ISPConfig 3 issueshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues2023-12-03T21:18:07Zhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/3100Recipient for cron-errors2023-12-03T21:18:07ZDavid StillerRecipient for cron-errorsIt would be nice if the "MAILTO:"-directive would be maintained by ISPConfig too, for each job.It would be nice if the "MAILTO:"-directive would be maintained by ISPConfig too, for each job.Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/3031Add mod_security option to websites2023-02-03T11:30:39ZMarius BurkardAdd mod_security option to websitesAdd a new checkbox to websites "Enable mod_security".
When enabled, modsec is enabled for this website only (if it's installed but disabled globally on the server).
The Checkbox has no effect, if modsec is not installed on the server.
...Add a new checkbox to websites "Enable mod_security".
When enabled, modsec is enabled for this website only (if it's installed but disabled globally on the server).
The Checkbox has no effect, if modsec is not installed on the server.
In addition, add a global admin option to set who can change the modsec switch (Admin, Reseller, Client).Planned featuresMarius BurkardMarius Burkardhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/6143postfix: custom reject message2022-03-04T23:44:23ZJesse Norellpostfix: custom reject messageAdd a field for custom reject message to postfix blacklist entries.Add a field for custom reject message to postfix blacklist entries.Planned featuresJesse NorellJesse Norellhttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/3940Add SFTP (via SSH) as (better) alternative to FTP(S) Users2021-09-28T16:32:10ZJens GrohAdd SFTP (via SSH) as (better) alternative to FTP(S) UsersAdd the Option to create an SFTP User instead of having to run pure-ftpd and use this age-old protocol. FTP/S is an OK'ish workaround for secure transmission of data, but having the option to use SFTP for file transfer uploads would be m...Add the Option to create an SFTP User instead of having to run pure-ftpd and use this age-old protocol. FTP/S is an OK'ish workaround for secure transmission of data, but having the option to use SFTP for file transfer uploads would be much better.
SFTP could be used via an addition to the OpenSSH server configuration by adding an option set for a specific group or groups (e.g. sftponly) to force those upload account to only be used for SFTP and not provide a login shell.
As the "webXY" users already exist and point to a directory (/var/www/clients/clientXX/webXY) that is owned by root:root, the requirements for SFTP chrooting are already given. Those SFTP accounts could be created just like the Shell Users function with the exceptions given above.
The following snippet would provide a safe chroot environment
# SFTP Only Users
Match Group sftponly
X11Forwarding no
AllowTcpForwarding no
ChrootDirectory %h
ForceCommand internal-sftp
A user (e.g. sftp19_webspace) would just get its homedir (e.g. /var/www/clients/client5/web19) without providing a shell (in /etc/passwd) and would get sftp-only as group so to force the chroot active.
Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/2658Enable relay recipient list for clients when transports are allowed2021-08-19T16:22:12ZTill BrehmEnable relay recipient list for clients when transports are allowedEnable relay recipient list for clients when transports are allowed and add a limit in client limits for relay recipients.Enable relay recipient list for clients when transports are allowed and add a limit in client limits for relay recipients.Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/4846Integrate Cloudflare & StopTheHacker website Addition2021-05-20T14:24:44ZRich StarkieIntegrate Cloudflare & StopTheHacker website AdditionIs it possible to add in the ability to add a website (and automatically configure dns) to cloudflare and/or stopthehacker naturally only free plan sites could be added.
An API is available, I assume, as the facility is available in t...Is it possible to add in the ability to add a website (and automatically configure dns) to cloudflare and/or stopthehacker naturally only free plan sites could be added.
An API is available, I assume, as the facility is available in the likes of cPanel and PleskPlanned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/3494Allow enable/disable directive snippets for clients2020-11-01T16:11:59ZsdafsadfsdAllow enable/disable directive snippets for clientsI know that apache and php additional options are disabled for clients/resellers due to security as they can potentially break the whole webserver setup. However it is still needed to allow clients/resellers to enable some options in cer...I know that apache and php additional options are disabled for clients/resellers due to security as they can potentially break the whole webserver setup. However it is still needed to allow clients/resellers to enable some options in certain situations. My suggestions is to allow them to simply include some of the predefined snippets. I.e. the snippets that are added in the Directive snippets section are available as a list of checkboxes which resellers/clients can simply enable or disable.Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5844Incorrect language management2020-10-23T12:25:08Zcubellsvicent@vcubells.netIncorrect language managementI speak catalan language, and iso 639-1 code for catalan language is **ca**
As you can see in this capture:
![ispconfig_languages_issue](/uploads/37dad9acc67e9bf0477c0203385e026d/ispconfig_languages_issue.png)
I can't create language...I speak catalan language, and iso 639-1 code for catalan language is **ca**
As you can see in this capture:
![ispconfig_languages_issue](/uploads/37dad9acc67e9bf0477c0203385e026d/ispconfig_languages_issue.png)
I can't create language templates for catalan language because **ca** code is taken by Canada country.
Ispconfig is managing languages incorrectly, among other things, because we are confusing country codes and language codes.
Ispconfig must handle better language codes as another free software applications do.
Reference: https://en.wikipedia.org/wiki/List_of_ISO_639-1_codes#CAPlanned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/990Mirror whole Server / only some Services2020-09-25T21:58:08ZAlexander RehbeinMirror whole Server / only some ServicesNow you can set a Server is Mirror from xyz. But the main Problem is if you want to set up a master slave dns system you can set the server is mirror from master. But you mirror also the databases and you cannot create databases only on ...Now you can set a Server is Mirror from xyz. But the main Problem is if you want to set up a master slave dns system you can set the server is mirror from master. But you mirror also the databases and you cannot create databases only on the slave server. So it should be possible to choose. Is Full Mirror of xyz or is mirror for service dns if xyz for example.Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/4794Add support for nginx.org debian packages2020-09-25T21:42:10ZTill BrehmAdd support for nginx.org debian packagesAdd support for the debian packages from nginx.org instead of the nginx packages from the Debian main repository. See #4743 for details.Add support for the debian packages from nginx.org instead of the nginx packages from the Debian main repository. See #4743 for details.Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/4624Extend nginx directives merge features2020-09-25T21:37:13ZTill BrehmExtend nginx directives merge featuresImplement another command like ##before## to put something in front of a section or something like ##mergestart## to put the merged code at the beginning of the section and not at the end.Implement another command like ##before## to put something in front of a section or something like ##mergestart## to put the merged code at the beginning of the section and not at the end.Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/3532Add dynamic reject with postfix verify service2020-09-25T20:35:26ZTill BrehmAdd dynamic reject with postfix verify serviceAdd a dynmic reject configuration by using the postfix verify service for systems that use transports in fron of other mail servers like exchange servers.Add a dynmic reject configuration by using the postfix verify service for systems that use transports in fron of other mail servers like exchange servers.Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/2632restore website permissions function2020-09-25T09:51:23Zhelptecrestore website permissions functionIn version 3.0.4.6, each website configuration update do a restore of website files permissions and ownership to the original scheme.
In version 3.0.5.x it have been misused probably to get access to sensitive files under some circumst...In version 3.0.4.6, each website configuration update do a restore of website files permissions and ownership to the original scheme.
In version 3.0.5.x it have been misused probably to get access to sensitive files under some circumstances
Now in case something goes wrong with permissions will be useful to have a "restore website permissions" function in admin panel that could be runned once.Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/2889make ispconfig compatible with mysql strict mode2020-09-18T16:41:42ZTill Brehmmake ispconfig compatible with mysql strict modehttp://www.howtoforge.com/forums/showthread.php?t=63612http://www.howtoforge.com/forums/showthread.php?t=63612Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/3036Add a check if there is enough space in /etc, before writing config file changes2020-08-28T19:04:57ZTill BrehmAdd a check if there is enough space in /etc, before writing config file changesAdd a check if there is enough space in /etc, before writing config file changesAdd a check if there is enough space in /etc, before writing config file changesPlanned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/5041Suspending a client2020-08-28T17:55:09ZSteffen NielsenSuspending a clientI'm trying to suspend a client from API by changing
```
$params['canceled'] = 'y';
$params['locked'] = 'y';
```
These are submitted to the client_update() function which is reflected in the interface marking respectively the checkboxes...I'm trying to suspend a client from API by changing
```
$params['canceled'] = 'y';
$params['locked'] = 'y';
```
These are submitted to the client_update() function which is reflected in the interface marking respectively the checkboxes "Locked" and "Canceled" as activated. However this doesn't seem to have any impact on the client being able to login or not or neither does it seem to have impact on the client's websites, maildomains etc. being deactivated.
Marking Locked and Canceled in the interface manually works fine.
Am i missing something?Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/2949Improve mail filter function to support X-Originating-To2020-08-14T21:20:32ZTill BrehmImprove mail filter function to support X-Originating-Tohttp://www.howtoforge.com/forums/showthread.php?t=64322http://www.howtoforge.com/forums/showthread.php?t=64322Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/2677Reseller Limit Usage Report2020-07-31T07:15:31ZMichael FürmannReseller Limit Usage ReportThis is a high priority task for me because I shortly had a reseller that messed up my servers
4 Suggestions for Resellers:
- Compairson of defined limits with assigned ressources and actual limits
- Overview of this compairson on r...This is a high priority task for me because I shortly had a reseller that messed up my servers
4 Suggestions for Resellers:
- Compairson of defined limits with assigned ressources and actual limits
- Overview of this compairson on resellers dashboard
- Mail Notifications for exceeded limits
- Lock Resellers on set limits
The customers of my resellers get their invoices from my resellers.
So I only write an invoice to my resellers for the limits I set in the reseller account.
Because there is no overview of assigned / used ressources by reseller I have to trust my resellers not to assign more ressources to their customers than they paid for.
Would be great to have a third tab on reseller form to compare the limits with assigned ressources and actual usage of ressources.
The reseller should also have a compairson of these data on his dashboard.
It would also be great to send an E-Mail notification to the reseller and the admin if the used ressources hit defined marks. Maybe the marks could be configurable in system settings. I'd suggest 75%, 90%, 100%
My last suggestion is an option in resellers profile to lock the reseller to the set limits.
So the reseller can't assign more ressources that set in the limits.Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/2545Add support for realtime logging with vlogger to nginx (code is in forum thread)2020-07-29T17:35:18ZTill BrehmAdd support for realtime logging with vlogger to nginx (code is in forum thread)http://www.howtoforge.de/forum/entwicklerforum-15/vlogger-web_traffic-6737/http://www.howtoforge.de/forum/entwicklerforum-15/vlogger-web_traffic-6737/Planned featureshttps://git.ispconfig.org/ispconfig/ispconfig3/-/issues/2163customer cron jobs get prefixed with the user's home directory2020-07-22T22:34:17ZMarc Schützcustomer cron jobs get prefixed with the user's home directoryIf a customer creates a cron job with a command that doesn't start with /, the web user's home directory is automatically prepended to the command. This fact (which is useful by itself) is unfortunately not mentioned in the frontend, and...If a customer creates a cron job with a command that doesn't start with /, the web user's home directory is automatically prepended to the command. This fact (which is useful by itself) is unfortunately not mentioned in the frontend, and thus not obvious to the user.
For me, this was a problem for two types of commands:
1.) "$HOME/some-script.sh" => quoted to avoid problems with spaces in the home directory; one can never know ;-)
This can be easily worked around by prefixing another /: /"$HOME/..."
2.) cd /some/dir && ./do_something.sh
This can be worked around too: /bin/true && cd /some/dir && ...
It would be nice if prefixing of the home directory was made optional (via a checkbox); this can be switch on by default, so existing cron jobs will continue to work.
But there should at least be a note in the frontend about this.Planned features