• Updating Plesk Onyx to Plesk Obsidian now also replaces the old default pages with brand new ones introduced in Plesk Obsidian 18.0.21 (unless the default pages have been customized, in which case they are not replaced).

• Plesk Administrator can now force all subscriptions to only use the Dynamic, Active, or Classic list by adding the following lines to the panel.ini file:

  [navigation]
  forceWebsiteList = dynamic (or = active, or = classic)
  

  It is also possible to hide one or more options from the list:

  [navigation]
  hideWebsiteList = active, classic
  

• The FileServer component is no longer supported. It will no longer be installed on new Plesk Obsidian servers, but updating to Plesk Obsidian 18.0.24 will not affect this component if it was already installed.
• A new SDK method pm_Domain::getHostingParam has been introduced. It is used for retrieving information about hosting settings of domains. The method enables user-created extensions to use SDK instead of API RPC or direct database queries.
• File indexing was improved for the purposes of creating backups. Plesk no longer tries to include removed files in backups. (PPPM-6486)
• When moving addon domains between subscriptions, users are now warned that any databases owned by those domains must be reassigned manually.
• .webp files can now be used with the plesk bin branding_theme utility to apply custom themes to Plesk Obsidian. (PPPM-11426)
• Accidentally removed SSL/TLS certificates are now automatically restored from the Plesk database when a domain’s hosting settings are changed.
• Backing up a subscription with one or more mail accounts with the autoresponder enabled no longer results in the “Unable to back up autoresponder settings.” error if no mail server is installed. (PPP-47307)
• Plesk no longer allows the creation of non-TXT DNS records containing the underscore (“_”) character. Having one or more such records in a DNS zone hosted in Plesk caused the bind DNS server fail to start. (PPPM-11448)
• Email notifications sent by Plesk servers no longer contain the duplicate “Content-Type” header, which caused them to be bounced during local delivery. (PPPM-11530)
• Dumps of MySQL databases are now correctly included in server-wide Plesk backups. (PPPM-11575)
• Creating a backup no longer fails if usernames of one or more clients being backed up contain the ampersand (“&”) character. (PPP-47205)
• Passive mode is now turned on by default in the FTP storage settings. (PPPM-11461)
• Creating a full server backup no longer produces misleading error messages if the cuBackupRestoreHelper.php file is corrupted. (PPP-47304)
• Backing up a subscription no longer results in an invalid backup if the subscription’s DNS zone contains one or more DNS records of the type “none”. (PPP-47209)
• Backing up a subscription no longer fails if one or more files or directories owned by the subscription could not be read at the time of backup creation (Note: unreadable files and directories are not included in the resulting backup). (PPP-47164)
• Creating a full server backup no longer results in an invalid backup if certain fields in the backup properties have empty values. (PPP-47207)
• Plesk email notifications are now shown in Thunderbird 68.4.2. (PPP-47282)
• It is now possible to upload a file whose name contains square brackets ([ or ]) via File Manager. (PPPM-5294)
• Replaced the “Call to a member function getErrorObjects() on null” error message with a more meaningful one when a backup, under certain circumstances, fails to be created. (PPP-47502)
• It is no longer possible to secure anything with an invalid SSL/TLS certificate whose *.crt part is missing. (PPPM-11458)
• If the mail service for a domain or a subscription (for example, example.com) is disabled, the plesk bin subscription -i example.com command no longer fails. (PPP-45257)
• A directory with the “0” name can now be opened in File Manager. (PPPM-11541)
• A reseller can now install an SSL/TLS certificate via an XML-RPC request without specifying the ip_address option value. (PPPM-11577)
• Updating to Plesk Obsidian now preserves a custom branding and color scheme (if it is set) and no longer changes it to the default Obsidian color scheme. (PPPM-11511)
• If the DNS component is not installed, running the plesk repair all -y command no longer shows the “The NS configuration file … is absent” error. (PPPM-11479)
• Access from property now works again in API RPC. (PPPM-11559)

Linux

• Accessing AWStats data for domains hosted in Plesk no longer results in the “404 Not Found” error. (PPPM-11342)
• Creating a backup on a Plesk Server with the “Acronis Backup” extension installed no longer results in the “Not all the data from /usr/local/psa/var/modules/acronis-backup/ was backed up successfully.” error. (PPPM-11587)
• Creating a backup on a Plesk Server with the “Fail2Ban” component removed no longer results in an unnecessary warning. (PPPM-11521)
• Restoring a subscription no longer results in a warning if the subscription’s system user is using the “bash (chrooted)” shell and the chrooted template has been customized. (PPPM-11515)
• Downloading a large backup file (10 GB or more) from Plesk no longer fails with the the “Network Error” message shown in a browser. (PPP-44962)
• The issue with the plesk repair utility that could not fix issues with the missing libmyodbc5.so package is no longer relevant because Plesk now uses its own plesk-libmaodbc driver. (PPP-37827)
• “Mail for Non-Existent Users” can now be enabled even if the “Bounce with message” text field is empty. (PPPM-11556)
• When restoring a number of domains from a backup, SSL/TLS certificates that secure these domains are now also restored. (PPPM-9686)
• Webserver Configuration Troubleshooter no longer shows that some configs are broken when they are actually not after reconfiguration (for example, after domain’s hosting settings were changed but these changes did not propagate yet). (PPPM-6752)
• Plesk now shows an explicit message what to do with custom web server configuration templates (if any) during update to Plesk Obsidian. (PPPM-11580)
• SSL/TLS certificates from Let’s Encrypt can now be used for client certificate authorization. (PPPM-11544)
• Custom error pages now work when nginx-only hosting is enabled. (PPPM-8889)

Windows

• Node.js 12 is now supported.
• The maximum allowed length of FTP users’ logins was increased to 20 characters.
• Long tasks now fail with an error message instead of silently getting stuck and never starting if the psaadm and Plesk Administrator users are assigned the “Deny log on as a batch job” security policy. (PPPM-11429)
• Backing up a subscription no longer results in an error message if one or more files owned by the subscription are deleted as the subscription is being backed up. (PPP-47210)
• When Plesk is set up with a remote SmarterMail server, backing up a subscription with mailboxes no longer shows the “Provider ‘SmarterMail Remote’ cannot list mail mesages.” warning. (PPP-47305)
• Calculating web statistics of the parent domain no longer fails with the “The system cannot find the path specified. (Error code 3)” error after a browsed add-on domain of the parent domain was deleted. (PPPM-11456)
• Creating a new domain or enabling the mail service on the existing domain no longer occasionally fails with the “mailmng failed: Loaded Postoffice Configuration Provider (MEAIPO.DLL) MEAOPO.PostOffice.AddPostOffice failed” error. (PPP-42721)
• Plesk Reconfigurator now allows to change the virtual hosts location to a directory on a disk volume with the ReFS partition. (PPP-46513)
• The rotation date of the php_error.log file of a domain is now counted based on the file creation date. (PPPM-11104)
• The SpamAssassin training is now completed without any issues even some emails contain non-UTF-8 characters. (PPPM-11456)
• If an IPv6 address goes before an IPv4 one in the database, the plesk repair ftp command run for a domain no longer shows the “The domain name … resolves to another IP address” warning. (PPPM-11405)

Third-Party Component Updates

Windows

• Updated MySQL ODBC connector 5.3 to version 5.3.14.
• Updated Node.js 12 to version 12.14.1

• Plesk no longer “forgets” the IP address selected as the address to send mail from in “Tools & Settings” > “Mail Service Settings” > “Outgoing mail mode”. (PPPM-11533)
• Backing up one or more subscriptions no longer results in an invalid backup if certain information related to those subscriptions is missing from the Plesk database. (PPPM-11564)

Linux

• Backing up one or more subscriptions with one or more capital letters in the name (for example, “Example.Com”) no longer results in an error message. (PPP-47446)

Windows

• Backing up one or more subscriptions with wildcard subdomain no longer fails with the “Exception: PHP Warning: mkdir(): Invalid path” error. (PPP-47443)

• Backing up a subscription when the logs folder of the subscription’s domain is deleted no longer shows an unnecessary warning message. (PPP-47351)
• Backing up a subscription when the statistics folder of the subscription’s domain is deleted no longer shows an unnecessary warning message. (PPP-47352)
• Backing up a server when the extensions’ data folders are deleted (for example, the /usr/local/psa/var/modules/patchman folder) no longer shows an unnecessary warning message. (PPP-47353)
• Backing up a subscription when its DKIM spam protection is turned on but the corresponding domain keys are missing (for example, because the DNS support is turned off) no longer shows an unnecessary warning message. (PPPM-11503)
• A server backup no longer fails when the TmplData table of a server reseller plan contains the ‘phpSettingsId’ setting. (PPP-47356)
• Domains can be now removed after switching from the Dynamic List to the Classic List view. (PPP-47098)

Linux

• DKIM and DMARC can be now enabled for a server whether the DNS component is installed or not. (PPP-47270)

Linux

• On Plesk servers without an installed DNS server, updating to Plesk Obsidian 18.0.23 no longer results in an internal error when trying to access mail setting. (PPPM-11478)

• Fixed an issue that prevented some Plesk Obsidian 18.0.20 servers from updating. (PPP-46986)

• Webmail for domains with no physical hosting can now be secured with SSL/TLS certificates. Support for securing such domains with Let’s Encrypt certificates via SSL It! will come at a later date.
• Support for Apple Mail was added to the “Configure Email Client” page.
• Plesk administrator can now specify a custom domain name for mail autodiscover in “Tools & Settings” > “Mail Server Settings”.
• Mobile configuration files generated in Plesk to enable mail autodiscover are now signed with the domain’s or the server’s SSL/TLS certificate.
• Redesigned the Plesk notifications’ interface with improved navigation and better placement of Call to Action buttons in mind.
• Improved the templates used by Plesk notifications sent via email by adding paragraphs and HTML formatting.
• Plesk now automatically checks whether the SMTP ports 25 and 587 used for sending mail are filtered. If they are, notifications are shown in the Plesk interface (in “Tools & Settings” > “Mail Server Settings” > “Settings” and “Subscriptions” > “Mail” tab > “Mail Settings”).
• Changed the presentation of long running tasks in the Plesk UI.
• Updated the Dynamic View to make it render better on mobile devices.
• When configuring minimum password strength for the server, ‘Very Weak’, ‘Weak’, and ‘Medium’ choices are clearly marked as not recommended.
• Added PHP 7.4 to the Recommended preset and removed PHP 7.2 from the Recommended preset. Removed PHP 7.1 from the Full preset.
• The “Server Error” screen has been updated to better match the Plesk Obsidian look and feel.
• Plesk resellers can now use the XML API “certificate” operator to generate, install, and remove SSL/TLS certificates.
• Users switching from a trial license to a paid one will now be asked to fill a short feedback form to let us know what motivated them to become a customer. This information will help us better tailor our offering to the customers’ needs and expectations.
• Users that have been using Plesk Obsidian for at least 30 days will now be asked to fill a short feedback form to let us know their thoughts and opinions on Plesk Obsidian. This information will help us better tailor our offering to the customers’ needs and expectations.
• Creating a backup in the FTP storage if the available disk space is insufficient now clearly indicates how much disk space is required for the backup to finish. (PPPM-11389)
• Subdomains for domains with names in punycode can now be created via XML API. (PPPM-11381)
• Creating a dump of a database whose size exceeds the amount of RAM on the server no longer fails. (PPPM-11361)
• It is now possible to switch to Power User view and back in Plesk Mobile application. (PPP-45080)
• The length of the user name provided as an argument is now validated by all CLI utilities, avoiding situations where the execution of some utilities failed midway because the provided user name was too long. (PPPM-11393)
• Exporting a database dump and closing the corresponding notification no longer results in the dump being downloaded for the second time if the “Automatically download dump after creation” option is enabled.(PPPM-11385)
• Domains not owned by the currently selected subscription are not shown to the Plesk administrator in Power User view when using the Classic list and when the total number of subscriptions owned by the Plesk administrator exceeds the limit (100 by default). (PPP-46050)
• The error message that appears when domain creation fails because a subdomain with the name ‘webmail.' already exists in Plesk now clearly states the reason for the failure. (PPPM-11411)
• Trying to contact Plesk support via ‘Tools & Settings’ > ‘Assistance and Troubleshooting’ > ‘Support’ no longer results in a ‘HTTP 403 Forbidden’ error. (PPPM-11421)

• You can now disable the creation of the ‘.ftpaccess’ file when creating backups to the FTP repository by adding the following lines to the panel.ini file: (PPPM-11436)

  [pmm]
  ftpForbidFtpaccessFileCreation = 1
  

• Importing a custom Plesk theme no longer results in misleading warning messages being shown. (PPP-47049)
• Searching for a domain name in Power User view now works as expected (click the domain name to open it) if the total number of domains exceeds the limit configured in panel.ini. (PPPM-11391)
• Customers can no longer attempt to delete backups created by the Administrator (because such backups can only be deleted by the Administrator). (PPPM-10982)
• HTTP POST requests to domains secured with an SSL/TLS certificate and with SEO redirect from HTTP to HTTPS enabled are no longer automatically converted to GET requests. (PPPM-11284)
• The built-in code editor now works correctly if the Plesk locale is set to Arabic or Hebrew. (UILIB-746)
• Updating a Plesk instance using a custom skin to Plesk Obsidian no longer results in a broken skin. Instead, the custom skin is replaced with the default Obsidian skin. (PPP-45324)
• Additional FTP accounts for domains that are disabled can now log in to the server via FTP. (PPP-46062)
• Updating to Plesk Obsidian no longer produces the “getSettings() must be of the type array, null returned” error. (PPP-46354)
• On Plesk Obsidian servers with the “Subscription expiration” event enabled, Plesk now sends a single email listing all expired subscription once per day instead of sending a separate email for each expired subscription. (PPP-46442)
• Searching for domains on mobile no longer results in an error. (PPP-46556)

Linux

• Emails sent via sendmail (including auto-reply) now have a DKIM signature (if DKIM signing is enabled server-wide and for the sender’s domain).
• When updating Plesk, Plesk installer now checks for issues with missing dependencies and duplicated packages before starting the update.
• On Debian 9 servers, Plesk and extension updates no longer fail if some other apt-get or dpkg operation is running at the same time on the server. (PPP-46130, PI-616)
• The ‘postfix’ service no longer randomly fails to start after updating the Plesk ‘postfix’ package. (PPPM-11334)
• Restoring DNS zones from Plesk backups no longer randomly fails with the ‘Unable to manage DNS features: DNS does not return features list’ error. (PPPM-11379)
• DMARC checks no longer result in a segmentation fault under specific circumstances, which caused errors to be written to the logs and temporary files not being cleaned up. (PPPM-10547, PPPM-7166)
• Restoring a website with Drupal installed via the Application Catalog from a backup in Plesk no longer results in Drupal being inoperable. (PPPM-11382)
• The ‘httpsd_access_log’ file is now rotated correctly according to the log rotation settings. Note: a number of Plesk logs are now rotated by the system logrotate (configured in /etc/logrotate.d/plesk). (PPPM-11236)
• The ‘Mailing List’ button is no longer shown in Dynamic List view if the ‘Mailman’ component is not installed on the server. (PPPM-11409)
• Backups stored in the FTP repository are now rotated in accordance with the rotation settings if backup rotation is enabled. (PPPM-10468, PPPM-11418)
• HTTP > HTTPS redirect now works correctly for domains that are configured to be used to access Plesk. (PPPM-11407)
• Changes made to the panel.ini file no longer take time to come into effect. (PPPM-11413)
• Images accompanying the Dynamic List tour are now shown on Plesk servers that use a custom theme. (PPP-47050)
• Plesk Installer no longer fails on CentOS 7 based Google Cloud instances with OS Login enabled. (PI-607)
• Website Copying via FTP now correctly copies files with one or more “%” characters in the path. (PPP-44238)
• White space characters in the SPF explanation text specified in “Tools & Settings” > “Mail Server Settings” are no longer replaced with the “%” character. (PPP-44640)
• Entries in the web server logs containing long URLs with many special characters no longer cause the Log Browser display the logs as blank. (PPP-45326)
• Plesk Installer now properly checks if the /var partition has enough free disk space before installing or updating Plesk. (PPP-45791)
• Restoring a Plesk backup no longer randomly produces warnings due to the nginx restart rate getting exceeded. (PPP-46099)
• The default SPF check failure message no longer contains an outdated link to http://www.openspf.org/ which is no longer operational. (PPP-46173)
• Obsolete files stored in the /usr/local/psa/handlers/spool/ directory are now cleaned out on a regular basis. (PPP-46178)
• Kaspersky Anti-Virus heuristics are now enabled by default. (PPP-46203)
• Mailbox quota warning now works as expected after it is disabled and then enabled again in “Tools & Settings” > “Mail Server Settings”. (PPP-46278)
• Updating to Plesk Obsidian no longer produces the “/usr/local/psa/bootstrapper/components/management-node.sh: line 1588: -D: command not found” error. (PPP-46386)
• On CentOS 6 servers, the misleading “Information on some packages might not be actual: inconsistencies were detected in the system’s package manager database.” warning is no longer shown in “Tools & Settings” > “System Updates”. (PPP-46395)
• Correct memory usage is now shown on the “Tools & Settings” > “Server Information” page. (PPP-46397)
• Plesk backups no longer fail on servers with sql-mode=ANSI specified in the /etc/my.cnf configuration file. (PPP-46398)
• On CentOS 7 servers, website logs are no longer processed by the backup manager if the “exclude log files” option is selected during backup. (PPP-46464)
• Backing up and restoring a subscription with the “Use DKIM spam protection system to sign outgoing email messages” option enabled no longer results in the “Domain has no NS DNS record.” error. (PPP-46509)
• On Ubuntu 16 and Ubuntu 18 servers, files created by scheduled cron tasks running under the psaadm user are now assigned the ‘644’ file system permissions instead of ‘664’ permissions. (PPP-46609)

Windows

• ASP.NET Core 3.0 is now supported.
• Microsoft SQL Server 2019 is now supported.

• Added the ability to simultaneously fix the permissions for a folder as well as every other folder in the path via the plesk bin repair CLI utility:

  plesk bin repair --directory-permissions -directory "<path to the folder>" -fix-parent-dirs
  

• Temporary files generated by PHP FastCGI processes are now stored in a separate folder inside the corresponding domain’s webroot directory.
• Cloning a Plesk server now takes significantly less time. In addition, after cloning a server, the latest updates are automatically installed on the newly created server.
• The information about default documents is no longer stored in individual websites’ ‘applicationHost.config’ files, unless the default documents were modified.
• Creating a backup in Plesk no longer results in the ‘[Errno 13] Permission denied’ error. (PPPM-11374)
• Restoring individual files from a Plesk backup after logging in to Plesk via the TCP port 443 no longer results in the ‘Warning: Permission Denied’ error. (PPP-46715)
• Restoring large (1 GB or more) Microsoft SQL Server databases from a Plesk backup no longer results in the ‘Execution Timeout Expired’ error. (PPPM-11359)
• Website preview no longer fails with the “HTTP Error 404 Not Found” if access to Plesk via the TCP port 443 is enabled on the server. (PPPM-11406)
• Syncing a subscription with a customized value of the “The maximum number of worker processes” parameter with its service plan no longer fails. (PPPM-11388)
• Switching the Plesk mail server to SmarterMail no longer fails if one or more network adapters on the server are disabled. (PPPM-11348)
• Files uploaded via WordPress are now assigned the correct file system permissions. (PPPM-4539)
• Clicking “Dedicated IIS Application Pool for Website” no longer results in the “Unable to manage the IIS application pool because all websites are using a single dedicated application pool.” error on Plesk servers with the “Tools & Settings” > “IIS Application Pool” > “Global Settings” > “Assignment and placement policy” option set to “Always assign one application pool to each subscription”. (PPP-45368)
• Plesk backups are now properly compressed and take less disk space than the content that was backed up. (PPP-46132)
• Plesk email notifications sent to external email addresses no longer fail DKIM validation checks. (PPP-46140)
• Sending a technical report to support from the Plesk UI no longer results in the “<html><head></head>” error. (PPP-46487)
• Changes made to IIS configuration during domain creation are now correctly rolled back if domain creation fails. (PPP-46562)
• Switching the mail server from MailEnable to SmarterMail no longer fails if an alias without an email addresses but with the flag “include all domain users” was created in SmaterMail. (PPP-46652)

Third-Party Component Updates

• Updated PHP used by Plesk to version 7.3.13.

Linux

• Updated Postfix to version 3.4.8.
• Updated Dovecot to version 2.3.9.2.

Windows

• Updated Python to version 2.7.17.
• Updated BIND to version 9.14.8.

• Creating an incremental backup in the FTP storage no longer fails. (PPP-46305)
• Separate files can now be restored from a local backup. (PPP-46601)

• PHP 7.4 is now supported.

Linux

• After update to or installation of Plesk Obsidian on CentOS 7, the mail forwarding, the autoresponder, and other mail-related features now work correctly. (PPP-46272)

• After the update to Plesk 18.0.21, the “Tools & Settings” screen in Power User view is no longer endlessly loaded and no JS errors appear in a browser console. (PPP-46229)
• Scheduled backups can now be created if the backups owner locale was not defined (set to null). (PPP-46219)

• Fixed the text in the banner promoting the Dynamic List view. (PPP-46204)

• Added a banner promoting the Dynamic List view, a new and improved way of listing and managing domains in Plesk.
• On new Plesk Obsidian servers, the Dynamic List view is now selected by default.
• Added a guided tour explaining the benefits of the Dynamic List view.
• Verified that the Plesk mail autodiscover feature is fully compatible with the default Android “Mail” application.
• Plesk servers created via cloning now take less time to initialize.
• Changed and clarified the consent form text shown when a user is prompted to subscribe to the Plesk newsletter. Plesk administrator will see the new consent form and the suggestion to subscribe on their next login to Plesk or right after updating to Plesk Obsidian.
• Changed and clarified the consent form text shown when a user is signing up for a Plesk trial.
• Revamped and updated the default pages shown to visitors of domains without hosting, as well as the Plesk default web page.
• Updated PHP used by Plesk to version 7.3.11 to secure Plesk against a vulnerability found in earlier PHP versions.

• The following entry in the panel.ini file now again allows Plesk screens to be shown in iframes (PPP-46101):

  [security]
  sameOriginOnly = false
  

• Removing a subscription with one or more backups and then creating a subscription with the same name and creating a backup under the new subscription no longer results in Plesk reporting the size of the backup as double the real size. (PPP-45254)
• The contents of the Extensions Catalog are now shown correctly when browsing Plesk using Internet Explorer. (PPP-45309)
• Requesting the list of clients via XML API from a Plesk server with no created clients no longer results in the “Specified owner can not have sub objects” error in the response packet. (PPP-44859)
• Creating a database or database user via Plesk UI under a subscription based on a service plan with Default Database Server set to “None” no longer results in the “Db_Table_Exception” error. (PPP-45315)
• Uploading a new license key and specifying a non-English locale by setting up the “def_locale” parameter in KAPC now results in Plesk correctly using the specified locale instead of the English locale. (PPP-45480)
• Accessing the Plesk login page via an IPv6 address no longer results in an error. (PPP-45236)
• When a domain with no hosting is removed, the SSL/TLS certificate it is secured with is now removed as well. (PPP-45353)

Linux

• On Debian 9 and Ubuntu 18 servers, the “Atomic Standard” and “Atomic Advanced” ModSecurity rulesets are again available.
• On newly deployed Ubuntu 18 servers, connections to Plesk are now secured with TLS version 1.3. On Plesk Obsidian servers updated from an earlier Plesk version (including earlier Plesk Obsidian versions), you can secure connections to Plesk with TLS version 1.3 by running the plesk bin server_pref -u -ssl-protocols "TLSv1.2 TLSv1.3" command.
• The plesk-git-http package is no longer removed when upgrading to Plesk Obsidian. (PPP-45301)
• On CentOS 7 servers with the dnf package installed, upgrading to Plesk Obsidian no longer results in an error. (PI-604)
• On CentOS 7 servers, Apache no longer fails to start after installing PHP from OS vendor via Plesk Installer. (PPP-45093)
• Browsing “Tools & Settings” > “Database Servers” > “MariaDB/MySQL” no longer results in an error if one or more directories containing MySQL configuration files are empty. (PPP-45399)
• Firewall rules are now correctly removed from the INPUT chain even if there are in excess of 400 rules already configured for different IP addresses. (PPP-45404)
• Suspending a domain with proxy mode disabled and nginx caching enabled no longer results in an error. (PPP-44915)
• Browsing a suspended domain with proxy mode disabled now correctly displays the “503 service temporarily unavailable” page. (PPP-45413)
• Updating Plesk no longer results in the creation of a new phpMyAdmin database. (PPP-46039)
• Running the plesk bin ipmanage --ip_list command no longer results in web server reconfiguration. (PPP-46053)
• Updating hosting settings for a domain no longer results in the webmail configuration files being removed and then re-generated. (PPP-46055)

Windows

• On Plesk servers with one or more remote Microsoft SQL servers servers configured, browsing the “Tools & Settings” > “Database Servers” page and its subpages no longer takes a long time to load. (PPP-44032)
• Browsing “Tools & Settings” > “Updates and Upgrade” no longer results in an endless loading loop if an instance of Plesk Installer is already running on the server. (PPP-45051)
• Plesk Installer no longer fails with an error if it is unable to remove one or more subfolders. (PI-605)
• Failed Plesk upgrades no longer leave Plesk in a disabled state. (PPP-45065)
• Some APS applications no longer fail due to inability to use ADO connections on Plesk servers. (PPP-45415)
• Upgrading Plesk no longer fails if the path specified by the PRODUCT_ROOT_D variable uses one or more upper-case letters where lower-case letters should be, or vice versa (for example, specifying the drive letter as “c:" instead of “C:"). (PPP-45456)
• Backing up a domain with custom error documents enabled no longer results in an error if the “error_docs” folder for the domain is removed. (PPP-44525)
• Backing up a subscription no longer results in the “Element ‘vhost’: This element is not expected. Expected is ( vdir )” error. (PPP-46051)
• The names of the files generated when Failed Requests Tracing is enabled for a domain are no longer garbled in the Plesk interface. (PPP-46117)

Third-Party Component Updates

Linux

• Updated Horde to version 5.2.21.
• Updated IMP to version 6.2.24.1.
• Updated Ingo to version 3.2.16.
• Updated Kronolith to version 4.2.27.
• Updated Mnemo to version 4.2.14.
• Updated Passwd to version 5.0.7.
• Updated Pear to version 1.10.9.
• Updated Turba to version 4.2.25.

Windows

• Updated Microsoft Visual C++ 2017 Redistributable to version 14.16.27033.

Linux

• The contents of mailboxes on Plesk servers with Horde and Courier-IMAP 5 installed are now displayed correctly. (PPP-45268)
• Plesk servers with ProFTPD 1.3.6 installed are no longer vulnerable to denial of service attacks. (PPP-45349)

• When the Dynamic List view is chosen, opening the drop-down menu next to a domain to remove that domain no longer results in the menu remaining expanded indefinitely. (PPP-44499)

Linux

• Plesk no longer sends the Plesk administrator hourly cronjob failure notifications if one or more PHP extensions fails to load. (PPP-45265)

Windows

• Trying to manage mail accounts for a domain no longer results in an error if the domain has one or more subdomains and SmarterMail 100 is used as the default mail server. (PPP-45072)

• Plesk administrators can now specify the desired weekdays and time range when Plesk auto-updates are installed.
• Mail autodiscover can be now turned on and off for particular service plans.
• Set “Comodo (free)” as the default ModSecurity rule set. On OSes where “Comodo (free)” is absent, the default rule set will be “OWASP (free)”.
• Added pagination to the Dynamic List view mode.
• The Plesk default password strength policy will be set to “Strong” starting from November 19th, 2019. See the details.
• Improved the load speed of screenshots of websites’ landing pages in the Dynamic List view mode.
• Returned to the three-digit versioning scheme (x.y.z), where an update is specified as a separate number, for example, Plesk 18.0.19 Update 2.
• Backups upload to the Microsoft OneDrive storage no longer occasionally fails. (EXTPLESK-856, EXTPLESK-1147)
• If subscriptions of several owners exceeded the allowed disk space, owners now receive their own separate email notifications about the resources overuse. (PPP-44528)
• Fixed automatic logging in to Plesk: the success_redirect_url parameter now again accepts a relative URL path. (PPP-44681)
• Plesk administrators can now again install APS applications even if the administrators do not have their own subscriptions. (PPP-44635)
• The “Mailing Lists” is no longer shown if Mailman is not installed. (PPP-44524)
• It is now again possible to set a system user’s password via an API-RPC request. (PPP-44614)
• Users can now again restore specific objects (a subscription, a mailbox, and so on) from a backup if the backup size exceeds 4 GB. (PPP-44444)
• An IP address in the SPF record is now updated when a public IP address of the sever is changed. (PPP-43552)
• Webspaces are now sorted alphabetically in Backup Manager in Power User view when “All subscriptions” is selected (transparent webspaces mode). (PPP-43968)
• Null MX records can now be created. (PPP-43763)

Linux

• In Plesk on Ubuntu 18, sw-cp-server is now compiled with TLSv1.3. (PPP-44542)
• If Plesk was installed without the mail server (MSMTP), the default SSL/TLS certificate can now be removed. (PPP-44652)
• Plesk Obsidian now shows a correct update version and the last update date. (PPP-44316)
• The Horde webmail client now again correctly shows email messages in plan text. (PPP-44776)
• While updating to Plesk Obsidian, a misleading error message “WARNING: There are 1 mail accounts with passwords encrypted using a deprecated algorithm” is no longer shown because the corresponding bug PPP-43681 (about email address accounts, whose passwords were encrypted) has been already fixed. (PPP-44607)
• Added pagination to the Tools & Settings > Services Management page: more than 25 services can now be displayed. (PPP-44565)
• Kaspersky AntiVirus no longer sends error email notifications when a Kaspersky license is removed or terminated. (PPP-44620)
• On CentOS 7, after Plesk update from Onyx to Obsidian, the Plesk interface no longer occasionally becomes unavailable with the “Server Error 500 PleskUtilException” error message. (PPP-44602)
• In Plesk Obsidian on RedHat or CentOS 7, logs no longer show segmentation faults if a server has sessions with the “Too many authentication failures” errors. (PPP-44198)
• Plesk Obsidian update no longer occasionally fails with segmentation faults. (PPP-44794)

Windows

• Prepared online demos for Plesk Obsidian on Windows.
• If the SmarterMail server is used, users can now back up and restore their mail via IMAP.
• Special characters are now correctly processed within a Plesk administrator password during Plesk installation. (PPP-44348)
• MSDNS no longer fails to create DNS records when a server IP address is added to Zone Transfers. (PPP-44852)
• Backing up and restoration no longer occasionally fails with the “The system cannot find the file specified” error. (PPP-44804)
• Significantly sped up the creation of subdomains. (PPP-44951)
• Plesk upgrade no longer fails when run under a user with no write permissions for the Recycled Bin. (PI-600)

Third-Party Component Updates

• Updated PHP 7.3 to version 7.3.10.
• Updated PHP 7.2 to version 7.2.23.

Linux

• Updated Courier-IMAP to versions 5.0.8.
• Updated Roundcube to version 1.3.10.

Windows

• Updated MailEnable to version 10.27.
• Updated BIND to version 9.14.6.

• Emails about resource overuse are no longer sent to Plesk users other than the subscription’s owner. (PPP-44526)
• ModSecurity is now enabled on clean Plesk Obsidian installations. (PPP-44527)

• It is now again possible to edit files with Windows line endings in Code Editor of File Manager, Panel.ini Editor, and PHP Сomposer. (PPP-44495)

• Updated the Plesk Lifecycle Policy.
• New Plesk Obsidian features are now available for users in their native languages.
• The PHP Composer extension is now shipped by default with Plesk.
• The Advanced Monitoring extension is now shipped by default with Plesk.

• Introduced a number of new features and improvements for the Dynamic List view mode in Websites & Domains:
  • Extensions developers can now add tabs of their own extensions to domains’ cards.
  • Extensions developers can now add buttons of their own extensions to particular button groups on the Dashboard tab of domains’ cards.
  • Improved the layout of buttons and controls on domains’ cards.
  • Replaced old color icons with new grayscale ones.
  • Improved the collapse and expand mechanism.
• Plesk administrators can now customize the mailbox quota notification email.
• Mail autodiscover can be now turned on and off for the whole server or for particular domains.
• Rolled back the changes made to Active List in the previous iterations to keep this familiar view mode for customers who do not want to use the new Dynamic list.
• Improved how the preview of automatic email notifications shows the email subject.
• Increased the default value of the PHP-FPM max_children setting to 10.
• After updating Plesk Onyx to Plesk Obsidian, the following extensions will now be automatically installed: Repair Kit, SSL It!, PHP Composer, and Advanced Monitoring (replaces Server Health Monitor present in Plesk Onyx).
• Improved error messages shown if an extension failed to be installed: the error messages now contain the name of the extension that faced installation issues.
• Removed the Server Health Monitor component and replaced it with Advanced Monitoring.
• When multiple files are opened in File Manager via Code Editor, Code Editor tabs now show correct content of the files. (PPP-43622)
• Customers can now switch between their own subscriptions when they are on the WordPress Toolkit page without the “Warning: Possible phishing attempt detected…” error. (PPP-43913)
• It is now possible to log in to Plesk using the LDAP Auth extension when the “Disable Plesk native authentication” checkbox is selected. (PPP-43128)
• If the “Access to Application Catalog” permission is not selected for a customer’s subscription, Applications > All available applications no longer shows unavailable versions of an application ready for installation after any version of the application was uploaded. (PPP-43134)
• Rotation of server local backups now works even if the server hostname length exceeds 47 characters. (PPP-44325)
• Monthly resource usage reports sent by email now contain the necessary statistics because the are now generated on the last day of a month. (PPP-43563)
• It is now possible to create a backup without a warning if a folder that contained a custom branding theme was removed. (PPP-43734)

Linux

• Mail autodiscover now works for subdomains served only by Apache.
• The pci_compliance_resolver utility no longer causes security warnings in browsers because the utility now uses up-to-date SSL protocols and cyphers.
• Certain services (Plesk Autoinstaller, sw-cp-server, nginx, Apache, Postfix, ProFTPD, and Dovecot) can now use the server TLS cipher suite order instead of the client cipher suite order as it was before. On clean Plesk Obsidian installations, the server TLS cipher suite order is enabled by default. For updated installations, administrators can enable it manually for all server’s services (using the server_pref utility) or for a particular service (using the sslmng utility).
• When the Webalizer or AWStats components are removed, the access_log.webstat file is also removed and webstatistics is no longer calculated. (PPP-24426)
• WordPress Toolkit can now scan installations even if they have broken symlinks. (PPP-44063)
• If a server that has Fail2ban and Plesk firewall installed is restarted, Fail2ban and Plesk firewall are now started in the right order: sequentially and without conflicts that could be earlier caused by the simultaneous editing of iptables. (PPP-43152)
• If a mail server is secured with an SSL/TLS certificate from Let’s Encrypt and the Roundcube webmail client is used, emails can now be sent without issues. (PPP-44131)
• If shortname authorization is enabled on the server and a mail account password is encrypted, the password can now be changed in webmail. (PPP-33293)
• The plesk repair all -n command no longer reports false positive errors regarding incorrect permissions of the /etc/init.d/postfix file. (PPP-43564)
• The pci_compliance_resolver utility can now be enabled for Dovecot and Courier LDAs. (PPP-36611)
• If a service fails the Watchdog monitoring tests, the service will be now immediately restarted (without the 5-minute downtime as it was earlier). (PPP-41001)
• After updating Plesk Onyx version 17.5 to Plesk Obsidian on Debian-based OSes, running the Plesk repair utility no longer shows misleading warnings. (PPP-36507)
• An email with the empty FROM: <> field can no longer bypass the SpamAssassin filter. (PPP-43562)
• On Ubuntu 16.04 and Debian 8, ModSecurity can now be again installed and switched on with the Atomic Standard rule set. (PPP-44268)
• nginx now better validates its SSL configuration: if, for any reason, an SSL/TLS certificate is missing for a domain, Plesk now skips the SSL configuration for the domain. (PPP-44031)

Windows

• Users’ Microsoft Outlook and Thunderbird mail clients can now be automatically configured based on entered emails.
• A new REST API now manages SmarterMail 100 or later, which is why mail users in SmarterMail 100 or later can now be renamed.
• Excluded a number of outdated, insecure, or not popular extensions and components from the recommended and full presets.
• Backups created in Plesk Onyx 17.x can now be restored in Plesk Obsidian. (PPP-44246)
• Improved an error message shown when a password sent to Plesk via an XML-RPC request does not meet the the OS password security policy (“Local Security Policy”). (PPP-43600)

Third-Party Component Updates

• Updated PHP 7.3 to version 7.3.9.
• Updated PHP 7.2 to version 7.2.22.
• Updated PHP 7.1 to version 7.1.32.

Linux

• ProFTPD now supports the DSO module.

Windows

• Updated Node.js 8 to version 8.16.1.
• Updated Node.js 10 to versions 10.16.3.

Third-Party Component Updates

Linux

• Updated Dovecot and Pigeonhole to versions 2.3.7.2 and 0.5.7.2 respectively, which include a fix for a major security issue. We strongly recommend that you update Plesk.

• Plesk administrators and resellers can now move the main domain to a new subscription in the Plesk interface (Plesk administrators can do so also via the CLI).
• Added the following Plesk notifications:
  • Plesk updates are available.
  • A Plesk update/hotfix has been installed.
  • A Plesk update has not been installed.
  • Web Application Firewall: a new rule set or new rules have been installed.
• Introduced the new “Dynamic List” mode to view the “Websites & Domains” screen. This mode groups controls of each website in blocks we call cards (similar to those in WordPress Toolkit).

• If SSL/TLS support for a website is turned off, the “Open website” button now opens the website via HTTP. Plesk administrators can also set up “Open website” to open websites always via HTTP (regardless of website’s SSL/TLS support) by adding the following lines to the panel.ini file:

  [domainManagement]
  openButtonForceHttp = 1
  

• Introduced new icons of the main menu.
• Improved the X-XSS-Protection response header of Plesk pages.
• Updated the Plesk Installer interface. Now it is easier to install or upgrade to the latest version of Plesk Obsidian.
• Running the plesk bin utilities without parameters now shows the help page.
• Scheduled backups to Microsoft OneDrive no longer fail with the “504 Gateway Timeout” error message. (EXTPLESK-856)
• Plesk administrator’s backups are now restored even if no available dedicated IP addresses exist. (PPP-43673)
• It is now possible to log in to Plesk with an email address account, whose password was encrypted. (PPP-43681)
• Customers can no longer be occasionally created as if they belong to other customers. (PPP-31797)
• The plesk repair mail can no longer break all mail accounts on the server if one of the accounts has a password that contains an unsupported character. (PPP-43832)
• The “Log In as Customer” link is no longer shown next to customers that do not have subscriptions. (PPP-43639)

Linux

• Users’ Microsoft Outlook and Thunderbird mail clients can now be automatically configured based on entered emails.
• Updated the list of extensions and components installed by default.
• Improved deployment of Plesk Obsidian cloud images:
  • Significantly sped up the deployment (25 seconds now against 8 minutes earlier).
  • An actual deployment status is now shown. It is possible to see if the deployment finished successfully or with errors.
  • Plesk now installs available updates 30 minutes after deployment.
• Fixed issues created by the bug fix PPPM-10715. You can now rename your domain or restore it from a backup—no issues with your mail for a domain will occur. (PPP-43460)
• If a user tries to change virtual hosts location and SELinux is running in enforcing mode, the transvhosts.pl utility now exits with an error message. The message suggests disabling SELinux or setting it to permissive mode to avoid breaking hosted websites. (PPP-43217)
• Updating the Atomic Standard ModSecurity rule set no longer hangs. (PPP-43620)
• Removing the system PHP 7.2 component (which is optional since Plesk Onyx 17.9 Preview 11) no longer causes repetitive error messages from the hourly cron task: “find: ‘/etc/php/7.2’: No such file or directory”. (PPP-43824)

Third-Party Component Updates

• Updated PHP 7.3 to version 7.3.8.
• Updated PHP 7.2 to version 7.2.21.
• Updated PHP 7.1 to version 7.1.31.

Linux

• Updated nginx to version 1.16.1 (both for Plesk and customers’ websites).

Windows

• Updated ASP.NET Core 2.2 to version 2.2.6.
• Updated ASP.NET Core 2.1 to version 2.1.12.
• Dropped support for ASP.NET Core 1.1.
• Dropped support for ASP.NET Core 1.0.
• Updated MariaDB to version 10.3.17 (both for the Plesk database and for customers’ websites.)
• Updated MailEnable to version 10.25.

• Users can now try Plesk Obsidian online demos.

• Introduced new Plesk notifications, which are now shown in a separate pane. To see notifications, click the bell icon in the upper right corner of the screen. Here you can also manage the notifications’ settings. To do so, click the gear icon.

  At the moment, the notification pane shows only one notification type (when one of the parameters monitored by Server Health reached the “red” alert level). More notifications are on the way.

• When Postfix is used, mail.<domain> can now be secured if an SSL/TLS certificate covers it.
• It is now possible to create a secret key via the CLI or API without specifying the IP address the key will be linked to.
• Updated Plesk banners (Plesk Welcome screen, Plesk initializing screen, and others) shown when the Obsidian color scheme is selected.
• A Plesk custom logo and page title can now be installed via the CLI or API.
• A Plesk edition is no longer shown on the Plesk logo and some other screens. Users can always see a Plesk edition in Tools & Settings > About Plesk (under “Plesk”).
• Redesigned the website screen in Websites & Domains: removed the duplicated info and made the screen more laconic.
• File Manager now switches to a correct website, when File Manager is opened via a direct URL. (PPP-41536)
• Duplicate access controls are no longer shown when adding or updating a database user in Plesk that has remote configuration of database servers. (PPP-43181)
• If a particular subscription does not have the “Setup of potentially insecure web scripting options that override provider’s policy” permission, a user can now change the subscription’s hosting settings. (PPP-42972)
• Email aliases with the same name can now be created via the XML-RPC. (PPP-43256)

Linux

• Mail users now receive email notifications when more than 95% of their mailbox disk space is occupied. The users can also see the information about the mailbox storage disk space, its usage, and limits in the Horde and Roundcube webmail clients.
• On new Plesk servers, the Poppassd service on TCP port 106 no longer accepts external connections from the Internet.
• If Postfix is used, an SSL/TLS certificate from Let’s Encrypt (and from other CAs whose certificate files contain the CSR part) can now secure mail for a domain. If you renamed your domain or restored it from a backup and now face issues with your mail for a domain, assign an SSL/TLS certificate to the mail once again. (PPPM-10715)
• In File Manager, all files can no longer be renamed so that their names contain spaces at the beginning or end (for example, “file “ and “ file”). Previously, if the.htaccess file was renamed this way, a website could work incorrectly. (PPP-43006)
• The phpMyAdmin interface is now again accessible via the URL /phpmyadmin. (PPP-42510)
• Improved stability in PHP 7.3.7 and 7.2.20 by fixing the PHP-FPM segmentation faults in fpm_event_epoll_wait. (PPP-43093)
• The “Maximum bandwidth usage (KB/s)” and “Connections limited to” options on the “Performance” tab of a service plan can no longer be changed if the Apache “bw” module is not enabled. (PPP-43011)

Windows

• MariaDB is now used as a database server for customers’ websites on new installations of Plesk Obsidian. If you have upgraded to Plesk Obsidian, we strongly recommend that you switch from MySQL to MariaDB. To do so, go to Tools & Settings > Updates > select MariaDB under “MySQL server” and then click Continue. Existing MySQL databases will not be updated anymore even for security reasons, while MariaDB will be updated regularly.
• Plesk administrators and customers can now choose in which mode IIS will run applications: the default 64-bit mode for new applications or optional 32-bit mode for old ones.
• Plesk administrators can now change the location of the customers’ MySQL data directory in Plesk Reconfigurator.
• Plesk updates of MySQL will no longer overwrite all custom my.ini settings with the default values: only the basedir and datadir settings will be now overwritten. (PPP-43013)

Third-Party Component Updates

• PostgreSQL 10 is now supported.
• Updated PHP 7.3 to version 7.3.7.
• Updated PHP 7.2 to version 7.2.20.

Linux

• Updated Roundcube to version 1.3.9.
• Updated tar to version 1.32.
• Updated ModSecurity to version 2.9.3.
• Updated Phusion Passenger to version 6.0.2.

Windows

• Updated MariaDB to version 10.3.16.

• Plesk administrators can now install the Advanced Monitoring and Grafana extensions on Plesk Obsidian.

  Advanced Monitoring is a revamped version of the Server Health Monitor component, which inherits all the component’s features: detailed reports on the server health, on system resources’ usage, and so on. However, Advanced Monitoring displays all server metrics as visually appealing graphs and dashboards by Grafana.

  It is possible because Advanced Monitoring works in tandem with Grafana. When you install Advanced Monitoring, Grafana is also automatically installed. If you are an experienced Grafana user, server metrics collected by Advanced Monitoring is not your single source of data. You can also integrate Grafana with other data sources of your choice.

  For more information, read the descriptions of the Advanced Monitoring and Grafana extensions in the Extensions Catalog.

• Plesk users can now move an add-on domain to a new subscription in the Plesk interface (the add-domain will then become the main domain of the subscription).

• Plesk Administrators can now move an add-on domain to a new subscription via the CLI running the following command:

  plesk bin site --move addon_domain.com -login target_login -passwd target_password
  

• Added the event “Domain moved”, which is triggered when an add-on domain is moved to another existing or new subscription.
• Plesk administrators can now change subjects of the email notification messages (the same way they did so for the messages’ texts).
• Email notifications about automatic installation of system package updates can now be sent to a custom email address.
• There are now no release tiers in Plesk Obsidian and later.
• A Plesk mail server and webmail are now available via HTTPS by default: they are secured with the default SSL/TLS certificate that secures Plesk itself.

• Revamped the look and feel of the main menu:

  • Introduced new icons.
  • Changed how the menu looks on various screen sizes
  • Changed hide and show effects and conditions on various screen sizes.
• Made the search bar of the main menu more visible by moving the search bar to the top of the screen.
• Improved the text of the message shown when a user tries to upgrade to Plesk Obsidian, while the installed Plesk license is not compatible with Plesk Obsidian.
• In Web Admin and Web Pro editions, the information about availability of customers and resellers is now shown correctly in Plesk > Tools & Settings > License Management. (PPP-42195)
• Protected directories for root locations can now be again created via XML-RPC. (PPP-42741)
• After a user changes its email address in the Plesk account, all previously sent links to reset the account’s password now automatically expire. (PPP-42541)

Linux

• Adding protected directories for root locations no longer breaks nginx. (PPP-42741)
• Errors no longer occur after renaming databases’ tables via phpMyAdmin. (PPP-41491)

Windows

• An additional FTP account that was created after a subscription was suspended can no longer access the suspended subscription’s home directory via FTP. (PPP-42247)

Third-Party Component Updates

• Updated phpMyAdmin to version 4.9.0.1.

Linux

• Updated Dovecot to version 2.3.6.
• Updated nginx to version 1.16.0 (both for Plesk and customers’ websites).

Windows

• Added support for Smartermail 100.0.

• Protected directories for root locations can now be again created via XML-RPC. (PPP-42781)

Linux

• Adding protected directories for root locations no longer breaks nginx. (PPP-42787)

• We named the current build “Plesk Obsidian Release Candidate 1.0”. Our team worked hard to make this release stable and fixed 133 issues in addition to the ones listed in these Release Notes. Even better, should you have trouble with this build, Plesk support team will accept support requests for Plesk Obsidian Release Candidate 1.0.
• The SSL It! extension in now installed by default.
• The Repair Kit extension in now installed by default.
• Running plesk bin init_conf --init no longer fails when the -state option is omitted and -country ES is used. (PPP-42336)
• Improved UX when a user tries to remove a backup that is included in a server, reseller or customer level backup: Plesk shows the message that these backups cannot be removed and they are no longer hidden in the user’s interface. (PPP-41039)
• Additional services displayed on Subscriptions > subscription > the “Account” tab > the “Additional services” tab now have descriptions. (PPP-38747)
• When requesting an SSL/TLS certificate, organization names in Chinese are now shown correctly. (PPP-39069)
• The warning “Restore reseller plan “Default Reseller” is no longer shown when restoring a full server backup of a Plesk server with the Web Pro license installed. (PPP-39289)
• Custom buttons that has their own icons and files which names start with the dash character are now backed up without warnings. (PPP-39844)
• Resellers can now sync subscriptions that were once unsynced. (PPP-40252)
• Is now possible to hide Tools & Settings > PHP Settings in Restricted Mode. (PPP-41438)
• Improved the error message shown if a backup created in FTP storage contains an invalid XML file dump-header. (PPP-38786)
• A subdomain’s DNS record is now removed after the subdomain is removed after the BIND installation. (PPP-39828)
• It is now possible to configure FTP storage that does not recognize the LIST -a command. (PPP-39434)
• When a subscription has several add-on domains or subdomains, the subscription overview screen no longer shows the “There are … domains to show. Load all or switch to Classic List” bar. (PPP-40632)
• A subscription can now be fully removed if a hard disk quota is not synced. (PPP-34711)
• The plesk bin mail --info command now shows a correct value of a mailbox size if the mailbox size is the same as in the corresponding service plan. (PPP-40804)
• The plesk bin server_pref -s command now shows the status of all options it can manage. (PPP-41887)
• If a service plan has “Setup of potentially insecure web scripting options that override provider’s policy” disabled, changing a PHP handler in the service plan no longer causes repetitive warnings “There are settings that conflict with the server-wide security policy” to be shown. (PPP-31334)
• Backup Manager is now opened fast if FTP storage is unavailable. (PPP-38660)
• Website preview is now automatically disabled if it was turned on a domain which DNS service was disabled. (PPP-35142)
• Creating a certificate signing request no longer adds the “www” prefix to a subdomain or a domain which preferred domain is set as “none” or without the the “www” prefix. (PPP-41548)
• A DNS record that causes DNS inconsistency can now be removed. (PPP-39511)
• The plesk bin mailserver --info white-list command now shows the full list of mail’s white-listed IP addresses. (PPP-39947)
• Parts of a a multi-volume backup can now be again downloaded from FTP storage. (PPP-37275)
• Subscriptions are now again locked if their mail settings were changed, while the “Ability to change mail settings” permission was not selected for the service plan subscriptions belong to. (PPP-41607)
• It is no longer possible to suspend domains until the backup task is completed. (PPP-41034)

Linux

• Plesk for Linux now support SNI for mail when Postfix version 3.4.0 and Dovecot are used together. There are a number of limitations that we plan to fix in the future releases:
  • SNI certificates cannot currently be backed up, restored, or migrated.
  • SAN certificates (including mail.*) are not served by additional names.
  • Domain aliases might have wrong certificates (default one, not from site) in some scenarios.
  • If the IMAP or SMTP server is replaced with one without SNI support, certificates are kept but can no longer be managed.
• Plesk now ships with Postfix 3.4 on all supported Linux OSes except Debian 8 and CentOS/RHEL/CloudLinux 6.
• In Plesk on CloudLinux, Node.js and Ruby applications now work when CageFS is enabled.
• Plesk administrators can now specify the timeout for Apache health check on reload by using the apacheReloadTimeout setting (under the webserver section) in the panel.ini file. The default timeout is 40 seconds, the minimum one is 5 seconds.
• The Mailman service is now automatically enabled after enabling mailing lists and rebooting the service. (PPP-40080)
• If a subscription was created under a service plan with the disabled nginx proxy mode and the chosen “FPM Application served by nginx” PHP handler, applying a created add-on plan to the subscription no longer leads to incorrectly processed PHP files. (PPP-41201)
• Enhanced reliability of removing subscriptions. (PPP-41164)
• The text in the Watchdog component is now fully localized. (PPP-42128)
• In Plesk behind NAT (for example, Plesk on Lightsail), public IP addresses can now be added or changed if the “BIND DNS server” component is not installed. (PPP-37155)
• Plesk Onyx servers are no longer upgraded to Plesk Obsidian if the installed license does not support Plesk Obsidian. (PPP-42299)
• Plesk administrators no longer receive hourly email notifications that the Kaspersky Anti-Virus license was updated. (PPP-41988)
• The PHP-FPM service no longer crashes after the domain renaming. (PPP-42016)
• The website preview URL is no longer automatically redirected to the main website URL if the www domain was set as preferred and “Permanent SEO-safe 301 redirect from HTTP to HTTPS” was enabled. (PPP-41588)
• If “Permanent SEO-safe 301 redirect from HTTP to HTTPS” was enabled for a website that was set as the default one for an IP address, preview of this and other non-default websites on the IP address is no longer broken. (PPP-40807)
• After removal of an SSL/TLS certificate, running the plesk repair db -n command no longer shows the warning that the cert_rep_id column does not have the 0 value. (PPP-39579)
• The Dovecot LDA service no longer shows warnings that it cannot report statistics under popuser:popuser in Postfix. (PPP-41828)
• If an external MySQL server is set as the default one for a domain and “Allow local connections only” is selected in Database Hosting Settings, the notification about forbidden connections to the database is shown when a user tries to install an application that require databases (for example, Joomla! or Drupal). (PPP-37081)
• In Plesk behind NAT, selecting the “Send from the specified IP addresses” option with the internal IP address in Mail Server Settings no longer changes an external IP address of the mail.example.com DNS record to the internal one. (PPP-41868)
• The message about unsupported architectures is now shown if a user tries to install Plesk on a server that has the ARM CPU architecture. (PPP-41222)
• The plesk bin domain --show-web-server-settings example.com now also shows additional nginx directives. (PPP-40001)
• Dist-upgrade from Debian 8 to Debian 9 no longer fails if the DNSSEC extension was installed. (PPP-38286)
• An event handler with the “Update installed” parameter now again triggers when Plesk updates are installed. (PPP-40513)
• No more errors regarding quotacheck_wrapper.sh on systems with XFS. (PPP-28299)

Windows

• Removed legacy integration with Acronis True Image from code.
• Reduced time necessary for opening the domain overview screen if a subscription has a large number of websites and databases (more than 150). The screen is now shown after 2 seconds compared with 10 seconds previously. (PPP-40479)
• Customizations of DumpTempDir and DUMP_D are now kept after the plesk.msi package was upgraded. (PPP-41825)
• The error “error when communicating with server” no longer occasionally appears during searching for text in emails in the Horde webmail. (PPP-33348)
• Backing up of the subscription that has a large number of files no longer finishes with the warning. (PPP-39179)
• DNS zones on a slave DNS server are now synced with those on the primary DNS server. (PPP-39990)
• The website preview URL is no longer automatically redirected to the main website URL if the www domain was set as the preferred one and “Permanent SEO-safe 301 redirect from HTTP to HTTPS” was enabled. (PPP-42279)
• Deleting a subscription with a mail account now deletes the mail account system users. (PPP-40082)
• Additional read or write permissions are no longer occasionally applied incorrectly to the httpdocs folder. (PPP-42339)
• When a mailbox password is changed to one that exceeds the allowed number of characters, a clear validation error message is now shown. (PPP-41211)
• A database backup file can now be downloaded if the file name contains the space or the plus characters. (PPP-41984)
• If files were not included in a backup (for example, because of the wrong permissions), the files will no longer be added to the backup index and they will be included in the next backup after their permissions were fixed. (PPP-41470)

Third-Party Component Updates

• Updated PHP 7.3 to version 7.3.6.
• Updated PHP 7.2 to version 7.2.19.
• Updated PHP 7.1 to version 7.1.30.

Windows

• Updated MySQL 5.7 to version 5.7.26.
• Updated MySQL 5.6 to version 5.6.44.
• Updated MySQL Connector/ODBC 5.3 to version 5.3.13.
• Updated BIND to version 9.14.1.
• Updated Horde to version 5.2.21.
• Updated IMP, a Horde component, to version 6.2.23.
• Updated Kronolith, a Horde component, to version 4.2.27.
• Updated Nag, a Horde component, to version 4.2.24.

• Plesk 17.9 Preview receives the name of Plesk Obsidian Preview.
• Plesk users can now move add-on domains between subscriptions in the Plesk interface.
• File Manager can now search for files by content.
• File Manager now supports uploading and extracting RAR, TAR, TAR.GZ, and TGZ archives.
• It is now possible to select which NS record will be set as a primary name server in the Plesk interface. It can be done using SOA record, for DNS Template - SOA record template.
• Plesk administrators can now turn off “Feedback reminder” email notifications in Tools & Settings > Notifications and by following the link at the bottom of the notification emails.
• The Plesk UI was updated to modernize it, address several UX issues, and make it visually similar to plesk.com. We streamlined colors and font sizes, and aligned all elements to grid. Check it out!
• Using the XML API operator with the operation node to get the list of users for a particular database no longer results in an error if one or more database users have access to all databases on the subscription. (PPP-41171)
• The plesk bin extension CLI utility no longer leaks memory during execution. (PPP-41904)
• Customers can now be suspended and activated without issue even if one or more subscriptions owned by the customer have a remote SQL database server configured and that database server is not available. (PPP-37491)
• File Manager no longer displays files owned by a different subscription to users who log in to Plesk via a login link containing a session token. (PPP-41536)
• Restricting access to Plesk to specific IP address in Tools & Settings > IP Access Restriction Management now works correctly even if the specified IP address had the white space character appended in front of it (for example, “ 192.0.2.1”). (PPP-41886)
• When a user attempts to remove a domain in Plesk, a warning message is now shown with a list of all domains that would be removed (for example, including all subdomains belonging to the domain). (PPP-40177, PPP-42029)
• The “Start the backup only if your server has the specified amount of free disk space (in megabytes)” field in Tools & Settings > Backup Manager > Backup Settings now accepts values greater than 99999 MB. (PPP-39394)
• Creating backups in remote storage no longer randomly fails with the “The dump has content errors” error. (PPP-40519)
• On newly installed Plesk servers, the “country” field in the Plesk database is set to “US” instead of NULL. (PPP-41779)
• Changing the PHP version for a subscription based on a service plan with the “PHP version and handler management” permission disabled now correctly locks that subscription. (PPP-41480)
• Users can now change both the status and the hosting type of a website via a single XML API request. (PPP-42014)
• When requesting an SSL/TLS certificate, the contents of the “Organization name (company)” field are no longer mangled when the field is filled with Chinese characters. (PPP-39069)

Linux

• Significantly reduced the disk space necessary for creating full server backups in remote storage. Now the space necessary for backing up two subscriptions or 2 volumes (for multivolume backups) is enough.
• A subscription’s FTP user’s name is now correctly limited to 32 characters both when creating a subscription and when editing the FTP user’s properties. (PPP-41978)
• On CentOS 7 x64 servers, the KAV service now correctly restarts and picks up up-to-date virus definitions after virus definitions are updated. (PPP-41813)
• On CentOS 7 x64 servers with selinux and the Cgroups Manager extension installed and enabled, selinux and PAM errors were being logged during the execution of PHP scripts via the PHP-CGI handler. Plesk selinux policy has been updated to rectify this. (PPP-40800)
• Running the plesk bin reconfigurator CLI utility now correctly updates SPF records in domains’ DNS zones in accordance with the mapping file. (PPP-39286)
• Creating backups in remote storage no longer takes up extra disk space on the Plesk server. (PPP-40213)
• Plesk installation no longer fails on Debian 9 x64 servers with absent gnupg packages. (PPP-41511)
• Manually changing the value of the ‘fsPartnersPassword’ field in the ‘smb_settings’ table of the Plesk database no longer corrupts backups created in remote storage. (PPP-41108)
• The KAV service no longer sends the Plesk administrator hourly notifications about updates. (PPP-41988)
• On Debian 9 and Ubuntu 18 servers, creating a backup that contains one or more custom buttons with assigned icons no longer causes warnings, and user files with names starting with the ‘-‘ character are now correctly included in backups. (PPP-39844)
• Changing the email address of a customer account no longer results in an error if the DNS server component is installed, but was not installed at the moment of the customer’s creation. (PPP-39779)

Windows

• The Plesk database is now managed by MariaDB. Clean Plesk installations use MariaDB right from the start, while exising ones will be switched from MySQL to MariaDB during update to Plesk Obsidian Preview.
• Customers preserves changes made to %plesk_dir%\Plesk\Databases\MySQL\my.ini even after Plesk updates or upgrades.
• Plesk now prevents users from creating invalid DNS records that could cause the BIND service to crash. (PPP-41780)
• Custom ‘DumpTempDir’ and ‘DUMP_D’ values specified in the Windows registry are no longer reset to default every time the ‘plesk.msi’ package is upgraded. (PPP-41825)
• Changing the password of a customer account via the CLI no longer results in an error if the username contains international characters. (PPP-41711)
• Users can now unpack archives using File Manager even on servers where cmd.exe is restricted by AppLocker. (PPP-39601)
• Users can now change permissions on the httpdocs directory via File Manager on servers joined to an AD domain if one or more AD users were given permissions to the httpdocs directory. (PPP-41982)

Third-Party Component Updates

• Updated PHP 7.3 to version 7.3.5.
• Updated PHP 7.2 to version 7.2.18.
• Updated PHP 7.1 to version 7.1.29.

Linux

• Updated nginx to version 1.14.2.
• Updated Dovecot to version 2.3.5.1.
• Updated MariaDB to version 10.3.14.
• Updated MariaDB Connector/C to version 3.0.9.
• Updated MariaDB Connector/ODBC to version 3.0.8.

Windows

• Updated Node.js 6 to version 6.17.1.
• Updated Node.js 8 to version 8.15.1.
• Updated Node.js 10 to versions 10.15.3.
• Updated Git to version 2.21.0.
• Updated the Plesk Perl package to version 5.28.1
• Updated Microsoft ODBC Driver 17 for SQL Server to version 17.3.1.1.
• Removed Microsoft ODBC Driver 13 for SQL Server from the default set of components.
• ionCube Loader is now shipped with PHP 7.3.
• Microsoft Drivers for PHP for SQL Server is now shipped with PHP 7.3.
• php_sqlsrv_73_nts_x64 and php_pdo_sqlsrv_73_nts_x64 extensions are now shipped with PHP 7.3.
• Updated Microsoft Drivers for PHP 7.1/7.2 for SQL Server to version 5.6.1.
• Updated Microsoft Drivers for PHP 7.0 for SQL Server to version 5.3.
• Updated Microsoft Drivers for PHP 5.4 for SQL Server to version 3.2.

• If a Plesk Installer process is launched when another one is still running, Plesk now gracefully stops the running process if it is possible. Then Plesk Installer is stopped without negative impact on the server.
• Improved the design of email notifications sent to customers. The default look of the email notifications is now defined by the HTML template /usr/local/psa/admin/conf/email_notification_template.html.sample. To customize the default look, change the default HTML template or upload a custom one. If you upload the custom HTML template, name it /usr/local/psa/admin/conf/email_notification_template.html and keep the message body placeholder.
• Plesk administrators can now preview email notifications sent to customers in Tools & Settings > Notifications by clicking the Preview button next to the desired event. This makes it easier to customize the default look of email notifications by previewing the result and making necessary adjustments before sending.

• Increased the maximum length of database usernames. This improves migration because long database usernames migrated from the source can now be created in Plesk.

  New lengths vary depending on the database management system:

  • MariaDB version 10.0 and higher - 80 characters
  • PostgreSQL version 7.3 and higher - 61 characters
  • PostgreSQL versions lower than 7.3 - 31 characters
  • Microsoft SQL (all versions) - 128 characters
  • MySQL version 5.7.8 and higher - 32 characters
  • Percona version 5.7 and higher - 32 characters
  • Other database management systems - 16 characters
• If the default domain of a subscription is selected for removal, the removal confirmation message now shows the list of all subscription’s domains that will be removed as well. This helps users not remove the default domain by mistake. (PPP-40177)
• Full scheduled server backups can no longer be created instead of incremental server backups. (PPP-41247)
• If the limit on outgoing email messages of an email account exceeds the server-wide limit on outgoing messages from a mailbox, the email account’s settings can now be changed by a customer. (PPP-41235)
• IP addresses are now sorted correctly in Tools & Settings > IP Address Banning (Fail2Ban) > the “Banned IP Addresses” tab. (PPP-41361)
• Full server backups stored in remote storage no longer fail to be restored with the “Unable to import file as dump: The file you are trying to upload is not a valid backup file” error when the server has an extension installed that contains non-UTF-8 characters in its settings. (PPP-41505)

Linux

• Additional nginx directives configured in service plans are now correctly applied to subdomains belonging to subscriptions based on those service plans. (PPP-40605)
• After the name of a domain’s protected directory /plesk-stat was changed, the domain’s web statistics can now be accessed. (PPP-41275)
• After switching from the Dovecot IMAP/POP3 server to Courier, the “Maximum number of connections (IMAP, POP3, IMAP over SSL, or POP3 over SSL)” and “Maximum number of connections per IP address” server-wide mail settings keep the default Dovecot values (1024 and 10 respectively). (PPP-39435)
• If a full server backup contains a customer, whose name contains German characters, the customers’ backup is now created correctly and can be opened without any issues. (PPP-41532)
• When multiple long tasks are launched at the same time, they are now queued and processed correctly: each task is run and just once. (PPP-34433)
• Removed the confusing “WARNING: For PHP 7 the module name in the line below need to be modified!” line from the /etc/apache2/plesk.conf.d/roundcube.htaccess.inc file. (PPP-41131)
• The plesk bin extension utility no longer throws an error when used to register custom DNS backend. (PPP-39754)
• Plesk can now be installed (including via Plesk Web Installer) on Debian 9 Minimal. (PPP-41511)
• Plesk updates no longer fail when Plesk legitimate NFS share is used as DUMP_D. (PPP-41230)
• After the upgrade to Plesk version 17.5 and later, the limit on simultaneous POP3/IMAP4 login processes for the Dovecot IMAP server is now set correctly. (PPP-39914)

Windows

• Plesk administrators can now create domain backups using REST API. (EXTREST-91)
• The plesk sbin statistics.exe --calculate-one --domain-name=example.com command again calculates disk usage of a domain mailbox. (PPP-41557)
• Improved the error message shown if a broken custom security file was uploaded into the %plesk_dir%\etc\disksecurity folder. The error message now shows a path to the broken file. (PPP-40898)

Third-Party Component Updates

• Updated PHP 7.3 to version 7.3.4.
• Updated PHP 7.2 to version 7.2.17.
• Updated PHP 7.1 to version 7.1.28.

• Plesk Administrators can now move add-on domains between subscriptions via the CLI by running the following command:

  plesk bin site --move addon_domain.com -webspace-name target_subscription.com
  

• File Manager now has search: users can recursively search files and folders by names.
• Plesk can now reconfigure the local MySQL server to actually allow remote connections from any host when the corresponding option is selected in Tools & Settings > Database Servers (under “Applications & Databases”).
• Increased the maximum length of FTP usernames to 32 characters.
• Improved the error message shown in Plesk CLI and API if a Plesk license could not be updated because the license server ka.plesk.com could not be accessed: the message now contains the KB article link to help troubleshoot the issue.
• ModSecurity and Fail2Ban are now installed and enabled by default.
• Added new event handlers and actions to Action Log about SSL/TLS certificates on domain/webmail/mail server/Plesk assigned or unassigned.
• For Plesk administrators, SPF, DKIM, and DMARC are now enabled by default for incoming and outgoing emails.
• It is now possible to add a DNS record that contains the <subdomain> placeholder to the DNS template. (PPP-33102)

Linux

• Plesk can now be installed (including via Plesk Web Installer) on Minimal Ubuntu and Debian 9 Minimal. (PPP-40844, WI-388)
• Logs now display the customized SPF explanation text instead of the default “5.7.1 Command rejected” error. (PPP-40884)
• DKIM signing no longer uses the length tag in headers. (PPP-40448)
• After upgrading from Plesk 12.0.18 on a Debian-based operating system, Plesk no longer has the /etc/sw-cp-server/conf.d/apsc.conf file and no longer listens to port 6308. (PPP-37560)

Windows

• It is now possible to set up a MySQL data folder in a custom location using Plesk (all necessary permissions and adjustments will be configured automatically according to the custom path).
• HTTP connections to webmail that is secured with an SSL/TLS certificate are now automatically redirected to HTTPS.

Third-Party Component Updates

• Updated PHP 7.3 to version 7.3.3.
• Updated PHP 7.2 to version 7.2.16.
• Updated PHP 7.1 to version 7.1.27.

Linux

• Updated Dovecot to version 2.3.4.1

Windows

• Updated MySQL 5.6 to versions 5.6.43.
• Added support for ASP.NET Core 2.2.2.
• Dropped support for ASP.NET Core 2.0.
• Updated ASP.NET Core 2.1 to version 2.1.8.
• Updated ASP.NET Core 1.1 to version 1.1.11.
• Updated ASP.NET Core 1.0 to version 1.0.14.

• Plesk version 12.x can no longer be upgraded to Plesk 17.9. The minimum Plesk version for upgrading to Plesk 17.9 is now Plesk Onyx 17.0.
• The system PHP component is no longer mandatory for Plesk. It is now possible:
  • To install Plesk without the system PHP component.
  • To install Horde without the system PHP component.
  • To remove the system PHP component after installation of or upgrade to Plesk 17.9.
  • To install and use custom PHP builds instead of the system PHP component.
• PHP versions 5.6 and 7.0 are now marked as “outdated” in Plesk and Plesk Installer. These PHP versions were also removed from the default set of components in the stable Plesk release.
• The “SSL/TLS support” and “Permanent SEO-safe 301 redirect from HTTP to HTTPS” options are now enabled by default for new and preset hosting plans and add-on plans as well as for new custom subscriptions. This helps users effortlessly enhance security and improve the Google rank of created websites.
• Email settings shown on the “Configure Email Client” window (mail server username, incoming and outgoing mail servers, and supported incoming and outgoing mail protocols) can now be customized via the [mail] section settings in the panel.ini file.
• Improved the error message shown if a Plesk license could not be updated because the license server ka.plesk.com could not be accessed: the message now contains the KB article link to help troubleshoot the issue.
• Improved UX, names, and descriptions of ModSecurity rule sets. Now it is easier to distinguish between free and paid rule sets, and between Atomic rule sets bought from Plesk and Atomicorp. The description of the Atomic Standard rule set (former Atomic Basic ModSecurity) now contains the procedure how to upgrade the set to Atomic Advanced.
• Made the name “Scheduled tasks” more conventional for Linux users by adding “(cron jobs)” to it. Scheduled tasks can now be found by the keywords “cron jobs” via search. (PPP-40473)
• File sharing now works even if “Permanent SEO-safe 301 redirect from HTTP to HTTPS” is enabled for the domain that was selected in “Web Folder root URL”. (PPP-31256)
• The plesk repair utility can now fix service plans with broken PHP handlers by disabling PHP support for the service plans. (PPP-35949)
• Backup Manager no longer attempts to create a scheduled backup in FTP storage if the storage was disconnected. (PPP-39300)
• If a user has two subscriptions and one of them has the “Database server selection” permission turned off, WordPress can now be installed on the second subscription without any issues. (PPP-39433)

Linux

• Dropped support for Ubuntu 14.04.
• By default, systemd now automatically restarts crashed Plesk services after 5 seconds.
• The ImunifyAV extension is now shipped with Plesk.
• To have HSTS implemented on webmail, added the pm_Hook_WebServer hook to Plesk Extensions SDK: the hook adds HSTS headers to webmail configuration files.
• Added the support for TLSv1.3 (enabled by default) for customers’ websites that are served by nginx and accessed by HTTPS.
• It is now possible to switch a domain’s PHP handler to a different PHP version even if nginx proxy mode or nginx itself are disabled. (PPP-37847)
• In Plesk on CloudLinux, LVE now can limit how much resources (CPU, memory, disk I/O, and others) user processes executed via filemng exec can consume. (PPP-39782)
• Increased the verbosity of the error message shown if the update of the Atomic rule set fails. (PPP-40492)
• Domains and subscriptions can now be created without any issues after the Postfix postscreen service was enabled. (PPP-40288)
• It is now possible to dist-upgrade to Debian 9 even if a custom MySQL server is installed. (PPP-40329)
• The spam training process no longer consumes resources by creating files if the SpamAssassin spam filter is disabled. (PPP-38192)
• Apache can now process virtual host configuration files that contain more than 1500 web users. (PPP-40575)
• The dist-upgrade from Ubuntu 14.04 to Ubuntu 16.04 no longer fails to update MySQL 5.5 (trying the unsupported update of directly installing MySQL 5.7 over MySQL 5.5) because the dist-upgrade from Ubuntu 14.04 to Ubuntu 16.04 is no longer supported. (PPP-33523)

Windows

• Fixed the website preview on external domain names for Plesk servers behind NAT. (PPP-40063)
• The plesksrv service no longer creates zombie processes, which slowed down Plesk and could crash it. (PPP-39953)
• It is now possible to get the list of available webmail clients for Plesk for Windows by running the mailserver.exe CLI utility. (PPP-40320)
• Plesk Installer now forbids the use of the quotation marks character (“) in the Plesk administrator password. (PI-525)
• Email accounts can now be created in SmarterMail without any issues because the message buffer size was increased to 16 MB. (PPP-39706)
• Subdomains can now be created even if no PHP handlers are installed. (PPP-40417)

Third-Party Component Updates

• Updated PHP 7.3 to version 7.3.2.
• Updated PHP 7.2 to version 7.2.15.
• Updated phpMyAdmin 4.8 to version 4.8.5, which includes fixes for major security issues.

Windows

• Updated MySQL 5.7 to version 5.7.25, which includes fixes for a number of security issues.
• Updated MySQL Connector/ODBC 5.3 to version 5.3.12.
• Added support for Windows Server 2019.

• The Plesk administrator can now bypass the two-factor authentication by Google Authenticator by running the plesk login -support command, which generates a one-time login link for logging in to Plesk.
• Sped up removing backups from FTP and remote cloud storage. The total time of backup removal is now more than 4 times faster (9 seconds against 43 seconds earlier).
• If the “PHP version and handler management” permission is selected in a service plan, a subscription under this service plan is no longer locked for sync after changing the domain’s PHP version. (PPP-39395)
• If the default domain of a subscription is selected for removal, the removal confirmation message now shows the list of all subscription’s domains that will be removed as well. This helps users not remove the default domain by mistake. (PPP-28784)

Linux

• Users can now gracefully stop Plesk Installer by running plesk installer stop. This command stops Plesk Installer only when it is safe to do so and with no negative impact on the server. You can also stop Plesk Installer by running the plesk installer stop --terminate. This command stops Plesk Installer at once but it can have negative impact to the server.
• Webmail clients now use modern PHP 7.3 shipped with Plesk. We update PHP within 2 business days, which allows us to promptly fix security issues.
  • Webmail clients on existing domains will be automatically switched to use plesk-php73 fastcgi.
  • Webmail clients on newly created domains will use plesk-php73 fastcgi right from the start.
  • The Horde and Roundcube components in Plesk Autoinstaller now require the plesk-php-7.3 component.
• Incremental multivolume backups can now be again restored. (PPP-36269)
• After restoring a number of domains from a backups, SSL/TLS certificates securing these domains are now restored and no issues with the Apache config file occur. (PPP-39613)
• On Ubuntu 16.04, the apt-get update and apt-get upgrade commands can now be executed without any issues if the sasl2-bin package is installed. (PPP-39711)
• Web statistics is now calculated once a day. (PPP-40074)
• On Debian 9, sw-engine-kv no longer slows down the server reboot. (PPP-38825)
• The plesk repair fs utility no longer shows false positive detection of incorrect ownership of subdomains’ directories. (PPP-35591)

Windows

• An SSL/TLS certificate that secures a subdomain is no longer unassigned after restoring the subdomain from a backup. (PPP-38372)

Third-Party Component Updates

• Updated PHP 7.3 to version 7.3.1.
• Updated PHP 7.2 to version 7.2.14.
• Updated PHP 7.1 to version 7.1.26.
• Updated PHP 5.6 to version 5.6.40.

Linux

• Updated libcurl to version 7.63.0.

Windows

• Updated BIND to version 9.12.3.

• The Plesk administrator can now change passwords of customers, resellers, and additional users by automatically sending them an email with a password reset link.
• During the holiday season, users can select the Christmas theme in Skins and Color Schemes.
• The Plesk login pages (https://<...>:8443) are no longer indexed by crawlers.
• Improved error messages shown when sync of subscriptions with the corresponding service plans fails. (PPP-39627)
• Backups created before the change of the Plesk administrator GUID are now rotated. (PPP-38837)
• Custom home directories can now be created when adding an additional FTP account. (PPP-16280)
• It is no longer possible to create an NS record without a corresponding A record via the CLI. (PPP-39509)

Linux

• If a mail client is used, emails are now sent and the Sent folder is now created without any issues. (PPP-39376)
• Improved the error message shown if the psa.conf file cannot be parsed. The message now shows the complete path /etc/psa/psa.conf and the invalid line. (PPP-36385)
• On Debian 9.5, the plesk-dovecot and plesk-courierimap jails now work correctly in Fail2Ban. (PPP-37682)

Windows

• Starting with MailEnable version 10.20, users can secure mail for a domain with individual SSL/TLS certificates. It is particularly useful for those, who use Apple Mail to access mail on Plesk for Windows. They can now access mail via SSL/TLS connection and without the warning that the SSL/TLS certificate securing the mail server cannot be verified.
• Websites with enabled SSL/TLS support can now be reconfigured without any issues. (PPP-39580)
• A VPS license can now be installed on a QEMU KVM server without any issues. (PPP-39785)
• Logs that contain comments are now displayed correctly in the Plesk interface. (PPP-39532)
• The web statistics generation can no longer fail with the error “The system cannot find the file specified. (Error code 2)”. (PPP-39648)
• Subscriptions can now be created even if IIS already has an application pool with the same domain name. (PPP-39617)

Third-Party Component Updates

• Updated phpMyAdmin to version 4.8.4, which includes fixes for multiple security issues. We highly recommend that you update Plesk. However, note that phpMyAdmin 4.8.4 cannot execute stored procedures.
• Updated PHP 7.3 to version 7.3.0.
• Updated PHP 7.2 to version 7.2.13.
• Updated PHP 7.1 to version 7.1.25.
• Updated PHP 7.0 to version 7.0.33.
• Updated PHP 5.6 to version 5.6.39.

Linux

• Updated collectd to version 5.8.1.
• Updated nginx to version 1.14.1, which supports HTTP/2 Server Push.

Windows

• Web Deploy 4.0 is now shipped with Plesk.
• Updated MailEnable to version 10.20.
• Updated libcurl to version 7.62.0.

• Users can now add nested routes using the extensions SDK.
• PHP 7.3 RC is now shipped with Plesk.
• APS catalog is no longer empty if libcurl version 7.61 or later is installed on the server. (PPP-39356)
• Encrypted files are now opened correctly in File Manager. (PPP-36641)
• Incremental multivolume backups can now be again restored. (PPP-39144)
• Improved the web users’ description by adding the following: “If scripting is enabled, web users can access all files of a subscription.”. (PPP-39080)
• The Perl or Python components enabled for a hosting plan no longer stops sync of subscriptions with the hosting plan. (PPP-39073)
• Failure in the OptimizeStatistics task of Daily Maintenance Task no longer stops execution of subsequent tasks. (PPP-39142)

Linux

• Backups restoration no longer fails if the directory for temporary backup files and /usr/local/psa/ are located on different drives. (PPP-39061)
• The clear error message is now shown when backup process fails because the backup upload to FTP storage was interrupted. (PPP-39301)
• The command plesk installer --install-component base --reinstall-patch now installs microupdates only if Plesk packages are up to date. (PI-496)
• On CentOS7, users are now protected from starting named.service by mistake, which breaks DNS configuration. The service named start|restart commands do not now start named.service, and the service named status command logs the warning to use named-chroot.service instead. (PPP-37339)
• Plesk installation no longer occasionally hangs on certain environments (for example, OpenVZ). (PPP-38528)
• Successful Watchdog security scan no longer occasionally finishes with a misleading “Scanning process was interrupted” error message. (PPP-39222)
• The PHP-FPM service from OS vendor is now disabled on clean Plesk installation if no PHP-FPM pools are configured. (PPP-38714)
• Scheduled tasks with the “Fetch a URL” type no longer treat returned 2xx or 3xx HTTP status codes as errors and do not send email notifications each time the task is executed. (PPP-39206)
• Configured additional Apache directives for HTTP no longer disappear from Apache configuration after “Permanent SEO-safe 301 redirect from HTTP to HTTPS” was enabled. (PPP-38364)
• Installation of a license for Advanced ModSecurity Rules by Atomicorp no longer overwrites installed Atomic Secured Linux license. (PPP-35935)

Windows

• PHP extensions designed for WordPress hosting (sodium, exif, and fileinfo) are now precompiled into PHP engines shipped with Plesk.
• Plesk installation no longer fails if the administrator password contains certain special and non-Latin characters. (PI-463)

Third-Party Component Updates

• Updated PHP 7.2 to version 7.2.12.
• Updated PHP 7.1 to version 7.1.24.

Linux

• Updated Roundcube to version 1.3.8.
• Updated libcurl to version 7.61 in Plesk Installer.
• Updated OpenSSL to version 1.1.1.

Windows

• Updated MailEnable to version 10.19.

• Users can now create email addresses for subdomains.
• Users can now remove the Plesk mail service for a domain or choose not to create it when a domain is created. This is useful when using a remote mail service - mail to domains hosted in Plesk will no longer be delivered locally.
• The SEO Toolkit extension is now installed by default with Plesk.
• Multiple stability improvements in restart of PHP-FPM services.
• Improved the “Change Your Password” screen: password strength is now checked on the fly, plus users can now create a strong password with one click using the “Generate” button.
• The names of new Plesk editions (for example, “Plesk WordPress Edition”) are now shown correctly in Plesk and on its login page.
• The webmail client of an addon domain is no longer changed to the client of the main domain when an SSL/TLS certificate is issued for the main domain. (PPP-38950)
• It is now possible to remove MX DNS records via the CLI. (PPP-38994)
• It is now possible to add DNS records that contain the underscore character (_). (PPP-37846)
• It is now possible to change the owner of the additional user account via the CLI. (PPP-38599)
• If the Webalizer or AWStats component calculated a main domain’s statistics and then the component was removed, a subdomain or an addon domain can now be created without errors. (PPP-38706)
• If Plesk is opened in Firefox, the “Learn about secure hosting setting” link is now opened (the link is shown on the “Hosting Parameters” tab when creating hosting plans). (PPP-36238)
• Scheduled tasks created by extensions are now run as the psaadm user. (PPP-34285)
• The daily maintenance script is now run as the psaadm user. (PPP-38199)

Linux

• The Plesk administrator can now select the type of Apache restart (graceful or normal) in “Tools & Settings” > “Apache Web Server” (under “General Settings”).
• PHP-FPM for PHP versions 7.1 and 7.2 no longer occasionally hangs during its reload or restart.
• Added the Comodo Free ModSecurity rule set, which provides a starter version of the Comodo ModSecurity rules.
• Updated Fail2ban to version 0.10.3.1. Fail2ban now protects against attackers with IPv6 addresses.
• Dropped support for the Plesk VPN component.
• Plesk Migrator no longer fails if the source server has customized SSH config and allows only new secure MACs. (PPP-36076)
• Improved performance of the postconf utility shipped with Plesk. (PPP-38498)
• The “IP addresses were anonymized” message is no longer shown when IP addresses anonymization is not selected and server settings are applied for the first time. (PPP-38705)

Windows

• The plesk repair --repair-webspace-security -webspace-name example.com command now repairs permissions for the httpdocs folder. (PPP-37376)
• The statistics.exe utility is now located in the %plesk_cli% folder. (PPP-35824)
• Running the pleskbackup utility no longer occasionally deletes already created backups. (PPP-37161)
• Advanced permissions are no longer occasionally displayed incorrectly in File Manager. (PPP-35402)

Third-Party Component Updates

• Updated PHP 7.2 to version 7.2.11.
• Updated PHP 7.1 to version 7.1.23.

Linux

• Updated Phusion Passenger to version 5.3.5, which includes fixes for certain security issues.

Windows

• Updated SpamAssassin to version 3.4.2.
• Updated libcurl to version 7.60 in Plesk Installer.

• Added REST API landing page to Tools & Settings, from which users can:
  • Read the REST API guide.
  • Visit the REST API reference and playground.
  • See the Swagger scheme and an example of a REST API call using curl.
• Now the MySQL fork (MariaDB or Percona) actually installed on the server is shown in the Plesk interface.
• Mail users and additional users can now specify an external email address, which will be used to reset the password if they lose access to the primary email address.
• For security reasons, the “Upload Extension” button is now hidden in the Plesk interface by default. To install extensions from a file, use the extension utility or make the button visible by editing the panel.ini file.
• A custom “Unsupported Browser” page is now shown if Plesk is opened in an outdated browser that is no longer supported.
• Reduced the disk space necessary for restoring particular objects from backups stored in remote storage.
  Now only the backup of the object being restored is imported to the server storage (before this change, the whole server backup was imported).
• Backup Manager no longer attempts to create a scheduled backup in a remote storage if the storage was disconnected or if the corresponding extension was removed. (PPP-37294)
• Dropbox Backup no longer shows an error when backups created more than 30 days ago are stored in Dropbox. (EXTPLESK-463)
• Iframes opened by custom buttons are now correctly resized to fit the contents of the HTML file. (PPP-38388)
• Joomla! instances on subscriptions with PHP 7.0.x can now be updated. (PPP-38503)
• Wrong breadcrumbs (for example, Home > Extensions > WordPress) are no longer displayed to customers. (PPP-36068)
• The size of a MySQL database is now calculated correctly even if the database name contains the hyphen character (-). (PPP-35684)

Linux

• On Debian 9 and Ubuntu 18, the OWASP ModSecurity rule set is now selected by default. The Atomic ModSecurity rule sets (both free and paid) are not shown any more because they are not supported by these operating systems.
• The PageSpeed module is now precompiled with nginx.
• Added support for managing IP addresses via Netplan.
• Users can now again create, edit, and publish websites with Web Presence Builder. (PPP-38382)
• If the configured Sieve rules copies an email with a PDF attachment to another mailbox on the same server, the PDF file is no longer corrupted. (PPP-36408)
• Plesk Update Manager can now be completely disabled. (PPP-38272)
• psa-pc-remote no longer fails with a segfault. (PPP-33599)
• The Wdcollect service is now stopped correctly. It is no longer killed instead of being stopped and the system reboot time is not increased by 90 seconds. (PPP-36948)
• Postfix local now reports an error when Dovecot experiences issues delivering emails. (PPP-36108)
• Auto-reply no longer fails with an error if the response frequency is reached. (PPP-36512)
• Deferred emails are now visible in the Plesk interface. (PPP-37117)
• An IP address added to Plesk via the CLI is now shown right away. (PPP-35951)

Windows

• Additional Expires headers can now be configured in the IIS settings.
• If the %plesk_dir%\admin\repository\registry.xml file is corrupted, Plesk now continues working and shows a clear error message instead of crashing with an HTTP Error 500.0. (PPP-37309)
• Domain statistics and traffic usage are still calculated even if statistics_collector.exe finishes with errors. (PPP-37435)
• An external mail server configured for a domain now correctly handles mail even if SmarterMail version 14.3 and later is used. (PPP-26788)
• Plesk is now initialized correctly. (PPP-38267)

Third-Party Component Updates

• Updated PHP 7.2 to version 7.2.10.
• Updated PHP 7.1 to version 7.1.22.
• Updated PHP 7.0 to version 7.0.32.
• Updated PHP 5.6 to version 5.6.38.
• Updated phpMyAdmin to version 4.8.3.

Linux

• Updated Dovecot and Pigeonhole to versions 2.3.2 and 0.5.2 respectively.

Windows

• Updated MySQL 5.7 to version 5.7.23.

• Users can now access Plesk by https://<host-name-or-IP> without specifying the TCP port 8443. On new instances with Plesk 17.9 Preview 5 and later, this feature is available by default. On instances upgraded from earlier Plesk versions, the feature is enabled by running the following command: plesk bin admin --enable-access-domain.
• Added an ability to apply SOA settings changes to all existing domains. The Plesk administrator can now choose the email address of a person responsible for the domain’s DNS zone (RNAME email address), which will be applied to all domains in Plesk. Additionally, the Plesk administrator can prohibit changing the RNAME email address on a per domain basis.
• Users can now access the REST API auto-generated reference and execute API calls by browsing https://<host-name-or-IP>/api/v2/.
• Users can now execute CLI utilities via the REST API interface by using a new REST API endpoint /cli.
• Cleaned up APS catalog leaving only most popular and important applications.
• Backups which size is more than 20 GB can now be restored from Microsoft OneDrive Backup storage. (EXTPLESK-448)
• Improved an error message in Plesk Installer. (PI-472)
• Backups stored on the server are now rotated if backups were configured to be stored in “Both server storage and Google Drive at My Drive/mybackups”. (PPP-37283)
• The “Define IP Addresses Mapping” screen no longer appears during restoration of the domain which IP address does not match that configured for outgoing mail. (PPP-35576)

Linux

• PHP extensions designed for WordPress hosting are now precompiled into PHP engines shipped with Plesk.
• Website’s statistics (“Web” in the “Usage by services” pie chart) is now shown correctly: the web_users folder is not calculated twice. (PPP-36183)
• Auto-reply mail handler now correctly processes incoming messages without final multipart boundary. (PPP-37667)
• Plesk no longer removes the MySQL root user and log rotation is performed correctly. (PPP-37427)
• Calling the mchk utility no longer disables the usage of short mail account names in Postfix. (PPP-30487)
• Supscriptions’ owners can no longer see the Postfix mail queue. (PPP-36711)
• When restoring a subscription with scheduled tasks from a backup, users no longer see the warning “usr/bin/bash: Cannot open: File exists”. (PPP-37007)
• Backing up is no longer terminated when the sw-engine process is restarted (for example, when packages are updated). (PPP-37337)
• The OK button now works on the “Define IP Addresses Mapping” screen if Plesk is opened in Internet Explorer 11. (PPP-37723)
• statistics_collector on domains with a large number of files (around 1000000 files on 2-3 domains) now consumes a correct amount of memory because statistics_collector no longer stores the list of checked inodes for each domain. (PPP-37742)

Windows

• Improved chances of successful data recovery after the server crash.
• Plesk 17.5 with installed ODBC driver version 3.51.30 32-bit can now be upgraded to Plesk 17.8 without errors. (PPP-36554)
• interface_async_executor.exe processes no longer hinder Plesk work. Now they do not hang if one of them hangs and hung processes are closed. (PPP-36536)
• 32-bit and 64-bit MySQL ODBC connectors now work correctly, when they are both installed on Plesk. (PPP-35368)

Third-Party Component Updates

• Updated PHP 7.2 to version 7.2.9.
• Updated PHP 7.1 to version 7.1.21.

Windows

• Added support for ASP.NET Core 2.1.

• The Plesk administrator can now allow or forbid customers and resellers to store backups in a specific remote cloud storage. To enable this feature, purchase Cloud Pro and install the corresponding cloud storage extension.
• It is now possible to manage Plesk extensions via REST API. Here is what you can do:
  • Get the list of installed extensions.
  • Get detailed information about an installed extension.
  • Install an extension (by code or by URL).
  • Enable or disable an installed extension.
  • Uninstall an installed extension.
• It is now possible to define what features and controls both the main administrator and additional administrators can access using Restricted Mode (known before as Custom View). Unlike Custom View, Restricted Mode applies both in Service Provider view and Power User View. Restricted Mode can be applied during the creation of additional administrator accounts, and can also be applied to all Plesk administrators via the following CLI command: # plesk bin poweruser –off -simple true -lock true.
• The Domain Connect extension is now installed by default with Plesk.
• The Domain Connect extension can now connect Office 365 to Plesk. (PPP-37436)
• Plesk can now store backups in Google Team Drives via the Google Drive Backup extension. (PPP-36528)
• If users scheduled incremental backups with a weekly full backup, a full backup is now created after 6 incremental backups instead of 7. (PPP-35904)

Linux

• Emails received from senders with long names (when the “From” field takes several lines) no longer cause a DMARC error ending up in /opt/psa/handlers/spool by mistake. (PPP-32806)
• PHP-FPM settings configured in panel.ini no longer replace the link of the Help button (marked with ? character) with a wrong link. (PPP-35857)
• Now if qmail is installed, the auto-reply forwarding works correctly: the auto-reply message is sent to the sender and the original email is sent to the specified mail address. (PPP-36511)
• Now when upgrading Plesk 17.5 with installed qmail to Plesk 17.8, no error mentioning master.cf appears. (PPP-37373)
• php_settings -u now updates PHP settings without errors. (PPP-28164)
• When the “Anonymize IP addresses during log rotation and collecting of web statistics” option is enabled, the administrator no longer receives daily error notifications if no logs for rotation exist. (PPP-37612)

Windows

• Additional HTTP headers can now be configured in IIS settings.
• Dropped support for Windows 2008 R2.
• MailEnable Professional and Enterprise can now be secured with SSL/TLS certificates. (PPP-36740)
• In Plesk on Portuguese, files’ permissions can now be changed in File Manager. (PPP-36405)
• TXT records longer than 255 characters can now be added. (PPP-36838)

Third-Party Component Updates

• Updated PHP 7.2 to version 7.2.8.
• Updated PHP 7.1 to version 7.1.20.
• Updated PHP 7.0 to version 7.0.31.
• Updated PHP 5.6 to version 5.6.37.

Windows

• Updated libcurl to version 7.61.

• As a part of GDPR compliance changes: added the “Force daily log rotation for all domains” option in Tools & Settings > Server Settings and as the corresponding CLI command.
• As a part of GDPR compliance changes: added the ability to set the email of the administrator responsible for a DNS zone to “SOA Records Template”.
• Added the ability to store scheduled backups of subscriptions in remote cloud storage as a premium feature. You can purchase it in the Plesk Online Store. The purchase of the feature unlocks the ability to use all cloud storages.
• Plesk no longer fails to back up a subscription to remote storage if the subscription was created under a hosting plan without the selected “Backup and restoration of subscription data using remote storage” option. (PPP-37009)
• Customers can now discard the “Subscribe to our newsletters” pop-up message by clicking “No, thanks”.(PPP-37057)
• Actions initiated by pmmcli_daemon are now logged properly with details. (PPP-37160)
• Plesk no longer assigns an outdated PHP version to created domains. (PPP-35860)
• Scheduled tasks no longer show the misleading tooltip “Run a command” implying that clicking the scheduled task will run it. (PPP-35936)
• Restoring a full server backup no longer results in warnings if specific configuration lines were added to the [php] section of the panel.ini file prior to the creation of the backup. (PPP-36132)
• Users now can submit file names containing the hyphen (-) character when configuring custom index files. (PPP-37315)

Linux

• Security improvements.
• As a part of GDPR compliance changes: removed the ServerAdmin directive from Apache configuration. To remove the ServerAdmin directive from the configuration files of existing domains, run the plesk sbin httpdmng --reconfigure-all command.
• As a part of GDPR compliance changes: improved IP address anonymization by removing IP addresses from web statistics.
• In case of decreasing a maximum number of log files in log rotation settings, excessive logs are now removed immediately.(PPP-37016)
• The PostgreSQL database no longer fails to be restored from a backup if the database has objects owned by any database user. (PPP-36922)
• Plesk no longer creates backups with the warning if they contained empty archives and the “Do not compress backup files” option is selected in the server backup settings. (PPP-29832)
• Excessive notifications regarding missed service command from KAV update are no longer sent. (PPP-36395)
• Creating a scheduled task in Plesk and configuring the time it must be run in cron format no longer results in an error when a decimal number is used. (PPP-34022)
• Incoming email messages that fail to pass DMARC authentication are no longer indefinitely stored in the /opt/psa/handlers/spool/ directory. (PPP-32807)
• Filters in Roundcube now work correctly if the specified destination folder’s name is in Russian. (PPP-30445)
• PHP Settings are no longer reverted to default ones if they were applied via the CLI, and then the subscription was customized. (PPP-34306)
• Fixed the website preview on external domain names for Plesk servers behind NAT. (PPP-36151)
• Now, after clicking “Check for Updates” (in Tools & Settings > System Updates), the correct date and time of the latest update check is displayed even if no updates were available. (PPP-30352)
• The “Anonymize IP addresses during log rotation” checkbox no longer remains selected if IP anonymization was not actually enabled due to backend errors. (PPP-36813)

Windows

• The php-cgi.exe process is no longer terminated with the 0xc0000409 exception. (PPP-36404)

Third-Party Component Updates

Linux

• Added support for MariaDB versions 10.2 and 10.3.

Windows

• Updated 7zip to version 18.05.
• Updated MySQL Connector/ODBC to version 5.3.10.
• Updated Plesk SQL Server to version 5.7.22.
• Updated MySQL to version 5.7.22.
• Microsoft ODBC Driver 17 for SQL Server is now shipped with Plesk.
• Updated the Plesk Perl package to version 5.26.2.
• Added support for the SQLSRV driver for PHP 7.1 and 7.2.
• Removed duplicates of %plesk_dir%\bin utilities from %plesk_dir%\admin\bin. If you have integrations configured with these utilities, please use now %plesk_dir%\bin.