ISPConfig 3 issueshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues2019-05-16T16:50:53Zhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5306Mail Backup Recovery to other Account2019-05-16T16:50:53ZAlexMail Backup Recovery to other AccountFeature Request Mail Recovery
Currently, the way for recovering an email mailbox is unsightly since the user can only recover to the current mailbox. A better solution who the user needs to create a recovery mailbox or Ispconfig 3 does...Feature Request Mail Recovery
Currently, the way for recovering an email mailbox is unsightly since the user can only recover to the current mailbox. A better solution who the user needs to create a recovery mailbox or Ispconfig 3 does this even during a recovery. Then the user would have the option to restore mailbox in Life Mail or in a mailbox recovery-Mailname@Domain.tld Mailboxhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5304mimic logrotate dateext2019-05-13T16:09:17ZKoSmimic logrotate dateextAs ISPconfig is not using logrotate for the rotation of the logfiles in /var/log/ispconfig/http and uses the 1,2,3 naming schema, it is not possible to change that easily to a 'dateext' naming style. the benefit of dateext is that the fi...As ISPconfig is not using logrotate for the rotation of the logfiles in /var/log/ispconfig/http and uses the 1,2,3 naming schema, it is not possible to change that easily to a 'dateext' naming style. the benefit of dateext is that the files keep a consistent name and are not messing up the backups -> e.g. every day the data in mylog.1.gz "changes" because it gets replaced by the next new log file. With the dateext option mylog.20190512.gz always stays the way it is and will just get purged when it is old enough (or after X rotations).
It would be nice if ISPconfig would "mimic" the dateext functionality (or even use logrotate).https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5301Description field for email aliases2019-05-08T06:01:29ZGreg LadownyDescription field for email aliasesOptional description field in "Email aliases" "Email Forward" and "Email Mailbox", so that a comment can be added describing the purpose of this alias/forward/mailbox eg. "this was created for subscribing to Whatever.com support , can be...Optional description field in "Email aliases" "Email Forward" and "Email Mailbox", so that a comment can be added describing the purpose of this alias/forward/mailbox eg. "this was created for subscribing to Whatever.com support , can be removed after ..." or "Temporary email account for testing ...., speak to .... to see if it's still needed"
VARCHAR(100) should be sufficient
Rationale
I'm adding a lot of custom aliases or accounts. When subscribing to unknown service I never give my normal email address, as they often keep spamming for years after I stop using them and very often sell their address databases. Before I started using ISPConfig I was adding comments into aliases file directly, with ISPConfig it's not possible as number of aliases grows they become difficult to manage.
Greghttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5300Domain settings validation when adding new email domain2019-05-08T06:03:34ZGreg LadownyDomain settings validation when adding new email domainWhen adding new mail domain can ISPConfig perform some check if the domain is configured correctly, eg checking MX record for it and do not allow or warn if it's not set up correctly.
Some kind of validation of domain ownership would be...When adding new mail domain can ISPConfig perform some check if the domain is configured correctly, eg checking MX record for it and do not allow or warn if it's not set up correctly.
Some kind of validation of domain ownership would be usefull, eg.
- MX record pointing to specific server
- TXT record containing specific value
Server admin could decide whether to allow adding domains without these, warn or require DNS set up beforehand. I understand that sometimes people need to set up domain and mailboxes before switching the MX, but TXT record verification could be an option in this case.
Additionally it would be useful if there was a dashboard showing all mail domains configuration correctness for
MX record - saying eg. "your MX record is not not figured correctly, you will not be able to receive any email for domain here
SPF - if exists, has correct syntax and lists the IP of the server
DKiM public key - if exists for chosen selector, has correct syntax and contains the right public key
DMARC policy record -
Rationale
- People make typos or forget they have to configure DNS.
- Sometimes user adds a domain that belongs to someone else and as a result all email to that domain is treated as local by the server and therefore emails to it cannot be delivered from the server
- Grow knowledge about email authentication to reduce spam volumes and phishinghttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5295Access Control List-support for dovecot2019-04-23T07:20:46ZMartinAccess Control List-support for dovecotIt would be nice, if ACLs for dovecot are supported out-of-the-box in ISPConfig.It would be nice, if ACLs for dovecot are supported out-of-the-box in ISPConfig.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5289suggestions for improving ispconfig2020-03-08T21:09:45ZViktorsuggestions for improving ispconfigI suggest the following changes.
**1. move http2 to main page**
Or move letsencrypt and turn off ssl on the appropriate tab.
Currently, SSL entities are duplicated in terms of usability; this is wrong.
In the ideal to make the switch...I suggest the following changes.
**1. move http2 to main page**
Or move letsencrypt and turn off ssl on the appropriate tab.
Currently, SSL entities are duplicated in terms of usability; this is wrong.
In the ideal to make the switch between self-signed certificates and letsencrypt in the ssl tab, I remind you that the https2 feature is not available until https is enabled and is generally blocked, having this tick after 5 years of active use of ispconfig was a discovery for me, and that was due to my own custom config nginx.
On the face is not thought-out interface logic.
![http1](/uploads/1c163be1d7c1893cc5b53250edc5bdda/http1.png)
**2. Menu PHP process manager**
Bring the php process manager to a separate menu like "additional PHP Version"
This will disable unnecessary or outdated, as well as get rid of the doubtfully made "additional settings" and display there only the current PHP-FMP or CGI, not to mention the fact that it will be possible to change the default settings for them from the admin panel.
![php2](/uploads/633b25ae88a553babe81d9b209b50216/php2.png)
**3.fix a bug with a click.******
problem on all versions of ispconfig3, on all pages.
Click site > the list of sites opens > OK
databases > edit > site > nothing
Such a problem in the entire top menu is solved solely by clicking on the next button on the top menu, for example email and then again on the site.
Proper behavior:
We click site > the list of sites opens >.
In the idiale with a warning about the loss of uninsured data.
![3](/uploads/9c377618261b20c8424b79bdba3bf95d/3.jpg)
**4. Rework algorithm work "web server configuration"**
At the moment, these are trivial apache directives, and therefore this is a duplication of apache snipet functionality.
In reality, this setting should affect:
php.ini with the ability to substitute the site name and path
ability to connect apache modules
Consider the version of php, (zend optimozer only works on php5.2
memcached is not in 7.3 and so on.
Only in this case there is a sense of this menu, for example, for specific CMS settings.
or
big site
small site
read only site
Otherwise, it is better to remove or hide an extra duplicate interface.
![4](/uploads/6254790e0cfc5cfb7b82b3caf8c16c70/4.png)
in fact, this is a set of ready-made snippets, but with the version of php.
In the snipes themselves, it is enough to add only 1 tick.
only for server configuration (do not clutter up the general list of snippets for the client)
![5](/uploads/6e4919e9c7acd7915588ea70cddd703f/5.png)https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5283Globalsearch depends on dashboard permission, but visible either way.2020-03-01T21:52:06ZHelmoGlobalsearch depends on dashboard permission, but visible either way.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5269Using OVH secondary DNS server automatically2020-10-24T18:21:54ZJan KopeckyUsing OVH secondary DNS server automaticallyOVH offer dedicated servers with preinstalled ISPConfig. It would be nice to have option for using OVH secondary DNS server in ISPConfig automatically. There is OVH API available for this purpose:
https://api.ovh.com/
with PHP wrapper:...OVH offer dedicated servers with preinstalled ISPConfig. It would be nice to have option for using OVH secondary DNS server in ISPConfig automatically. There is OVH API available for this purpose:
https://api.ovh.com/
with PHP wrapper:
https://github.com/ovh/php-ovh
Unfortunatelly I have not enough skills to add it myself but I can help with testing.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5257Email usage quota not max quota2020-09-08T16:08:04ZSteffan NoordEmail usage quota not max quotaIt wouild be nice if the quota calculation for a customer will calculate by actual usages and not max set.
example:
limit_mailquota 100 MB on all mailboxes
actual in use:
1 mailbox = 10 MB
2 mailbox = 5 MB
3 mailbox = 10 MB
The questio...It wouild be nice if the quota calculation for a customer will calculate by actual usages and not max set.
example:
limit_mailquota 100 MB on all mailboxes
actual in use:
1 mailbox = 10 MB
2 mailbox = 5 MB
3 mailbox = 10 MB
The question is whether we can do that in the dashboard display data:
Mail Quota allocated to all accounts 100 MB
assigned 25 MB
free quota of 75 MB
And only blocks incomming email if the max quota of the mailbox or customer is reached.
In a controlpanel i used in the past this was the default.
question 2
Is it possible to display the data:
assigned mail quota of 100 MB
used quota (actually used in place of sliding all the mailboxes).https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5256function to create special subdirectories2019-02-26T18:29:10ZKnut Krügerfunction to create special subdirectoriesThere a different console tools to create websites (and maybe other for other purposes ) which are requesting write access to (hidden) directories at webfolder level ( /var/www/clients/clientX/webXYZ/ )
It would be helpful to have the ...There a different console tools to create websites (and maybe other for other purposes ) which are requesting write access to (hidden) directories at webfolder level ( /var/www/clients/clientX/webXYZ/ )
It would be helpful to have the possibility to create (also hidden) subdirectories at the webfolder level.
Example: to use composer with Drupal and sudo -su webxyz composer ... (composer without root user = security issue) you need /var/www/clients/clientX/webXYZ/.composer and subdirectories
The workaround just now is, to create a subdomain (VHOST) with Web folder .composerhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5245ErrorDocument + HTTP error can cause: Request exceeded the limit of 10 intern...2020-03-01T21:51:22ZdoekiaErrorDocument + HTTP error can cause: Request exceeded the limit of 10 internal redirects## short description
Error: Request exceeded the limit of 10 internal redirects due to probable configuration error. Use 'LimitInternalRecursion' to increase the limit if necessary. Use 'LogLevel debug' to get a backtrace.
When using er...## short description
Error: Request exceeded the limit of 10 internal redirects due to probable configuration error. Use 'LimitInternalRecursion' to increase the limit if necessary. Use 'LogLevel debug' to get a backtrace.
When using error document and redirect/deny with fail 4xx / 5xx
## example
The error document is activated for the vhost
In .htaccess:
```
RewriteEngine On
RewriteCond %{REMOTE_ADDR} ^([0-9]{1,3})\.
RewriteCond %{DOCUMENT_ROOT}/block/%1/%{REMOTE_ADDR}.txt -f
RewriteRule . - [F,L]
```
## correct behaviour
Should return the error document
## environment
Server OS: any
Server OS version: any
ISPConfig version: all version (3.1.13)
## proposed fix
When the error document is activated, it should exists a rewrite rule that lead to error document prior any processing.
```
Alias /error/ "/var/www/domain.tld/web/error/"
ErrorDocument 400 /error/400.html
ErrorDocument 401 /error/401.html
ErrorDocument 403 /error/403.html
ErrorDocument 404 /error/404.html
ErrorDocument 405 /error/405.html
ErrorDocument 500 /error/500.html
ErrorDocument 502 /error/502.html
ErrorDocument 503 /error/503.html
<IfModule mod_rewrite.c>
RewriteEngine on
RewriteRule ^/error/ - [L]
</IfModule>
```
==> server/conf/vhost.conf.master (line 55)
```
<tmpl_if name='errordocs'>
Alias /error/ "<tmpl_var name='web_document_root_www'>/error/"
ErrorDocument 400 /error/400.html
ErrorDocument 401 /error/401.html
ErrorDocument 403 /error/403.html
ErrorDocument 404 /error/404.html
ErrorDocument 405 /error/405.html
ErrorDocument 500 /error/500.html
ErrorDocument 502 /error/502.html
ErrorDocument 503 /error/503.html
<IfModule mod_rewrite.c>
RewriteEngine on
RewriteRule ^/error/ - [L]
</IfModule>
</tmpl_if>
```https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5244DKIM issue on internally-generated bounce messages2020-03-23T22:05:41ZZironda SrlDKIM issue on internally-generated bounce messagesHi, we have noticed a issue on DKIM internally-generated bounce messages.
If a our user have a overquota mailbox the bounce message is not DKIM signed although this is configurated.
For example : user over quota example@example.com, buo...Hi, we have noticed a issue on DKIM internally-generated bounce messages.
If a our user have a overquota mailbox the bounce message is not DKIM signed although this is configurated.
For example : user over quota example@example.com, buone message from support@hostingtek.it (on this domain DKIM is correctly configurated), the bounce message is not DKIM signed. We attach sample emails
We have a standard multiserver ispconfig setup
[example.eml](/uploads/cfb8a2293bdb94a198164877507421fa/example.eml)https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5232Sieve filter when "ends with" is not user friendly2019-06-21T08:11:38ZSteffen NielsenSieve filter when "ends with" is not user friendlyWhen you choose to create a mailfilter under the mailbox within ISPconfig with the settings "From" and "Ends with". The user will most likely fill in for example ".com" which gives the following if in sieve:
`if header :regex ["from"...When you choose to create a mailfilter under the mailbox within ISPconfig with the settings "From" and "Ends with". The user will most likely fill in for example ".com" which gives the following if in sieve:
`if header :regex ["from"] [".*\.com$"]`
This will unfornately not trigger on emails from .com-addresses because sieve sees them as ".com>". The following if would trigger instead.
`if header :regex ["from"] [".*\.com\>$"]`
If this can be confirmed by others. Is it possible to make ISPconfig automatically appending ">" when users are choosing filters with "Ends with"? Most likely "Begins with" must be adjusted too.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5222Automatic (BIND native) slave zones2020-09-25T22:30:23ZBlonďákAutomatic (BIND native) slave zonesI wrote skeleton of bind_slave_plugin, which utilize RNDC to create slave zones on non-ispconfiged servers [bind_slave_plugin.php](/uploads/90d24f2da2b2f8626023ec2d9bac4bf2/bind_slave_plugin.php) I have no idea how to configure slave ser...I wrote skeleton of bind_slave_plugin, which utilize RNDC to create slave zones on non-ispconfiged servers [bind_slave_plugin.php](/uploads/90d24f2da2b2f8626023ec2d9bac4bf2/bind_slave_plugin.php) I have no idea how to configure slave servers in ISPCONFIG, so they are hardcoded, but if someone know, how to wire it with ispconfig feel free to use this pluginhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5213rfe: installer should update default php settings2020-12-26T10:07:28ZJesse Norellrfe: installer should update default php settingsThe installer should be able to reset the default php settings according to the current OS (or according to /etc/alternatives/, whatever it does now for new installations should work). It could either do that unconditionally or prompt f...The installer should be able to reset the default php settings according to the current OS (or according to /etc/alternatives/, whatever it does now for new installations should work). It could either do that unconditionally or prompt for whether default php settings should be reset or not.
This seems necessary for consistency and it eases OS updates (like https://www.howtoforge.com/community/threads/after-upgrade-to-ubuntu-18-04-01-all-websites-get-502.80746/page-2#post-383683 and I have had the same issue on debian updates from php 5.6 -> 7.x).https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5212Mailbox limits per domain2020-06-07T16:34:56ZMassimilianoMailbox limits per domainHi,
Im migrating from an old server with vpopmail where was possible to set limits for each mailbox domain.
Could be good the possibility to set upper limits for specific domain, eg.
Max mailbox size, max mailboxes numbers, max forward...Hi,
Im migrating from an old server with vpopmail where was possible to set limits for each mailbox domain.
Could be good the possibility to set upper limits for specific domain, eg.
Max mailbox size, max mailboxes numbers, max forwards, etc
In this way I can assign max disk space per domain (mbox size*mbox numbers) like you can already do with webspace quota, and max resources to use per domain when we talk about forwards aliases etc.
Thank you
Regardshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5199Add support for DNS DNAME records2020-06-13T15:17:49ZTill BrehmAdd support for DNS DNAME recordshttp://www.zytrax.com/books/dns/ch8/dname.htmlhttp://www.zytrax.com/books/dns/ch8/dname.htmlhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5195Two factor authentication2020-03-27T21:59:20ZMike HansenTwo factor authenticationIs it possible to add two factor authentication to the login screen? It would help a lot with security on the control panel. We have clients for whom it's very important to have this layer.
Cheers,
Mike
Design'R'UsIs it possible to add two factor authentication to the login screen? It would help a lot with security on the control panel. We have clients for whom it's very important to have this layer.
Cheers,
Mike
Design'R'Ushttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5194Add checkbox to turn on/off admin protection for websites2020-08-17T21:46:36ZTill BrehmAdd checkbox to turn on/off admin protection for websitesAdd checkbox to turn on/off admin protection for websites on the options tab of the website.Add checkbox to turn on/off admin protection for websites on the options tab of the website.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5193Add Chroot checkbox in cronjob settings2019-07-04T13:33:03ZTill BrehmAdd Chroot checkbox in cronjob settingsCurrently, the chroot type is set in client settings and the chroot type is applied when the cronjob is created. There is no option to turn off chrooting for an existing cronjob yet.Currently, the chroot type is set in client settings and the chroot type is applied when the cronjob is created. There is no option to turn off chrooting for an existing cronjob yet.