ISPConfig 3 issueshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues2018-12-15T18:14:45Zhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/3619DNS / DKIM encryption database limitation2018-12-15T18:14:45ZCédricDNS / DKIM encryption database limitationHi,
Today lot of DNS providers use strong dkim key and that have more than 255 characters.
/usr/local/ispconfig/interface/web/dns/form/dns_txt.tform.php
line 114 : maxlength change for 512 or more (default: 255)
Edit the d...Hi,
Today lot of DNS providers use strong dkim key and that have more than 255 characters.
/usr/local/ispconfig/interface/web/dns/form/dns_txt.tform.php
line 114 : maxlength change for 512 or more (default: 255)
Edit the database field data on the dns_rr table with varchar(512)
ALTER TABLE dbispconfig.dns_rr modify column data varchar(512) not null;
If you use powerdns no modification needed on the powerdns database.
Bye all.3.1https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/3075check box "enable/disable SMTP"2018-12-15T18:14:54ZAlexandre Ellertcheck box "enable/disable SMTP"It would be nice to have a check box to enable or disable SMTP for a mailbox account.
The feature exists for POP/IMAP but not for SMTP.
With this feature, it would be easy to block instantly a compromised account which send Spam.
...It would be nice to have a check box to enable or disable SMTP for a mailbox account.
The feature exists for POP/IMAP but not for SMTP.
With this feature, it would be easy to block instantly a compromised account which send Spam.
As well, this feature could be extended to enable/disable SMTP at the domain level (for example non paying customer).
Please vote for this feature if you'd like to see it in ISPconfig.3.1Marius BurkardMarius Burkardhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/2408nginx / php5-fpm 'ondemand' support for pm2018-12-15T18:15:08ZJonasnginx / php5-fpm 'ondemand' support for pmAs the title declares... it would be very helpful if ispconfig natively supported ondemand support along the dynamic support that's built in. also an option to use sockets for processing by default
Kind regards, JonasAs the title declares... it would be very helpful if ispconfig natively supported ondemand support along the dynamic support that's built in. also an option to use sockets for processing by default
Kind regards, Jonas3.0.5https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/2242nginx Rewrite Rule doesn't work2017-11-10T15:24:02Zmagenbrotnginx Rewrite Rule doesn't workHi,
The nginx rewrite rule generated by Aliasdomain-Rewrite does not work.
This is what is created:
if ($http_host ~* "^meinserver.de$") {
rewrite ^/(.+)$ http://www.meinserver.de/$1 permanent;
}
the rule matches only whe...Hi,
The nginx rewrite rule generated by Aliasdomain-Rewrite does not work.
This is what is created:
if ($http_host ~* "^meinserver.de$") {
rewrite ^/(.+)$ http://www.meinserver.de/$1 permanent;
}
the rule matches only when the URI begins with a slash (i.e. http://meinserver.de/user). But not when the site is accessed by domainname only (http://meinserver.de)
this rule works (note the deleted slashes):
rewrite ^(.+)$ http://www.meinserver.de$1 permanent;
kind regards
Oliver3.0.5https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/2093make option to configure records_per_page (number of rows per page)2018-12-15T18:15:17ZAntalmake option to configure records_per_page (number of rows per page)Number of rows is by default 15, it would be great is this is configurable from the interface.
I've ran the command below to increase it to 200 for every page, but i don't like editing the core files. Use at your own risk!
find /us...Number of rows is by default 15, it would be great is this is configurable from the interface.
I've ran the command below to increase it to 200 for every page, but i don't like editing the core files. Use at your own risk!
find /usr/local/ispconfig/interface/web -name *.list.php -type f -exec sed -i -r 's/(^.*records_per_page.*= ").*(";$)/\1200\2/g' {} \;3.0.5https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/6403add mail_relay_recipient_by_source API function2022-11-04T12:04:19ZPyte Cadd mail_relay_recipient_by_source API functionImplement the function mail_relay_recipient_by_source to get a relay recipient record by the "source" field.Implement the function mail_relay_recipient_by_source to get a relay recipient record by the "source" field.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/6377Feature Request: Domain Blacklist for Sites and Email Domains, and maybe DNS?2022-08-14T11:08:44ZCollin MachineFeature Request: Domain Blacklist for Sites and Email Domains, and maybe DNS?NOTE: Please re-assign as feature request.
Would it be possible to have some sort of domain blacklist for sites/email so that users cannot try adding domains used by the system (not created in control panel already as it would cause con...NOTE: Please re-assign as feature request.
Would it be possible to have some sort of domain blacklist for sites/email so that users cannot try adding domains used by the system (not created in control panel already as it would cause conflict).
This should ideally prevent clients from adding a site with a domain being used for other system resources/endpoints not configured in control panel, as well as email domain owned/used by the mail server, but not configured in control panel.
Otherwise the workaround solution is to add them to the control panel and disable them which seems inefficient considering it then creates the unneeded directories and could cause conflict with configured services.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5838Custom SSL Certificate for Aliasdomains and Subdomains2020-10-23T17:56:36ZDiogo BragaCustom SSL Certificate for Aliasdomains and SubdomainsI have seen that this was discussed in a forum before (https://www.howtoforge.com/community/threads/aliasdomains-ssl-certificate.75198/), where the use of multi-domain certificates was suggested, but it would be very important to be able...I have seen that this was discussed in a forum before (https://www.howtoforge.com/community/threads/aliasdomains-ssl-certificate.75198/), where the use of multi-domain certificates was suggested, but it would be very important to be able to enter the certificate manually for subdomains and alias domains.
My suggestion: add an SSL tab on the form to create/edit subdomains and alias domains, with the same fields as the SSL tab of the main domain. In the same configuration file as the main site (nginx/apache), create a new additional vhost with the same properties as the main domain, changing only the certificate data and the domain name.
```
// /etc/nginx/sites-available/maindomain.com.vhost
server {
...
ssl_certificate /var/www/clients/client1/web1/ssl/maindomain.com.crt;
ssl_certificate_key /var/www/clients/client1/web1/ssl/maindomain.com.key;
...
server_name maindomain.com www.maindomain.com;
...
}
server {
...
ssl_certificate /var/www/clients/client1/web1/ssl/subdomain.maindomain.com.crt;
ssl_certificate_key /var/www/clients/client1/web1/ssl/subdomain.maindomain.com.key;
...
server_name subdomain.maindomain.com;
...
}
```https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5775Make reconfigure-services available for installed version2020-09-24T17:50:56ZJohannesMake reconfigure-services available for installed versionThis is a feature request to make "reconfigure-services" available for the installed application.
# Problem
Almost every week, the answer on how to reconfigure services has to be posted in the forum.
```
cd /tmp
wget https://www.ispconf...This is a feature request to make "reconfigure-services" available for the installed application.
# Problem
Almost every week, the answer on how to reconfigure services has to be posted in the forum.
```
cd /tmp
wget https://www.ispconfig.org/downloads/ISPConfig-3.1.15p3.tar.gz
tar xvfz ISPConfig-3.1.15p3.tar.gz
cd ispconfig3_install/install
php -q update.php
```
1. The link changes each version (or is there an ISPConfig-latest available)?
2. It requires downloading the whole package
3. It confuses users
Should be no problem to store the master files in /usr/local/ispconfig/server/conf/install or wherever and make the reconfigure-services command available.
This will also make it possible to diff the local installation against the master file and list user changes. Or to diff the currently installed master file with the next update to see which changes will be done.
That's probably related to #4751https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5749[Feature Request] Let's Encrypt [LE] For ISPCONFIG3 & E-Mail.2020-09-19T21:06:55ZNicholas[Feature Request] Let's Encrypt [LE] For ISPCONFIG3 & E-Mail.I would like to suggest a feature if not available in 3.2 already.
To generate a SSL Cert by LE for the main server and not use additional tutorials to generate SSL for main dashboard Portal.
For example, all user or clients might be gi...I would like to suggest a feature if not available in 3.2 already.
To generate a SSL Cert by LE for the main server and not use additional tutorials to generate SSL for main dashboard Portal.
For example, all user or clients might be given a dashboard/control panel link: https://server1.generic.tld
They can or could use their own https://userdoamin.tld:8080 but that'll have SSL Issue so using server1.generic.tld should be fine.
That would also follow with another very important SSL for E-Mail. Everyone on IOS/Android will default or apps will default in using userdomain.tld and will have a SSL/Cert error and not trusted. Most or all will not know to setup and advance settings to allow all incoming certs regardless of self signing.
Once again, we have to setup a SSL/Let's Encrypt manually for email using the generic server1.generic.tld. It will be hard to ask users/clients to not use their own domain and to use server1.generic.tld as a mail and smtp address.
Let alone mail.userdomain.tld and smtp.userdomain.tld and ports. I have reverted to just using userdomain.tld or spop/smtp.
This would be a huge improvement if possible that LE is now been out for few years and works great.
Thanks,https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5619DNS-Wizard: Add "Allow zone transfers to these IPs (comma separated list)" to...2020-06-12T23:23:53ZTimoDNS-Wizard: Add "Allow zone transfers to these IPs (comma separated list)" to WizardHi,
I would like to see the field "Allow zone transfers to these IPs (comma separated list)" being added to the DNS-Wizard for adding zones. This would be handy if your NS1/NS2 are used as DNS-Slaves.Hi,
I would like to see the field "Allow zone transfers to these IPs (comma separated list)" being added to the DNS-Wizard for adding zones. This would be handy if your NS1/NS2 are used as DNS-Slaves.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5557Feature Req: support creation of DKIM 2048-bit keypairs2020-03-03T09:09:00ZRobFeature Req: support creation of DKIM 2048-bit keypairsispconfig 3.1.15p3 appears to create 1024 bit DKIM keys.
Current workaround is manual generation of a 2048 bit keypair and replace files, whilst this works appears to cause a mismatch between gui and filesystem, unsure if any "resync" m...ispconfig 3.1.15p3 appears to create 1024 bit DKIM keys.
Current workaround is manual generation of a 2048 bit keypair and replace files, whilst this works appears to cause a mismatch between gui and filesystem, unsure if any "resync" may wipe out in future.
Please consider allowing creation of 2048-bit keypairs through the gui. Clearly a corresponding dns record must be carefully constructed due to the resulting length but would consider that an admin actively choosing stronger keypair should have the knowledge to manipulate dns accordingly.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5534Feature request - Support for certbot-auto2020-02-12T19:37:14ZRodti MacLearyFeature request - Support for certbot-autoLet's Encrypt will be ending support for the ACMEv1 protocol in June 2020. ACMEv2 isn't supported by older clients, particularly certbot 0.10.2 which is the latest version available on Debian Jessie (via jessie-backports).
This was prev...Let's Encrypt will be ending support for the ACMEv1 protocol in June 2020. ACMEv2 isn't supported by older clients, particularly certbot 0.10.2 which is the latest version available on Debian Jessie (via jessie-backports).
This was previously raised in issue [#5230](https://git.ispconfig.org/ispconfig/ispconfig3/issues/5230).
[EFF's guidance for Debian Jessie](https://certbot.eff.org/lets-encrypt/debianjessie-apache.html) is to remove the outdated certbot package and install a newer version of certbot-auto directly from their site.
My understanding from the ISPConfig code is that only the certbot command is supported.
For those running Debian Jessie who can't easily upgrade, it would be desirable for ISPConfig to support both certbot and certbot-auto when installing/renewing certificates.
Server OS: Debian
Server OS version: Jessie 8.11
ISPConfig version: 3.1.15p2
Certbot: 0.10.2 (via backports)https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5397Simple warning when bind is misconfigured2021-08-22T09:29:30ZJavier AlonsoSimple warning when bind is misconfiguredHi there!
Firstable I want to thank you guys for your work, ispconfig3 is the best in it´s class.
Being using it during years, I´ve realized that if you make a mistake setting bind sometimes you get a warning and can´ t apply any changes...Hi there!
Firstable I want to thank you guys for your work, ispconfig3 is the best in it´s class.
Being using it during years, I´ve realized that if you make a mistake setting bind sometimes you get a warning and can´ t apply any changes. But sometimes the mistake goes through and you are not warned at all.
When this happens new .err files appear in /etc/bind directory.
Problem is that you don´t realize there is anything wrong until you check that directory, and I guess that it should not be difficult to just show a warning somewhere in the control panel.
Probably you already thought about this, in any case I will be happy if you read this email.
Regards
Javier Alonsohttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5345Add configuration option for dovecot variables related to SSL certificate2020-06-25T22:12:16ZJan KopeckyAdd configuration option for dovecot variables related to SSL certificateWhen custom SSL certificate is used in dovecot it is necessary to set them again after every ISPConfig upgrade. Especially "ssl_ca" variable which is not presented in ISPConfig dovecot master template. Please make SSL related variables (...When custom SSL certificate is used in dovecot it is necessary to set them again after every ISPConfig upgrade. Especially "ssl_ca" variable which is not presented in ISPConfig dovecot master template. Please make SSL related variables (ssl_cert, ssl_key, ssl_ca) configurable via ISPConfig GUI.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5282Multiple PHP Versions include in release2019-03-28T15:32:29ZViktorMultiple PHP Versions include in releaseIn connection with the new linux distributions support for several versions of php(add-apt-repository ppa:ondrej/php), I suggest adding the currently supported ispconfig to the standard installation
PHP 5.6 / 7.0 / 7.1 / 7.2 / 7.3
Update...In connection with the new linux distributions support for several versions of php(add-apt-repository ppa:ondrej/php), I suggest adding the currently supported ispconfig to the standard installation
PHP 5.6 / 7.0 / 7.1 / 7.2 / 7.3
Updates are made from repositories, the installation on different OS is almost the same.
I'm not talking about make in / opt
Only about fully supported several versions of php.
The remaining versions of php will be still unchanged.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5272Soap-API even API-User with admin permission can't request ALL DNS-Zones (tho...2019-03-19T14:28:22ZGabriel K.Soap-API even API-User with admin permission can't request ALL DNS-Zones (those without explicit customer-id)I've been trying to work with the Soap-API while developing a migration-script for IspConfig-DNS to Cloudflare. The Soap-API can't even for an API-User with admin permission request ALL DNS-Zones (those without explicit customer-id).
Is...I've been trying to work with the Soap-API while developing a migration-script for IspConfig-DNS to Cloudflare. The Soap-API can't even for an API-User with admin permission request ALL DNS-Zones (those without explicit customer-id).
Is there any other way to fetch them (except directly through database?).https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5204[Request] Add Control Panel Option to secure ISP Config Login2018-12-19T12:26:23ZMartin Hotmann[Request] Add Control Panel Option to secure ISP Config LoginI think these days its normal to be able to secure the Login to the Panel with a SSL Certificate which is not Self sign. (something like Lets Encrypt)
I found this turorial here and its working so far: https://www.howtoforge.com/tutoria...I think these days its normal to be able to secure the Login to the Panel with a SSL Certificate which is not Self sign. (something like Lets Encrypt)
I found this turorial here and its working so far: https://www.howtoforge.com/tutorial/securing-ispconfig-3-with-a-free-lets-encrypt-ssl-certificate/
But why is it not possible within the Control Panel (like in cPanel or Plesk) I think it is not to hard to implement.
You guys would make me happy if oyu implement this in the future :)
Thanks in advance!https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5183Using Lets Encrypt SSL certs with Dovecot2018-11-26T08:00:55ZbrodyUsing Lets Encrypt SSL certs with DovecotUsing Lets Encrypt SSL certs with Dovecot
check the link for full details
https://community.letsencrypt.org/t/simple-guide-using-lets-encrypt-ssl-certs-with-dovecot/2921Using Lets Encrypt SSL certs with Dovecot
check the link for full details
https://community.letsencrypt.org/t/simple-guide-using-lets-encrypt-ssl-certs-with-dovecot/2921https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5159Wildcard DNS2018-10-25T17:12:31ZChris GrahamWildcard DNSIt would be cool if I could add a site where all subdomains mapped to that site's domains (i.e. `*.example.com`).
This is useful for sites that are configured to host multiple domains under the same CMS installation.It would be cool if I could add a site where all subdomains mapped to that site's domains (i.e. `*.example.com`).
This is useful for sites that are configured to host multiple domains under the same CMS installation.