Recent content by Fede Marsell

https://almalinux.org/blog/2026-05-07-dirty-frag/ New vulnerability (easy to fix throught modprobe). Only be sure that IPsec is no in use or instaled in the system. Usually not in PLESK servers.

That's correct, but in those cases, you can disable it at startup: grubby --update-kernel=$(grubby --default-kernel) --args="initcall_blacklist=algif_aead_init" After restarting, verify that it's disabled: cat /proc/cmdline And try running the exploit: python3 -c 'import socket; s =...

Why are extensions being installed on servers without explicit authorization? Following the previous security incident related to the unauthorized installation of Immunify (Issue - Important: Imunify auto installation and possible data leak), we are now facing another unexplained case. The...

It's incredible to see how Plesk users do the work while paying for it, and Plesk thanks them by raising prices in double digits. Truly a perfect business model.

We must act and not let Plesk continue abusing these practices. As I already said, the Plesk user community doesn't care about the security or privacy of their data. This thread is proof of that. A very serious situation, and hardly any response. Only 4 or 5 people are concerned about...

And now, starting in 2026, prices are going up by +26% (Plesk Host).

Totally agree. Same feeling. I’ve been using PLESK since version 2.5. Yes, that’s not a typo — version 2.5. Back then, new license orders were made by FAX!! Nowadays, PLESK is no longer what it used to be. It used to be a product made for system administrators. Now, they’ve completely lost...

@AYamshanov In this thread, you already have several honest opinions from many PLESK users. The sentiment is the same (it's intrusive and without consent). No one has requested this survey. These practices, which are becoming increasingly common with PLESK, should stop.

Apparently, I should say thank you. Since the survey was mandatory, I was forced to lie in every answer. I hope all users who are forced to waste their time do the same.

Well, hope someone tell me How can block this banner. I can not close it (close button doesn not work). And If its possible, How can hide all type of unrequested ads (surveys include).

I’m really tired of Plesk trying to monetize my customers by pushing paid services without my consent -things like WP Guardian add-ons, Codebase options, Hire a developer, payment options for Sitejet, and so on. This practice is not ethical. My customers are my responsibility, not Plesk’s...

Feature introduced in WP Toolkit 6.8.1. My customers are not customers of PLESK or any other company. Therefore, PLESK should not offer them payment options without my consent. Installing PLESK does not give PLESK permission to introduce payment options for my customers. How can delete ALL...

Indeed. That's right. But as you can see, security isn't a priority, neither for PLESK nor for PLESK users. Nobody cares. And this incident is proof of that.

I'd like to add that PLESK has crossed a red line. For some time now, some providers (including some very large ones in Europe) have stopped working with PLESK. The official version is due to the pricing policy (abusive in my opinion), but I believe that behind these decisions are the latest...

Thank you. I'm sorry if my comment wasn't appropriate, but English isn't my language, and I have language limitations when it comes to expressing very complicated topics (like this one). I wouldn't know where to start. I have many servers, on all of which this extension was installed without...