PPPM-11542)
  • The “Activate the mail service” checkbox is no longer shown to customers during domain creation if their service plan does not include access to mail. (PPPM-11626)
  • The date of the last backup is once again correctly written to the “BackupsSettings” table of the Plesk database. (PPPM-11721)
  • Scheduled backups are now properly stored for X weeks instead of X days (X is determined by the value of the “Keep backup files for X weeks” option). (PPPM-11796)
  • Full backups are no longer created instead of incremental ones if the server hostname contains one or more uppercase characters. (PPPM-11825)
  • Browsing the Application Vault no longer results in the “Package with UID ‘’ not found” error. (PPP-48152)
  • Storing a backup on Microsoft One Drive no longer fails if One Drive erroneously reports 0 GB free space remaining and the “Start the backup only if your server has the sufficient amount of free disk space” option is enabled. (EXTPLESK-1716)
  • The pleskrestore utility can now be called via REST API. (EXTREST-112)

Linux

  • Added the ability to set priority for backup processes. Go to Tools & Settings > Backup Manager (under “Tools & Resources”), click “Settings” and look for the “Run scheduled backup processes with low priority” and “Run all backup processes with low priority” options. (PPPM-10734)
  • On Ubuntu 16.04 x64 servers, the installed iptables version is now returned correctly. (PPPM-9487)
  • Running plesk repair db -y on a newly installed Plesk Obsidian server that has not yet been initialized no longer makes later attempts to initialize the server fail. (PPPM-11446)
  • Changing a customer’s password no longer results in the “The external email address matches the primary one” error if the “Enable mail management functions in Plesk” option is disabled in Tools & Settings > Mail Server Settings (under “Mail”). (PPPM-11745)
  • Custom error pages are now displayed correctly for domains served by nginx only. (PPPM-11748)
  • Domains can now be added to the mail server blacklist if the Plesk interface language is set to German. (PPPM-11766)
  • Read email messages fetched via the POP3 protocol are no longer marked as new after switching from Courier 5 to Dovecot. (PPPM-11776)
  • On newly installed Plesk Obsidian servers the server IP address is now automatically added to the Fail2Ban trusted IP addresses list. (PPPM-11777)
  • On CentOS 8 x64 servers, checking the status of the firewall via the systemctl status psa-firewall command no longer results in an error. (PPPM-11795)
  • Updating Plesk no longer makes the names of some mail folders to become unreadable. (PPPM-11801, PPPM-11807)
  • On Plesk servers using apache in tandem with nginx, clients’ IP addresses are now correctly logged in /var/log/httpd/access_log instead of the server’s IP address. (PPP-38930)
  • Plesk servers with Plesk Premium Antivirus installed no longer send the admin an email warning them of the “Dr.Web Updater: failed to download files” error every time scheduled tasks are processed. (PPP-45087)
  • nginx no longer returns the “504 Gateway Timeout” error when processing slow PHP scripts. (PPP-45489)
  • Plesk no longer produces the “PHP Notice: Undefined variable: locale” error under specific circumstances. (PPP-48212)
  • On CentOS 8 x64 and Red Hat Enterprise Linux 8 servers, Plesk installation and updates no longer fail if the network connection to the configured CentOS mirror is slow. (PI-658, PPP-48254)
  • On CentOS 8 x64 and Red Hat Enterprise Linux 8 servers, Plesk updates no longer fail if certain Python 3 packages are installed on the server. (PPP-48266)

Windows

  • Removed obsolete information from the notification shown when securing webmail with an SSL/TLS certificate. (PPPM-6184)
  • Creating a backup on a mapped drive via the pleskbackup.exe utility no longer fails with the “The system cannot find the path specified” error. (PPPM-11761)
  • Incremental backups now only contain new email messages instead of all email messages. (PPPM-11772)
  • Updating Plesk on a server with a Microsoft SQL Server 2017 instance no longer fails. (PPPM-11785)
  • Creating a Microsoft SQL Server database no longer fails if the limit on MySQL databases in the Service Plan is reached for the subscription. (PPP-46436)

Third-Party Component Updates

  • Updated phpMyAdmin to version 5.0.2.

Linux

  • Updated Roundcube to version 1.4.3. The “Elastic” responsive skin with full mobile device support is now enabled by default.
  • Updated OpenSSL used by nginx to version 1.1.1f.
  • Updated Dovecot to version 2.3.9.3.
  • Updated Horde ActiveSync to version 2.41.3.
  • Updated Horde Form to version 2.0.20.
  • Updated Horde Image to version 2.6.1.
  • Updated Horde Test to version 2.6.4.
  • Updated Horde Socket Client to version 2.1.3.

Windows

  • Updated .NET Core 3.1 to version 3.1.3.
  • Updated .NET Core 2.1 to version 2.1.17.
  • .NET Core 3.0 and 2.2 are no longer shipped with Plesk.
  • Updated IIS URL Rewrite Module to version 7.2.1993.

SSL It! 1.3.0

  • Changed the way how you customize the list of SSL/TLS certificates offered by SSL It!:
    • You can now do so in the extension’s interface and via the CLI.
    • The previous way of customization (via panel.ini) is no longer available. The corresponding panel.ini setting filteredProducts is now deprecated. If you used customization via panel.ini, use the CLI commands instead.
    • Already done customizations continue working after the extension’s update.
  • The extension now uses the same CA bundle that comes with Plesk.
  • In Plesk Obsidian, the SSL It! security indicator on a domain card works significantly faster, which makes a difference for servers with a large number of domains.
  • Removed the additional check of SSL/TLS certificates implemented because of the Let’s Encrypt bug. The check is no longer relevant.
  • Issue of an SSL/TLS certificate no longer fails with the “Domain alias not found by id=
” error if the corresponding certificate order had had an associated domain alias that was then deleted while the order was pending. (EXTSSLIT-677)
  • A 500 HTTP error no longer occasionally occurs when users try to access the “SSL/TLS Certificates” screen of certain subscriptions. (EXTSSLIT-678)
  • The extension now correctly displays the security status of domains secured with SSL/TLS certificates from DigiCert if the domains’s names are mixed-case. (EXTSSLIT-745)
  • The extension now correctly displays the security status of a domain secured with a wildcard SSL/TLS certificate if the certificate was previously assigned to another domain. (EXTSSLIT-769)
  • The extension now correctly detects the “Keep websites secured” option state for domains created under a service plan that had both the SSL It! and WordPress Toolkit services selected. (EXTSSLIT-754)

Site Import 1.4.4

  • Mail importing now works if the target server is remote SmarterMail 100. (PMT-4764)
  • Improved stability of mail importing if the target server is remote SmarterMail 100. (PMT-4765)

SEO Toolkit 1.1.9

  • Fixed issues related to a number of available keywords in Rank Tracker.
  • Other internal fixes.

Git 1.1.4

Linux

  • In Git version 2.16.0 and later, it is now possible to clone a remote Git repository even if it uses a non-standard SSH port. (EXTGIT-106)
  • When the git-helper utility is executed, the utility name is now shown. (EXTGIT-107)

Plesk Migrator 2.19.2

  • Migration now works if the source or target server is remote SmarterMail 100. (PMT-4754)
  • Improved stability of migration if the target server is remote SmarterMail 100. (PMT-4760)
  • If the protected directory name contains the dot (.) character, the name of the protected directory user is no longer changed during migration. (PMT-3317)

Advisor 1.7.6

  • Fixed the issue with incorrect links in the “Secure Websites With SSL/TLS Certificates” recommendation. (EXTADVISOR-808)

Advisor 1.7.5

  • The free Comodo rule set became the default one in Advisor. On OSes where the Comodo rule set is not available, the free OWASP rule set became the default one.
  • Clicking the “Upgrade” button now opens the SSL It! extension’s screen. (EXTADVISOR-801, EXTADVISOR-802)
  • Fixed an invalid domain link provided by the “Secure Websites With SSL/TLS Certificates” recommendation. (EXTADVISOR-768)
  • If ModSecurity is turned off, the “Configure ModSecurity & Fail2ban” recommendation can be now applied without PHP warnings in logs. (EXTADVISOR-772)
  • After Fail2ban was disabled in panel.ini and then the “Configure ModSecurity & Fail2ban” recommendation was applied, the “pm_Exception: Could not enable jails” error is no longer shown. (EXTADVISOR-789)
  • Fixed license-related issues during ModSecurity and Fail2ban activation. (EXTADVISOR-798)
  • If Advisor could not enable ModSecurity with the Comodo rule set, ModSecurity is now enabled with the free OWASP rule set as the default one. (EXTADVISOR-803)
  • Unnecessary “PHP Deprecated Construction” error messages are no longer written to panel.log during Advisor installation. (EXTADVISOR-689)

Plesk Obsidian 18.0.25 Update 2

Linux

  • Fixed conversion to UTF-8 in Plesk with Dovecot when mailnames without mailboxes exist. (PPPM-11757)

Let’s Encrypt 2.9.0

  • After Plesk cloning, the extension now tries to automatically secure cloud images and cloned images of Plesk Obsidian with SSL/TLS certificates from Let’s Encrypt.
  • After Plesk was initialised, the extension now tries to automatically secure Plesk with an SSL/TLS certificate from Let’s Encrypt.
  • The extension now uses POST requests instead of GET requests in accordance with the Let’s Encrypt decision.
  • Removed the additional check of SSL/TLS certificates implemented because of the Let’s Encrypt bug. The check is no longer relevant.
  • The extension now automatically secures both 8443 and 443 ports during Plesk Obsidian installation. (EXTLETSENC-679)
  • If the DNS server is disabled, error messages are no longer shown in panel.log after wildcard SSL/TLS certificates were issued. (EXTLETSENC-707)
  • In Plesk for Linux, the “Exception: PHP Warning: array_filter” error messages are no longer reported when issuing wildcard SSL/TLS certificates. (EXTLETSENC-720)
  • A clear error message is now shown when users try to issue wildcard SSL/TLS certificates but the corresponding feature is disabled. (EXTLETSENC-741)
  • Auto-renew of SSL/TLS certificates no longer fails after a secured domain or subdomain was renamed. (EXTLETSENC-768)
  • Decreased the possibility of rare issues when IDN domains could not be secured with SSL/TLS certificates from Let’s Encrypt. (EXTLETSENC-573)

PHP Updates

  • Updated PHP 7.4 to version 7.4.4.
  • Updated PHP 7.3 to version 7.3.16.
  • Updated PHP 7.2 to version 7.2.29.

Plesk Obsidian 18.0.25 Update 1

  • If the limitations on outgoing email messages are turned on in the mail server settings, Outgoing Mail Control no longer reports false positive and false negatives results on the Home screen. (PPP-48115)

Windows

  • Mail in the SmarterMail mail server can be now backed up if a mail account’s password was changed via the SmarterMail client. (PPPM-11684)
  • Mail in the SmarterMail mail server can be now backed up without the “Unable to back up message Inbox/1.1: Syntax error in ENVELOPE.” warning. (PPPM-11719)

Docker 1.4.6

  • The extension can now be installed on CentOS 8/RHEL 8. (EXTDOCKER-98)
  • After being installed on CentOS 8/RHEL 8, Docker Remote Node Management no longer shows an unclear error message. (EXTDOCKER-87)
  • It is now possible to specify environment variables whose names contain the period character (“.”). (EXTDOCKER-99)
  • After being installed in Plesk Obsidian for Linux, the extension is now available and does not show the the “Permission denied” error. (EXTDOCKER-95)

Plesk Migrator 2.19.1

  • If a database that is being migrated already exists on the target server but not registered in Plesk, the database is no longer overwritten with one from the source server. Plesk now detects such issues, does not migrate the database, and shows a warning message. (PMT-4723)
  • Migration from cPanel no longer fails if a password of the source database server is enclosed in single quotes. (PMT-4751)

Plesk Obsidian 18.0.25

  • Plesk now support CentOS 8/RHEL 8 (installation and migration). Note that a number of limitations exist.
  • Mail autodiscover now works for Microsoft Outlook 2019/O365 mail clients. (PPPM-11428)
  • As a part of GDPR compliance changes: added the cookie information banner shown the first time users log in to Plesk. Users can now also set their cookie preferences in Plesk (using the corresponding button on the banner or going to Tools & Settings > Cookies in Plesk (under “Plesk”)).
  • It is now possible to check for Plesk updates on the Home screen.
  • Users from areas embargoed under Internal Export and Sanctions Compliance Policy can no longer use Plesk with a trial license. When the users proceed with a trial license, they see a message that Plesk is not currently available in their regions.
  • The Plesk default password strength policy is now set to “Strong” on new Plesk Obsidian servers. Existing Plesk servers that were updated to Plesk Obsidian 18.0.25 keep their chosen password strength policies.
  • Removed the Cloudflare from Plesk Autoinstaller.
  • Retrieving keys now works correctly (a 502 Bad Gateway error is no longer shown) on servers with a large number of customers, resellers, or additional users (more than 700). (PPPM-11672)
  • Backing up large databases (more than 50 GB) no longer fails. (PPPM-11535)
  • It is now possible to use custom buttons with Dynamic List view. (PPPM-11584)
  • Customers and additional users can no longer create subscriptions. (PPPM-11680)
  • The server backup can now be created if a customer login contains the forward slash character (“/”). (PPPM-11640)
  • A database user whose password is encrypted can now import and export the domain database after providing the database password. (PPPM-7968)
  • Extensions with EventListener can no longer break Plesk. (PPPM-11656)
  • Plesk email notifications are no longer blocked by SPF in Plesk Obsidian 18.0.23 Update 2 and later. (PPPM-11537)
  • The plesk bin pleskbackup server --exclude-domain command can now again exclude domains from a server backup. (PPPM-11695)
  • Backing up to FTP storage no longer fails if the destination folder contains non-ASCII characters. (PPPM-11704)
  • Headers of Plesk email notifications are now correctly displayed if the sender’s name contains UTF-8 characters. (PPPM-11667)
  • Setting IPv6 addresses to none in Web Hosting Access of a domain no longer removes TXT records for the domain. (PPPM-11648)
  • A Plesk server created by cloning no longer has an IP address of the template server. (PPPM-11718)

Linux

  • Updated sw-engine to PHP 7.3.15.
  • The main IP address is now correctly detected even under specific IP configurations. (PPPM-11484)
  • Fixed the issue when, occasionally after Plesk cloning, nginx was not running and IP mapping was incorrect. (PPPM-11701)
  • It is now possible to restore backups that have a mailing list without its owner. (PPP-47723)
  • Plesk on a Lenovo Cloud server is no longer detected as a dedicated server. (PPPM-11660)
  • Subscription backups can now be created and stored in an NFS storage. (PPP-46555)
  • Mail folders whose names contain umlauts (Ă€, ö, ĂŒ) are now displayed correctly after update from Plesk Onyx to Plesk Obsidian. (PPPM-11200)
  • The check on SMTP ports 25 and 587 can no longer return false-positive results. (PPPM-11528)
  • It is now possible to create a scheduled backup of a subscription with an add-on domain is the main subscription’s domain is suspended. (PPPM-11698)
  • A server backup can now be restored without the “An error occurred while setting MAPS zones:” error message if more that one zone was set. (PPPM-11609)
  • Deleting the CA part of an SSL/TLS certificate no longer causes an error. (PPPM-5892)
  • Installing Plesk via https://get.plesk.com no longer fails with the “Installation to the host has been already started” error if there has been an aborted or unsuccessful attempt to install Plesk on a server with the same IP address in the past. (PPPM-11275)

Windows

  • Maintenance mode is now turned on immediately when the cloning tool is executed.
  • Subscriptions with the SmarterMail mail server can be now backed up correctly without multiple warning messages. (PPPM-11682)
  • IIS logs are now rotated. (PPPM-11651)
  • Numerous interface_async_executor.exe processes no longer hinder Plesk work because their number is now limited. (PPPM-11677)
  • Technical reports are now correctly created and, if any issues happen, they are clearly reported. (PPPM-11644)

Third-Party Component Updates

Linux

  • Updated ProFTPD to version 1.3.6c, which includes a fix for a security issue. We strongly recommend that you update Plesk.

Windows

  • Microsoft Drivers for PHP for SQL Server are now shipped with PHP 7.4.
  • Updated Microsoft ODBC Driver 17 for SQL Server to version 17.5.1.1.

Syslog Watch 1.2.1

  • Logs are now automatically updated when the “Automatically append log content” option is enabled. (EXTPLESK-390)

WordPress Toolkit 4.6.0

  • WordPress administrators can now automatically update their website URL in the WordPress database and wp-config.php file based on the actual current URL. This procedure is particularly useful after migrating a website from a different location like your local workstation. The Update Site URL feature is available in the “hamburger” (context drop-down menu) on a WordPress site card.
  • CLI utility for the Clone feature was added. It can be accessed through the plesk ext wp-toolkit --clone command.
  • CLI utility for the Data Copy feature was added. It can be accessed through the plesk ext wp-toolkit --copy-data command.
  • Remote sites with modified meta tag generators can now be properly connected to WordPress Toolkit, and their WordPress version is now properly detected. (EXTWPTOOLK-4468)
  • It is now possible to install WordPress via CLI if the document root path is specified as / or \. (EXTWPTOOLK-4457)
  • WordPress administrators are no longer forced to reapply security measures due to automatic WordPress core updates flagging the site as insecure. (EXTWPTOOLK-4127)
  • WordPress Toolkit now works on Internet Explorer 11 because what is dead may never die. (EXTWPTOOLK-4392)
  • Smart Updates of WordPress Core no longer fail with the “Exception: Warning: Failed to fetch checksums. Please cleanup files manually” error. (EXTWPTOOLK-4195)
  • Interactive elements and text in the headers of the sliding screens are now much more visible even when a customized color scheme is used. (EXTWPTOOLK-3612)
  • Additional services added to Plesk by WordPress Toolkit are now shown properly on Plesk Obsidian. (EXTWPTOOLK-3408)
  • Scan operation is no longer stuck if a website with a root symlink is found. (EXTWPTOOLK-3096)
  • Updates check task no longer fails if a domain with a WordPress site was changed from physical hosting to something else. To tell you the truth, it has been working properly for several years, we simply didn’t know for sure when exactly this bug was fixed. Well, better late than never! (EXTWPTOOLK-1042)

Plesk Migrator 2.19.0

  • The extension can now migrate mail if the source mail server is SmarterMail 100.
  • The extension can now be installed in Plesk on CentOS 8.
  • After migrating mail, actual dates when emails were received are no longer changed to the date of migration on certain mail clients (for example Apple Mail). (PMT-4559)

Advanced Monitoring 1.3.0

  • It is now possible to select the graphs you want to be displayed on the extension’s tabs. To do so, go to Advanced Monitoring and then click Settings > Customize.
  • It is now possible to configure the extension via the CLI (run plesk ext monitoring --help to see the CLI commands).
  • Useless “OK” notifications are no longer shown after Plesk or Advanced Monitoring are installed.
  • Resolved compatibility issues with the upcoming Plesk Obsidian 18.0.25. (EXTPLESK-1670)
  • Fixed the Grafana bug about the missing datepicker. (EXTPLESK-1616)
  • Made the Advanced Monitoring notifications less noisy: they are now automatically hidden after a few seconds. You no longer need to close each notification manually. To read the notifications that you have hidden, click the bell icon in the upper right corner of the screen. (EXTPLESK-1575)
  • The “Check server health” button (shown on Advanced Monitoring warning notifications) now redirects to the exact tab with the resource usage graph whose threshold was exceeded. (EXTPLESK-1484)

Grafana 1.1.4

  • It is now possible to configure the extension via the CLI (run plesk ext grafana --help to see the CLI commands).
  • Resolved compatibility issues with the upcoming Plesk Obsidian 18.0.25. (EXTPLESK-1670)
  • The extension can now be opened in Plesk Mobile App for iOS and Android. (EXTPLESK-1384)

Let’s Encrypt 2.8.7

  • Let’s Encrypt has found a bug and revokes some of its SSL/TLS certificates on March 4. This improvement solves the issue. The Let’s Encrypt extension will check domains as a part of the “Autorenew” feature, then will renew and replace affected Let’s Encrypt certificates. Future autorenew tasks will be done as usual when SSL/TLS certificates are about to expire.

    To turn off the check and replacement of Let’s Encrypt certificates affected by the bug, add the following lines to the panel.ini file:

    [ext-letsencrypt]
    renew-lets-encrypt-revoked-certificates = false
    

SSL It! 1.2.2

  • Let’s Encrypt has found a bug and revokes some of its SSL/TLS certificates on March 4. This improvement solves the issue. The SSL IT! extension will check domains as a part of the “Autorenew” feature, then will renew and replace affected Let’s Encrypt certificates. Future autorenew tasks will be done as usual when SSL/TLS certificates are about to expire.

    To turn off the check and replacement of Let’s Encrypt certificates affected by the bug, add the following lines to the panel.ini file:

    [ext-sslit]
    renewLetsEncryptRevokedCertificates = false 
    

PHP Updates

  • Updated PHP 7.4 to version 7.4.3.
  • Updated PHP 7.3 to version 7.3.15.
  • Updated PHP 7.2 to version 7.2.28.

Site Import 1.4.3

  • Website import can now be again launched. (PMT-4694)
  • After importing mail, actual dates when emails were received are no longer changed to the date of import on certain mail clients (for example, Apple Mail). (PMT-4559)
  • If the source Linux server has a custom umask set up (other than 0022), website import no longer fails with an error. If the target server has a custom umask set up, a website now correctly works after migration. (PMT-4730)

LDAP Auth 2.1.2

  • Added error logging for failed cURL requests.

Plesk Obsidian 18.0.24

  • Updating Plesk Onyx to Plesk Obsidian now also replaces the old default pages with brand new ones introduced in Plesk Obsidian 18.0.21 (unless the default pages have been customized, in which case they are not replaced).
  • Plesk Administrator can now force all subscriptions to only use the Dynamic, Active, or Classic list by adding the following lines to the panel.ini file:

    [navigation]
    forceWebsiteList = dynamic (or = active, or = classic)
    

    It is also possible to hide one or more options from the list:

    [navigation]
    hideWebsiteList = active, classic
    
  • The FileServer component is no longer supported. It will no longer be installed on new Plesk Obsidian servers, but updating to Plesk Obsidian 18.0.24 will not affect this component if it was already installed.
  • A new SDK method pm_Domain::getHostingParam has been introduced. It is used for retrieving information about hosting settings of domains. The method enables user-created extensions to use SDK instead of API RPC or direct database queries.
  • File indexing was improved for the purposes of creating backups. Plesk no longer tries to include removed files in backups. (PPPM-6486)
  • When moving addon domains between subscriptions, users are now warned that any databases owned by those domains must be reassigned manually.
  • .webp files can now be used with the plesk bin branding_theme utility to apply custom themes to Plesk Obsidian. (PPPM-11426)
  • Accidentally removed SSL/TLS certificates are now automatically restored from the Plesk database when a domain’s hosting settings are changed.
  • Backing up a subscription with one or more mail accounts with the autoresponder enabled no longer results in the “Unable to back up autoresponder settings.” error if no mail server is installed. (PPP-47307)
  • Plesk no longer allows the creation of non-TXT DNS records containing the underscore (“_”) character. Having one or more such records in a DNS zone hosted in Plesk caused the bind DNS server fail to start. (PPPM-11448)
  • Email notifications sent by Plesk servers no longer contain the duplicate “Content-Type” header, which caused them to be bounced during local delivery. (PPPM-11530)
  • Dumps of MySQL databases are now correctly included in server-wide Plesk backups. (PPPM-11575)
  • Creating a backup no longer fails if usernames of one or more clients being backed up contain the ampersand (“&”) character. (PPP-47205)
  • Passive mode is now turned on by default in the FTP storage settings. (PPPM-11461)
  • Creating a full server backup no longer produces misleading error messages if the cuBackupRestoreHelper.php file is corrupted. (PPP-47304)
  • Backing up a subscription no longer results in an invalid backup if the subscription’s DNS zone contains one or more DNS records of the type “none”. (PPP-47209)
  • Backing up a subscription no longer fails if one or more files or directories owned by the subscription could not be read at the time of backup creation (Note: unreadable files and directories are not included in the resulting backup). (PPP-47164)
  • Creating a full server backup no longer results in an invalid backup if certain fields in the backup properties have empty values. (PPP-47207)
  • Plesk email notifications are now shown in Thunderbird 68.4.2. (PPP-47282)
  • It is now possible to upload a file whose name contains square brackets ([ or ]) via File Manager. (PPPM-5294)
  • Replaced the “Call to a member function getErrorObjects() on null” error message with a more meaningful one when a backup, under certain circumstances, fails to be created. (PPP-47502)
  • It is no longer possible to secure anything with an invalid SSL/TLS certificate whose *.crt part is missing. (PPPM-11458)
  • If the mail service for a domain or a subscription (for example, example.com) is disabled, the plesk bin subscription -i example.com command no longer fails. (PPP-45257)
  • A directory with the “0” name can now be opened in File Manager. (PPPM-11541)
  • A reseller can now install an SSL/TLS certificate via an XML-RPC request without specifying the ip_address option value. (PPPM-11577)
  • Updating to Plesk Obsidian now preserves a custom branding and color scheme (if it is set) and no longer changes it to the default Obsidian color scheme. (PPPM-11511)
  • If the DNS component is not installed, running the plesk repair all -y command no longer shows the “The NS configuration file 
 is absent” error. (PPPM-11479)
  • Access from property now works again in API RPC. (PPPM-11559)
  • Removing an IPv6 IP address registered in Plesk no longer fails with the “Cannot remove the IP address” error. (PPPM-3818)

Linux

  • Accessing AWStats data for domains hosted in Plesk no longer results in the “404 Not Found” error. (PPPM-11342)
  • Creating a backup on a Plesk Server with the “Acronis Backup” extension installed no longer results in the “Not all the data from /usr/local/psa/var/modules/acronis-backup/ was backed up successfully.” error. (PPPM-11587)
  • Creating a backup on a Plesk Server with the “Fail2Ban” component removed no longer results in an unnecessary warning. (PPPM-11521)
  • Restoring a subscription no longer results in a warning if the subscription’s system user is using the “bash (chrooted)” shell and the chrooted template has been customized. (PPPM-11515)
  • Downloading a large backup file (10 GB or more) from Plesk no longer fails with the the “Network Error” message shown in a browser. (PPP-44962)
  • The issue with the plesk repair utility that could not fix issues with the missing libmyodbc5.so package is no longer relevant because Plesk now uses its own plesk-libmaodbc driver. (PPP-37827)
  • “Mail for Non-Existent Users” can now be enabled even if the “Bounce with message” text field is empty. (PPPM-11556)
  • When restoring a number of domains from a backup, SSL/TLS certificates that secure these domains are now also restored. (PPPM-9686)
  • Webserver Configuration Troubleshooter no longer shows that some configs are broken when they are actually not after reconfiguration (for example, after domain’s hosting settings were changed but these changes did not propagate yet). (PPPM-6752)
  • Plesk now shows an explicit message what to do with custom web server configuration templates (if any) during update to Plesk Obsidian. (PPPM-11580)
  • SSL/TLS certificates from Let’s Encrypt can now be used for client certificate authorization. (PPPM-11544)
  • Custom error pages now work when nginx-only hosting is enabled. (PPPM-8889)
  • On Ubuntu and Debian, the plesk repair utility no longer hangs in case of apt-get returning an error. (PPPM-10348)

Windows

  • Node.js 12 is now supported.
  • The maximum allowed length of FTP users’ logins was increased to 20 characters.
  • Long tasks now fail with an error message instead of silently getting stuck and never starting if the psaadm and Plesk Administrator users are assigned the “Deny log on as a batch job” security policy. (PPPM-11429)
  • Backing up a subscription no longer results in an error message if one or more files owned by the subscription are deleted as the subscription is being backed up. (PPP-47210)
  • When Plesk is set up with a remote SmarterMail server, backing up a subscription with mailboxes no longer shows the “Provider ‘SmarterMail Remote’ cannot list mail mesages.” warning. (PPP-47305)
  • Calculating web statistics of the parent domain no longer fails with the “The system cannot find the path specified. (Error code 3)” error after a browsed add-on domain of the parent domain was deleted. (PPPM-11456)
  • Creating a new domain or enabling the mail service on the existing domain no longer occasionally fails with the “mailmng failed: Loaded Postoffice Configuration Provider (MEAIPO.DLL) MEAOPO.PostOffice.AddPostOffice failed” error. (PPP-42721)
  • Plesk Reconfigurator now allows to change the virtual hosts location to a directory on a disk volume with the ReFS partition. (PPP-46513)
  • The rotation date of the php_error.log file of a domain is now counted based on the file creation date. (PPPM-11104)
  • The SpamAssassin training is now completed without any issues even some emails contain non-UTF-8 characters. (PPPM-11456)
  • If an IPv6 address goes before an IPv4 one in the database, the plesk repair ftp command run for a domain no longer shows the “The domain name 
 resolves to another IP address” warning. (PPPM-11405)

Third-Party Component Updates

Windows

  • Updated MySQL ODBC connector 5.3 to version 5.3.14.
  • Updated Node.js 12 to version 12.14.1

Let’s Encrypt 2.8.6

  • If an automatic renewal of a Let’s Encrypt certificate fails with the “Detail: Order’s status (“pending”) is not acceptable for finalization” or “Detail: No order for ID *****” error, the order is removed automatically. The next automatic renewal should complete with no errors. (EXTLETSENC-782)

Plesk Obsidian 18.0.23 Update 4

  • Plesk no longer “forgets” the IP address selected as the address to send mail from in “Tools & Settings” > “Mail Service Settings” > “Outgoing mail mode”. (PPPM-11533)
  • Backing up one or more subscriptions no longer results in an invalid backup if certain information related to those subscriptions is missing from the Plesk database. (PPPM-11564)

Linux

  • Backing up one or more subscriptions with one or more capital letters in the name (for example, “Example.Com”) no longer results in an error message. (PPP-47446)

Windows

  • Backing up one or more subscriptions with wildcard subdomain no longer fails with the “Exception: PHP Warning: mkdir(): Invalid path” error. (PPP-47443)

Let’s Encrypt 2.8.5

  • If users face the “No order for ID” error when they renew their SSL/TLS certificates, the extension fixes the error in the background and the users are asked to issue an SSL/TLS certificate once again, which helps in most cases. (EXTLETSENC-765)

Plesk Obsidian 18.0.23 Update 3

  • Backing up a subscription when the logs folder of the subscription’s domain is deleted no longer shows an unnecessary warning message. (PPP-47351)
  • Backing up a subscription when the statistics folder of the subscription’s domain is deleted no longer shows an unnecessary warning message. (PPP-47352)
  • Backing up a server when the extensions’ data folders are deleted (for example, the /usr/local/psa/var/modules/patchman folder) no longer shows an unnecessary warning message. (PPP-47353)
  • Backing up a subscription when its DKIM spam protection is turned on but the corresponding domain keys are missing (for example, because the DNS support is turned off) no longer shows an unnecessary warning message. (PPPM-11503)
  • A server backup no longer fails when the TmplData table of a server reseller plan contains the ‘phpSettingsId’ setting. (PPP-47356)
  • Domains can be now removed after switching from the Dynamic List to the Classic List view. (PPP-47098)

WordPress Toolkit 4.5.1

  • Proper text is now displayed instead of placeholders for filter names on Mass Update and Mass Security screens. (EXTWPTOOLK-4324)
  • Trying to retrieve Jetpack plan status on a site with Free Jetpack plan should not return a weird error anymore. (EXTWPTOOLK-4323)
  • WordPress can now be correctly installed without triggering the “Unable to download the WordPress package” error caused by a bug in Guzzle client. (EXTWPTOOLK-4326)
  • Users will no longer see a scary “500 Exception Permission Denied” server error when switching to a subscription without access to WordPress Toolkit. (EXTWPTOOLK-4165)
  • Smart Updates do not repeatedly fail with the same “plugin not found” task error anymore. (EXTWPTOOLK-4176)

Advisor 1.7.4

  • The high and the highest server ratings are now shown correctly as a text and not as locale keys. (EXTADVISOR-784)

G Suite 1.0.0

  • Initial release

Amazon Route 53 2.7.3

  • CAA records in Plesk can now be synced with Amazon Route 53. (EXTPLESK-1611)
  • Installation of the extension in Plesk Obsidian no longer produces PHP error messages written to /var/log/plesk/panel.log in Plesk for Linux and %plesk_dir%\admin\logs\php_error.log in Plesk for Windows. (EXTPLESK-1143)

Advisor 1.7.3

  • Resolved a number of compatibility issues with Plesk Obsidian 18.0.24. (EXTADVISOR-776)

WordPress Toolkit 4.5.0

  • Users can now mark their sites with one of the predefined labels (for example, “Staging” or “Production”) for easier identification.
  • Commercial Jetpack plugin plans can now be purchased in the plugin installation interface by end-customers. To disable this ability on the server, add jetpackPluginUpgradeEnabled = false to your panel.ini file.
  • WordPress Toolkit can now properly clone and Smart Update sites on Linux OSes, if their wp-config.php file is set to read-only. (EXTWPTOOLK-4216)
  • Database dumps created during cloning are now properly removed if database import failed during the cloning for some reason. (EXTWPTOOLK-4131)
  • WordPress Toolkit no longer apologetically displays [object Object] message when users are clicking on “Remove” to remove a site without selecting anything. (EXTWPTOOLK-4159)
  • Plugin and theme images in the plugin or theme installation dialogs no longer occupy much more space than allowed on Plesk Obsidian in Safari. (EXTWPTOOLK-3992)
  • Preview screenshots no longer occupy much more space than allowed on Plesk Obsidian in Safari. (EXTWPTOOLK-3990)
  • WordPress Toolkit update no longer fails due to migration package dependencies. (EXTWPTOOLK-3981)
  • Site counters are no longer visually glued to filter names on “Updates” and “Security” screens for several sites. (EXTWPTOOLK-3827)
  • Fixed several translation issues.

PHP Updates

  • Updated PHP 7.4 to version 7.4.2.
  • Updated PHP 7.3 to version 7.3.14.
  • Updated PHP 7.2 to version 7.2.27.

Linux

  • Updated Xdebug to version 2.9.0 for PHP 7.3 and 7.4.

Plesk Obsidian 18.0.23 Update 2

Linux

  • DKIM and DMARC can be now enabled for a server whether the DNS component is installed or not. (PPP-47270)

SSL It! 1.2.1

  • It is now possible to enable solely HSTS: without turning on additional HSTS options “Include subdomains” and “Apply to webmail”. (EXTSSLIT-676)
  • Fixed the extension’s UI that was broken in Plesk Obsidian 18.0.23. (EXTSSLIT-681)

PHP Composer 1.0.5

  • On servers with Plesk Obsidian 18.0.23 or later, the UI for specifying environment variables for Composer is no longer malformed. (EXTPHPCOMP-111)

Plesk Obsidian 18.0.23 Update 1

Linux

  • On Plesk servers without an installed DNS server, updating to Plesk Obsidian 18.0.23 no longer results in an internal error when trying to access mail setting. (PPPM-11478)

Plesk Obsidian 18.0.20 Update 3

  • Fixed an issue that prevented some Plesk Obsidian 18.0.20 servers from updating. (PPP-46986)

Plesk Obsidian 18.0.23

  • Webmail for domains with no physical hosting can now be secured with SSL/TLS certificates. Support for securing such domains with Let’s Encrypt certificates via SSL It! will come at a later date.
  • Support for Apple Mail was added to the “Configure Email Client” page.
  • Plesk administrator can now specify a custom domain name for mail autodiscover in “Tools & Settings” > “Mail Server Settings”.
  • Mobile configuration files generated in Plesk to enable mail autodiscover are now signed with the domain’s or the server’s SSL/TLS certificate.
  • Redesigned the Plesk notifications’ interface with improved navigation and better placement of Call to Action buttons in mind.
  • Improved the templates used by Plesk notifications sent via email by adding paragraphs and HTML formatting.
  • Plesk now automatically checks whether the SMTP ports 25 and 587 used for sending mail are filtered. If they are, notifications are shown in the Plesk interface (in “Tools & Settings” > “Mail Server Settings” > “Settings” and “Subscriptions” > “Mail” tab > “Mail Settings”).
  • Changed the presentation of long running tasks in the Plesk UI.
  • Updated the Dynamic View to make it render better on mobile devices.
  • When configuring minimum password strength for the server, ‘Very Weak’, ‘Weak’, and ‘Medium’ choices are clearly marked as not recommended.
  • Added PHP 7.4 to the Recommended preset and removed PHP 7.2 from the Recommended preset. Removed PHP 7.1 from the Full preset.
  • The “Server Error” screen has been updated to better match the Plesk Obsidian look and feel.
  • Plesk resellers can now use the XML API “certificate” operator to generate, install, and remove SSL/TLS certificates.
  • Users switching from a trial license to a paid one will now be asked to fill a short feedback form to let us know what motivated them to become a customer. This information will help us better tailor our offering to the customers’ needs and expectations.
  • Users that have been using Plesk Obsidian for at least 30 days will now be asked to fill a short feedback form to let us know their thoughts and opinions on Plesk Obsidian. This information will help us better tailor our offering to the customers’ needs and expectations.
  • Creating a backup in the FTP storage if the available disk space is insufficient now clearly indicates how much disk space is required for the backup to finish. (PPPM-11389)
  • Subdomains for domains with names in punycode can now be created via XML API. (PPPM-11381)
  • Creating a dump of a database whose size exceeds the amount of RAM on the server no longer fails. (PPPM-11361)
  • It is now possible to switch to Power User view and back in Plesk Mobile application. (PPP-45080)
  • The length of the user name provided as an argument is now validated by all CLI utilities, avoiding situations where the execution of some utilities failed midway because the provided user name was too long. (PPPM-11393)
  • Exporting a database dump and closing the corresponding notification no longer results in the dump being downloaded for the second time if the “Automatically download dump after creation” option is enabled.(PPPM-11385)
  • Domains not owned by the currently selected subscription are not shown to the Plesk administrator in Power User view when using the Classic list and when the total number of subscriptions owned by the Plesk administrator exceeds the limit (100 by default). (PPP-46050)
  • The error message that appears when domain creation fails because a subdomain with the name ‘webmail.' already exists in Plesk now clearly states the reason for the failure. (PPPM-11411)
  • Trying to contact Plesk support via ‘Tools & Settings’ > ‘Assistance and Troubleshooting’ > ‘Support’ no longer results in a ‘HTTP 403 Forbidden’ error. (PPPM-11421)
  • You can now disable the creation of the ‘.ftpaccess’ file when creating backups to the FTP repository by adding the following lines to the panel.ini file: (PPPM-11436)

    [pmm]
    ftpForbidFtpaccessFileCreation = 1
    
  • Importing a custom Plesk theme no longer results in misleading warning messages being shown. (PPP-47049)
  • Searching for a domain name in Power User view now works as expected (click the domain name to open it) if the total number of domains exceeds the limit configured in panel.ini. (PPPM-11391)
  • Customers can no longer attempt to delete backups created by the Administrator (because such backups can only be deleted by the Administrator). (PPPM-10982)
  • HTTP POST requests to domains secured with an SSL/TLS certificate and with SEO redirect from HTTP to HTTPS enabled are no longer automatically converted to GET requests. (PPPM-11284)
  • The built-in code editor now works correctly if the Plesk locale is set to Arabic or Hebrew. (UILIB-746)
  • Updating a Plesk instance using a custom skin to Plesk Obsidian no longer results in a broken skin. Instead, the custom skin is replaced with the default Obsidian skin. (PPP-45324)
  • Additional FTP accounts for domains that are disabled can now log in to the server via FTP. (PPP-46062)
  • Updating to Plesk Obsidian no longer produces the “getSettings() must be of the type array, null returned” error. (PPP-46354)
  • On Plesk Obsidian servers with the “Subscription expiration” event enabled, Plesk now sends a single email listing all expired subscription once per day instead of sending a separate email for each expired subscription. (PPP-46442)
  • Searching for domains on mobile no longer results in an error. (PPP-46556)

Linux

  • Emails sent via sendmail (including auto-reply) now have a DKIM signature (if DKIM signing is enabled server-wide and for the sender’s domain).
  • When updating Plesk, Plesk installer now checks for issues with missing dependencies and duplicated packages before starting the update.
  • On Debian 9 servers, Plesk and extension updates no longer fail if some other apt-get or dpkg operation is running at the same time on the server. (PPP-46130, PI-616)
  • The ‘postfix’ service no longer randomly fails to start after updating the Plesk ‘postfix’ package. (PPPM-11334)
  • Restoring DNS zones from Plesk backups no longer randomly fails with the ‘Unable to manage DNS features: DNS does not return features list’ error. (PPPM-11379)
  • DMARC checks no longer result in a segmentation fault under specific circumstances, which caused errors to be written to the logs and temporary files not being cleaned up. (PPPM-10547, PPPM-7166)
  • Restoring a website with Drupal installed via the Application Catalog from a backup in Plesk no longer results in Drupal being inoperable. (PPPM-11382)
  • The ‘httpsd_access_log’ file is now rotated correctly according to the log rotation settings. Note: a number of Plesk logs are now rotated by the system logrotate (configured in /etc/logrotate.d/plesk). (PPPM-11236)
  • The ‘Mailing List’ button is no longer shown in Dynamic List view if the ‘Mailman’ component is not installed on the server. (PPPM-11409)
  • Backups stored in the FTP repository are now rotated in accordance with the rotation settings if backup rotation is enabled. (PPPM-10468, PPPM-11418)
  • HTTP > HTTPS redirect now works correctly for domains that are configured to be used to access Plesk. (PPPM-11407)
  • Changes made to the panel.ini file no longer take time to come into effect. (PPPM-11413)
  • Images accompanying the Dynamic List tour are now shown on Plesk servers that use a custom theme. (PPP-47050)
  • Plesk Installer no longer fails on CentOS 7 based Google Cloud instances with OS Login enabled. (PI-607)
  • Website Copying via FTP now correctly copies files with one or more “%” characters in the path. (PPP-44238)
  • White space characters in the SPF explanation text specified in “Tools & Settings” > “Mail Server Settings” are no longer replaced with the “%” character. (PPP-44640)
  • Entries in the web server logs containing long URLs with many special characters no longer cause the Log Browser display the logs as blank. (PPP-45326)
  • Plesk Installer now properly checks if the /var partition has enough free disk space before installing or updating Plesk. (PPP-45791)
  • Restoring a Plesk backup no longer randomly produces warnings due to the nginx restart rate getting exceeded. (PPP-46099)
  • The default SPF check failure message no longer contains an outdated link to http://www.openspf.org/ which is no longer operational. (PPP-46173)
  • Obsolete files stored in the /usr/local/psa/handlers/spool/ directory are now cleaned out on a regular basis. (PPP-46178)
  • Kaspersky Anti-Virus heuristics are now enabled by default. (PPP-46203)
  • Mailbox quota warning now works as expected after it is disabled and then enabled again in “Tools & Settings” > “Mail Server Settings”. (PPP-46278)
  • Updating to Plesk Obsidian no longer produces the “/usr/local/psa/bootstrapper/components/management-node.sh: line 1588: -D: command not found” error. (PPP-46386)
  • On CentOS 6 servers, the misleading “Information on some packages might not be actual: inconsistencies were detected in the system’s package manager database.” warning is no longer shown in “Tools & Settings” > “System Updates”. (PPP-46395)
  • Correct memory usage is now shown on the “Tools & Settings” > “Server Information” page. (PPP-46397)
  • Plesk backups no longer fail on servers with sql-mode=ANSI specified in the /etc/my.cnf configuration file. (PPP-46398)
  • On CentOS 7 servers, website logs are no longer processed by the backup manager if the “exclude log files” option is selected during backup. (PPP-46464)
  • Backing up and restoring a subscription with the “Use DKIM spam protection system to sign outgoing email messages” option enabled no longer results in the “Domain has no NS DNS record.” error. (PPP-46509)
  • On Ubuntu 16 and Ubuntu 18 servers, files created by scheduled cron tasks running under the psaadm user are now assigned the ‘644’ file system permissions instead of ‘664’ permissions. (PPP-46609)

Windows

  • ASP.NET Core 3.0 is now supported.
  • Microsoft SQL Server 2019 is now supported.
  • Added the ability to simultaneously fix the permissions for a folder as well as every other folder in the path via the plesk bin repair CLI utility:

    plesk bin repair --directory-permissions -directory "<path to the folder>" -fix-parent-dirs
    
  • Temporary files generated by PHP FastCGI processes are now stored in a separate folder inside the corresponding domain’s webroot directory.
  • Cloning a Plesk server now takes significantly less time. In addition, after cloning a server, the latest updates are automatically installed on the newly created server.
  • The information about default documents is no longer stored in individual websites’ ‘applicationHost.config’ files, unless the default documents were modified.
  • Creating a backup in Plesk no longer results in the ‘[Errno 13] Permission denied’ error. (PPPM-11374)
  • Restoring individual files from a Plesk backup after logging in to Plesk via the TCP port 443 no longer results in the ‘Warning: Permission Denied’ error. (PPP-46715)
  • Restoring large (1 GB or more) Microsoft SQL Server databases from a Plesk backup no longer results in the ‘Execution Timeout Expired’ error. (PPPM-11359)
  • Website preview no longer fails with the “HTTP Error 404 Not Found” if access to Plesk via the TCP port 443 is enabled on the server. (PPPM-11406)
  • Syncing a subscription with a customized value of the “The maximum number of worker processes” parameter with its service plan no longer fails. (PPPM-11388)
  • Switching the Plesk mail server to SmarterMail no longer fails if one or more network adapters on the server are disabled. (PPPM-11348)
  • Files uploaded via WordPress are now assigned the correct file system permissions. (PPPM-4539)
  • Clicking “Dedicated IIS Application Pool for Website” no longer results in the “Unable to manage the IIS application pool because all websites are using a single dedicated application pool.” error on Plesk servers with the “Tools & Settings” > “IIS Application Pool” > “Global Settings” > “Assignment and placement policy” option set to “Always assign one application pool to each subscription”. (PPP-45368)
  • Plesk backups are now properly compressed and take less disk space than the content that was backed up. (PPP-46132)
  • Plesk email notifications sent to external email addresses no longer fail DKIM validation checks. (PPP-46140)
  • Sending a technical report to support from the Plesk UI no longer results in the “<html><head>406 Not Acceptable</head>” error. (PPP-46487)
  • Changes made to IIS configuration during domain creation are now correctly rolled back if domain creation fails. (PPP-46562)
  • Switching the mail server from MailEnable to SmarterMail no longer fails if an alias without an email addresses but with the flag “include all domain users” was created in SmaterMail. (PPP-46652)

Third-Party Component Updates

  • Updated PHP used by Plesk to version 7.3.13.

Linux

  • Updated Postfix to version 3.4.8.
  • Updated Dovecot to version 2.3.9.2.

Windows

  • Updated Python to version 2.7.17.
  • Updated BIND to version 9.14.8.

Plesk Migrator 2.18.0

  • When migrating from cPanel to Plesk, DNS records are now migrated as well.
  • When migrating from DirectAdmin to Plesk, SSL is now enabled on the target servers for domains that had SSL enabled on the source server. (PMT-4684)
  • Migration from cPanel to Plesk no longer fails if one or more reseller-owned domains are being migrated and resellers are not supported on the target server (for example, because the Plesk administrator is in Power User view or because a license other than the Web Host Edition license is installed on the target server). (PMT-4691)
  • Gave the field for the IP address of the source server on the “New Migration” a more descriptive name. (PMT-4705)

PHP Composer 1.0.4

  • Clicking ‘PHP Composer’ > ‘Scan’ > ‘Install’ now produces an error message instead of hanging indefinitely if the contents of the composer.json file are malformed. (EXTPHPCOMP-98)
  • The composer.json property ‘prefer-stable’ is now properly taken into account when determining whether packages are up to date or not. (EXTPHPCOMP-99)

Docker 1.4.5

  • Using the ‘=’ (equal) character as the value of an environment variable no longer results in being unable to change the value of that environment variable. (EXTDOCKER-44)
  • The “Learn more” link now correctly leads to the up-to-date documentation. (EXTDOCKER-94)

WordPress Toolkit 4.4.1

  • Two secret features were added.
  • Internal security improvements.
  • Set installation tasks happening simultaneousluy with WordPress Toolkit update to v4.4 no longer cause WordPress Toolkit to be inaccessible by clients. (EXTWPTOOLK-4089)
  • WordPress installation directory field does not lose input focus anymore. (EXTWPTOOLK-4043)
  • Plugins and themes can now be properly uploaded to certain directories via CLI on Plesk Obsidian. (EXTWPTOOLK-4037)
  • Resellers can now uninstall plugins and themes uploaded by server administrators on the “Plugins” or “Themes” tab. (EXTWPTOOLK-4033)
  • In a surprise guest appearance, the status of WordPress updates is now properly refreshed in the “Keep WordPress up-to-date” advice of the Advisor extension. (EXTWPTOOLK-4032)
  • A various variety of translation issues was fixed. (EXTWPTOOLK-4022)
  • Website screenshots are now automatically updated after the installation and activation of a theme from the “Themes” tab. (EXTWPTOOLK-4005)
  • Pagination controls in the list of WordPress sites were peacefully relocated from the East of UI to the West of UI to make sure they are no longer blocked by the window with the status of ongoing tasks. (EXTWPTOOLK-3806)
  • “Don’t show me again” control on the Smart Update free trial pop-up is now working correctly. (EXTWPTOOLK-4147)

SSL It! 1.2.0

  • The SSL It! extension can now be used to secure the mail service for the domain with the domain’s SSL/TLS certificate.
  • Sped up the generation of web server configuration files for domains secured via SSL It!
  • Updated the list of trusted root certificates with those from Mozilla CA bundle.
  • Unnecessary messages about wildcard certificate renewal failure are no longer sent to users from Plesk servers with the DNS service disabled. (EXTSSLIT-610)
  • The title and description of SSL/TLS certificates other than those issued by Let’s Encrypt can now again be changed by editing the panel.ini file. (EXTSSLIT-604)
  • The extension no longer randomly crashes on servers where it was used to issue a large number of SSL/TLS certificates (1000 or more). (EXTSSLIT-609)
  • An unclear error message is no longer shown when SSL It! is unable to connect to the Let’s Encrypt server for a long time. (EXTSSLIT-614)
  • Additional subscription users now have access to the SSL It! extension. (EXTSSLIT-619)
  • Clarified the text under the SSL It! button in the Plesk interface. (EXTSSLIT-621)
  • Resolved a number of compatibility issues with Plesk Obsidian.

Extension Catalog 1.11.0

  • Added the ability to see extensions’ prices with or without VAT. Plesk remembers your choice, but you can change it at any moment.

DigitalOcean DNS 1.1.5

  • Synchronizing a domain’s DNS zone with DigitalOcean DNS now correctly creates SRV records in DigitalOcean DNS. (EXTPLESK-753)
  • Newly created domain aliases are now automatically synced with DigitalOcean DNS. (EXTPLESK-1037)
  • On Plesk for Windows servers, it is now possible to open a subscription’s page from the main extension’s page. (EXTPLESK-1516)

Action Log 1.1.0

  • Action Log now shows more information about the logged actions right in the extension’s interface - you no longer need to read the logs to find out what happened exactly.
  • Added the ability to select or clear all “Logged actions” checkboxes at once on the “Settings” tab.

Plesk Obsidian 18.0.21 Update 5

  • Creating an incremental backup in the FTP storage no longer fails. (PPP-46305)
  • Separate files can now be restored from a local backup. (PPP-46601)

PHP Updates

  • Updated PHP 7.4 to version 7.4.1.
  • Updated PHP 7.3 to version 7.3.13.
  • Updated PHP 7.2 to version 7.2.26.

Hosting Plan Exporter 1.0.0

Hosting Plan Exporter helps you copy service plans between Plesk servers by exporting and importing them.

  • Both hosting and add-on plans can be exported and imported.
  • When importing service plans, conflicts are automatically detected. For example:

    • when a service plan with the same name already exists on the target server, you will be offered to rename the imported plan;
    • when imported service plan has a limit which does not exist on the target server, a warning will be shown on the import screen and the limit will not be imported;
    • when target server does not support imported value of a hosting setting, you will be offered to select one of supported values.
  • Service plans are exported to JSON file format.

The extension can be used by Plesk administrators and resellers. Try it out!

Slave DNS Manager 1.9.2

  • The status icons for the slave servers are now properly shown in the extension’s interface. (EXTPLESK-1082)
  • On Plesk Obsidian servers, the extension’s interface is no longer malformed and unusable. (EXTPLESK-1403)

SSL It! 1.1.4

  • Resolved a number of compatibility issues with Plesk Obsidian.

Advanced Monitoring 1.2.0

  • Added buttons and menu items inviting Advanced Monitoring users to fill out a survey about their experience with the extension. Doing so helps us better understand what kind of monitoring for servers and websites our customers need.
  • Advanced Monitoring can now send notifications via email as well as show them in the Plesk interface.
  • Changes made to thresholds can now be reverted with a click thanks to the “Restore Defaults” button.
  • “Overview” is now the first tab you see when you open Advanced Monitoring. It contains an overview of most important information about the server, such as CPU and memory usage.
  • On Plesk for Linux servers, stacked the graphs showing memory and swap usage on the “Memory” tab.
  • Disk time access and IOPS metrics are now shown on the “Disk” tab.
  • We made a number of improvements to the extension’s UI and UX.
  • On Plesk for Windows servers, all activity tracked by the extension in now correctly reported via the graphs. (EXTPLESK-1386)
  • On Plesk for Windows servers, the “Network” tab now shows accurate data for “writeBytes”. (EXTPLESK-1393)
  • Graphs for periods of time a week ago or older are no longer blank. (EXTPLESK-1404)
  • All tabs now display the proper graphs instead of the “Dashboard not found” error in the French locale. (EXTPLESK-1447)
  • On Plesk for Windows servers, the graphs on the main monitoring page are no longer empty if during the Plesk installation a directory outside of the Plesk installation directory was chosen for storing the user data. (EXTPLESK-1492)

Grafana 1.1.3

  • Resolved a compatibility issue with the upcoming Plesk Obsidian 18.0.22. (EXTPLESK-1427)
  • On Plesk for Windows servers, Grafana can now be installed if during the Plesk installation a directory outside of the Plesk installation directory was chosen for storing the user data. (EXTPLESK-1489)

PHP Composer 1.0.3

  • It is now possible to switch between multiple applications with separate composer.json files installed on a single domain in PHP Composer. (EXTPHPCOMP-102)

WordPress Toolkit 4.4.0

  • Server administrators can now install plugin & theme sets on existing websites at any time. This can be done by visiting the “Sets” tab, finding the required set, and clicking on “Install Set” in the corresponding ‘
’ dropdown menu.
  • The “WordPress Toolkit Settings” tab was redesigned and moved to a separate screen opened via Settings button located next to the WordPress Toolkit screen title.
  • The “Plugins”, “Themes”, and “Sets” tabs were rebuilt using Plesk UI Library to make sure we can quickly redesign and update them in the future.
  • Pop-up notifications about successful execution of various operations are now automatically hidden 3 seconds after appearing, so they are (hopefully) less annoying.
  • Improved various translation strings.
  • Quarantined WordPress sites no longer have a chance to prevent installation of plugins or themes from the “Plugins” or “Themes” tabs. (EXTWPTOOLK-4023)
  • It should be possible (again) to upload plugins and themes from a specified URL via CLI. (EXTWPTOOLK-3988)
  • WordPress Toolkit now properly cleans up temporary files on the server when users install plugins or themes. (EXTWPTOOLK-3977)
  • Changing the domain name on very busy servers should not lead to WordPress site becoming quarantined due to timeout anymore. (EXTWPTOOLK-3961)
  • Changing the domain name now properly changes the corresponding domain name in