ISPConfig 3 issueshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues2022-11-04T12:04:19Zhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/6403add mail_relay_recipient_by_source API function2022-11-04T12:04:19ZPyte Cadd mail_relay_recipient_by_source API functionImplement the function mail_relay_recipient_by_source to get a relay recipient record by the "source" field.Implement the function mail_relay_recipient_by_source to get a relay recipient record by the "source" field.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/6377Feature Request: Domain Blacklist for Sites and Email Domains, and maybe DNS?2022-08-14T11:08:44ZCollin MachineFeature Request: Domain Blacklist for Sites and Email Domains, and maybe DNS?NOTE: Please re-assign as feature request.
Would it be possible to have some sort of domain blacklist for sites/email so that users cannot try adding domains used by the system (not created in control panel already as it would cause con...NOTE: Please re-assign as feature request.
Would it be possible to have some sort of domain blacklist for sites/email so that users cannot try adding domains used by the system (not created in control panel already as it would cause conflict).
This should ideally prevent clients from adding a site with a domain being used for other system resources/endpoints not configured in control panel, as well as email domain owned/used by the mail server, but not configured in control panel.
Otherwise the workaround solution is to add them to the control panel and disable them which seems inefficient considering it then creates the unneeded directories and could cause conflict with configured services.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5838Custom SSL Certificate for Aliasdomains and Subdomains2020-10-23T17:56:36ZDiogo BragaCustom SSL Certificate for Aliasdomains and SubdomainsI have seen that this was discussed in a forum before (https://www.howtoforge.com/community/threads/aliasdomains-ssl-certificate.75198/), where the use of multi-domain certificates was suggested, but it would be very important to be able...I have seen that this was discussed in a forum before (https://www.howtoforge.com/community/threads/aliasdomains-ssl-certificate.75198/), where the use of multi-domain certificates was suggested, but it would be very important to be able to enter the certificate manually for subdomains and alias domains.
My suggestion: add an SSL tab on the form to create/edit subdomains and alias domains, with the same fields as the SSL tab of the main domain. In the same configuration file as the main site (nginx/apache), create a new additional vhost with the same properties as the main domain, changing only the certificate data and the domain name.
```
// /etc/nginx/sites-available/maindomain.com.vhost
server {
...
ssl_certificate /var/www/clients/client1/web1/ssl/maindomain.com.crt;
ssl_certificate_key /var/www/clients/client1/web1/ssl/maindomain.com.key;
...
server_name maindomain.com www.maindomain.com;
...
}
server {
...
ssl_certificate /var/www/clients/client1/web1/ssl/subdomain.maindomain.com.crt;
ssl_certificate_key /var/www/clients/client1/web1/ssl/subdomain.maindomain.com.key;
...
server_name subdomain.maindomain.com;
...
}
```https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5775Make reconfigure-services available for installed version2020-09-24T17:50:56ZJohannesMake reconfigure-services available for installed versionThis is a feature request to make "reconfigure-services" available for the installed application.
# Problem
Almost every week, the answer on how to reconfigure services has to be posted in the forum.
```
cd /tmp
wget https://www.ispconf...This is a feature request to make "reconfigure-services" available for the installed application.
# Problem
Almost every week, the answer on how to reconfigure services has to be posted in the forum.
```
cd /tmp
wget https://www.ispconfig.org/downloads/ISPConfig-3.1.15p3.tar.gz
tar xvfz ISPConfig-3.1.15p3.tar.gz
cd ispconfig3_install/install
php -q update.php
```
1. The link changes each version (or is there an ISPConfig-latest available)?
2. It requires downloading the whole package
3. It confuses users
Should be no problem to store the master files in /usr/local/ispconfig/server/conf/install or wherever and make the reconfigure-services command available.
This will also make it possible to diff the local installation against the master file and list user changes. Or to diff the currently installed master file with the next update to see which changes will be done.
That's probably related to #4751https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5749[Feature Request] Let's Encrypt [LE] For ISPCONFIG3 & E-Mail.2020-09-19T21:06:55ZNicholas[Feature Request] Let's Encrypt [LE] For ISPCONFIG3 & E-Mail.I would like to suggest a feature if not available in 3.2 already.
To generate a SSL Cert by LE for the main server and not use additional tutorials to generate SSL for main dashboard Portal.
For example, all user or clients might be gi...I would like to suggest a feature if not available in 3.2 already.
To generate a SSL Cert by LE for the main server and not use additional tutorials to generate SSL for main dashboard Portal.
For example, all user or clients might be given a dashboard/control panel link: https://server1.generic.tld
They can or could use their own https://userdoamin.tld:8080 but that'll have SSL Issue so using server1.generic.tld should be fine.
That would also follow with another very important SSL for E-Mail. Everyone on IOS/Android will default or apps will default in using userdomain.tld and will have a SSL/Cert error and not trusted. Most or all will not know to setup and advance settings to allow all incoming certs regardless of self signing.
Once again, we have to setup a SSL/Let's Encrypt manually for email using the generic server1.generic.tld. It will be hard to ask users/clients to not use their own domain and to use server1.generic.tld as a mail and smtp address.
Let alone mail.userdomain.tld and smtp.userdomain.tld and ports. I have reverted to just using userdomain.tld or spop/smtp.
This would be a huge improvement if possible that LE is now been out for few years and works great.
Thanks,https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5619DNS-Wizard: Add "Allow zone transfers to these IPs (comma separated list)" to...2020-06-12T23:23:53ZTimoDNS-Wizard: Add "Allow zone transfers to these IPs (comma separated list)" to WizardHi,
I would like to see the field "Allow zone transfers to these IPs (comma separated list)" being added to the DNS-Wizard for adding zones. This would be handy if your NS1/NS2 are used as DNS-Slaves.Hi,
I would like to see the field "Allow zone transfers to these IPs (comma separated list)" being added to the DNS-Wizard for adding zones. This would be handy if your NS1/NS2 are used as DNS-Slaves.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5557Feature Req: support creation of DKIM 2048-bit keypairs2020-03-03T09:09:00ZRobFeature Req: support creation of DKIM 2048-bit keypairsispconfig 3.1.15p3 appears to create 1024 bit DKIM keys.
Current workaround is manual generation of a 2048 bit keypair and replace files, whilst this works appears to cause a mismatch between gui and filesystem, unsure if any "resync" m...ispconfig 3.1.15p3 appears to create 1024 bit DKIM keys.
Current workaround is manual generation of a 2048 bit keypair and replace files, whilst this works appears to cause a mismatch between gui and filesystem, unsure if any "resync" may wipe out in future.
Please consider allowing creation of 2048-bit keypairs through the gui. Clearly a corresponding dns record must be carefully constructed due to the resulting length but would consider that an admin actively choosing stronger keypair should have the knowledge to manipulate dns accordingly.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5534Feature request - Support for certbot-auto2020-02-12T19:37:14ZRodti MacLearyFeature request - Support for certbot-autoLet's Encrypt will be ending support for the ACMEv1 protocol in June 2020. ACMEv2 isn't supported by older clients, particularly certbot 0.10.2 which is the latest version available on Debian Jessie (via jessie-backports).
This was prev...Let's Encrypt will be ending support for the ACMEv1 protocol in June 2020. ACMEv2 isn't supported by older clients, particularly certbot 0.10.2 which is the latest version available on Debian Jessie (via jessie-backports).
This was previously raised in issue [#5230](https://git.ispconfig.org/ispconfig/ispconfig3/issues/5230).
[EFF's guidance for Debian Jessie](https://certbot.eff.org/lets-encrypt/debianjessie-apache.html) is to remove the outdated certbot package and install a newer version of certbot-auto directly from their site.
My understanding from the ISPConfig code is that only the certbot command is supported.
For those running Debian Jessie who can't easily upgrade, it would be desirable for ISPConfig to support both certbot and certbot-auto when installing/renewing certificates.
Server OS: Debian
Server OS version: Jessie 8.11
ISPConfig version: 3.1.15p2
Certbot: 0.10.2 (via backports)https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5345Add configuration option for dovecot variables related to SSL certificate2020-06-25T22:12:16ZJan KopeckyAdd configuration option for dovecot variables related to SSL certificateWhen custom SSL certificate is used in dovecot it is necessary to set them again after every ISPConfig upgrade. Especially "ssl_ca" variable which is not presented in ISPConfig dovecot master template. Please make SSL related variables (...When custom SSL certificate is used in dovecot it is necessary to set them again after every ISPConfig upgrade. Especially "ssl_ca" variable which is not presented in ISPConfig dovecot master template. Please make SSL related variables (ssl_cert, ssl_key, ssl_ca) configurable via ISPConfig GUI.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5282Multiple PHP Versions include in release2019-03-28T15:32:29ZViktorMultiple PHP Versions include in releaseIn connection with the new linux distributions support for several versions of php(add-apt-repository ppa:ondrej/php), I suggest adding the currently supported ispconfig to the standard installation
PHP 5.6 / 7.0 / 7.1 / 7.2 / 7.3
Update...In connection with the new linux distributions support for several versions of php(add-apt-repository ppa:ondrej/php), I suggest adding the currently supported ispconfig to the standard installation
PHP 5.6 / 7.0 / 7.1 / 7.2 / 7.3
Updates are made from repositories, the installation on different OS is almost the same.
I'm not talking about make in / opt
Only about fully supported several versions of php.
The remaining versions of php will be still unchanged.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5272Soap-API even API-User with admin permission can't request ALL DNS-Zones (tho...2019-03-19T14:28:22ZGabriel K.Soap-API even API-User with admin permission can't request ALL DNS-Zones (those without explicit customer-id)I've been trying to work with the Soap-API while developing a migration-script for IspConfig-DNS to Cloudflare. The Soap-API can't even for an API-User with admin permission request ALL DNS-Zones (those without explicit customer-id).
Is...I've been trying to work with the Soap-API while developing a migration-script for IspConfig-DNS to Cloudflare. The Soap-API can't even for an API-User with admin permission request ALL DNS-Zones (those without explicit customer-id).
Is there any other way to fetch them (except directly through database?).https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5204[Request] Add Control Panel Option to secure ISP Config Login2018-12-19T12:26:23ZMartin Hotmann[Request] Add Control Panel Option to secure ISP Config LoginI think these days its normal to be able to secure the Login to the Panel with a SSL Certificate which is not Self sign. (something like Lets Encrypt)
I found this turorial here and its working so far: https://www.howtoforge.com/tutoria...I think these days its normal to be able to secure the Login to the Panel with a SSL Certificate which is not Self sign. (something like Lets Encrypt)
I found this turorial here and its working so far: https://www.howtoforge.com/tutorial/securing-ispconfig-3-with-a-free-lets-encrypt-ssl-certificate/
But why is it not possible within the Control Panel (like in cPanel or Plesk) I think it is not to hard to implement.
You guys would make me happy if oyu implement this in the future :)
Thanks in advance!https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5183Using Lets Encrypt SSL certs with Dovecot2018-11-26T08:00:55ZbrodyUsing Lets Encrypt SSL certs with DovecotUsing Lets Encrypt SSL certs with Dovecot
check the link for full details
https://community.letsencrypt.org/t/simple-guide-using-lets-encrypt-ssl-certs-with-dovecot/2921Using Lets Encrypt SSL certs with Dovecot
check the link for full details
https://community.letsencrypt.org/t/simple-guide-using-lets-encrypt-ssl-certs-with-dovecot/2921https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5159Wildcard DNS2018-10-25T17:12:31ZChris GrahamWildcard DNSIt would be cool if I could add a site where all subdomains mapped to that site's domains (i.e. `*.example.com`).
This is useful for sites that are configured to host multiple domains under the same CMS installation.It would be cool if I could add a site where all subdomains mapped to that site's domains (i.e. `*.example.com`).
This is useful for sites that are configured to host multiple domains under the same CMS installation.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5156Feature Request: CAA entries for DNS2018-12-07T10:27:53ZOliverFeature Request: CAA entries for DNSHi Folks,
could you please add CAA entries for DNS?
It's just a little change to some files, so we dont have to change it by hand after each update ;-)
Thanks.Hi Folks,
could you please add CAA entries for DNS?
It's just a little change to some files, so we dont have to change it by hand after each update ;-)
Thanks.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5055MariaDB support for client databases2018-05-28T14:32:32ZRadek SoucekMariaDB support for client databasesI please for support for MariaDB user databases.
I find it disheartening that ISPConfig doesn't support the creation and management of MariaDB for the clients. I hope, that add very similar DB like default MySQL so it should be relativ...I please for support for MariaDB user databases.
I find it disheartening that ISPConfig doesn't support the creation and management of MariaDB for the clients. I hope, that add very similar DB like default MySQL so it should be relatively easy or it is not only about add the code to add, edit and delete MariaDB from the client panel?
Please think about that, thank you for this.
Radekhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5049api site aliases2018-05-23T12:46:13ZMichiel Piscaerapi site aliasesFor billing purposes I would like to find all the alias domains of a client via the API. With client_get_sites_by_user I can find all the sites of an client. But not the aliases, I would expect that there is an array with in the answer o...For billing purposes I would like to find all the alias domains of a client via the API. With client_get_sites_by_user I can find all the sites of an client. But not the aliases, I would expect that there is an array with in the answer of client_get_sites_by_user with all the ID of the aliases domains and the same for the subdomains?https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5038Remote client: Add sites_web_domain_get_by_domain function2018-05-23T12:31:24ZRuslanRemote client: Add sites_web_domain_get_by_domain functionAPI function sites_web_domain_get_by_domain would be useful for automation.
Now the only possible way to get domain is by domain_id. And there is no way to get domain_id by domain name.API function sites_web_domain_get_by_domain would be useful for automation.
Now the only possible way to get domain is by domain_id. And there is no way to get domain_id by domain name.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5037Protect the Jailkit Option on the user side2018-05-10T09:02:30ZJohn TaaProtect the Jailkit Option on the user sideIf the Administrator Creates a shell user with Jailkit option selected in Chroot Shell,
this option is not protected on the user panel and the user can easily change
this option back to none, even the user can create other non jailed ...If the Administrator Creates a shell user with Jailkit option selected in Chroot Shell,
this option is not protected on the user panel and the user can easily change
this option back to none, even the user can create other non jailed users, it must be disabled and non changeable on the user side.https://git.ispconfig.org/ispconfig/ispconfig3/-/issues/4914Feature to New Directory for Sub-Domains2018-10-07T14:23:26ZJonathan SvendsenFeature to New Directory for Sub-DomainsHi I would be nice with at feature like the Sentora Panel so you can create a new directory if you want for every sub-domain you create like on the picture here :)
https://imgur.com/Ql94UBz
Regards
JonathanHi I would be nice with at feature like the Sentora Panel so you can create a new directory if you want for every sub-domain you create like on the picture here :)
https://imgur.com/Ql94UBz
Regards
Jonathan