Recent content by trialotto

@Airborne3d First of all, local Plesk databases are run over socket, so TLS / SSL is not necessary at all - do not attempt to install it, since that can or will cause havoc. Secondly, if you want the external MariaDB server to function as a remote dbase for the (local) Plesk, then it is safe...

@MHC_1 Please provide some information about the server that you are working on/with. By the way, this statement indicates that the very likely root cause of the problem is related to some kind of IP blocking as a result of a - continuously - changing IP address. For that reason, just...

@Sebahat.hadzhi There are two things to distinguish : 1 - issues related to time delays, with an (authentic) MFA app on the client-side, and this statement addresses those issues. I found (in the past) that the time delay is not consistent, in the sense that it was 1 second in one test...

@Sebahat.hadzhi This statement is a clear indication that - whenever needed (and that is almost always) - server time synchronization should be checked before installation (as a first step). This statement is true and this is in many ways dangerous. For instance, if the server time is...

@Sebahat.hadzhi The CRL implementation is a bit tricky. Let me explain in the most simplest of terms, for the benefit of all Plesk Forum users and for the general understanding of OCSP and its alternative, the CRLs. OCSP is effective, in the sense that it is - simply stated - equivalent to...

@Sebahat.hadzhi I personally would NOT recommend the command : apt install --reinstall ca-certificates That command would imply (re-)installation of a package, hence a "dirty workaround" - if that workaround would work at all. In essence, if x numbers of repositories do work fine and y...

@Sebahat.hadzhi Could you be so kind as to discuss this "issue" internally? It is an issue from a normal perspective, but it is - also - a bug from a security perspective. In essence, the MFA extensions (all of them) should be set up by means of an install sequence that starts with time...

@Everyone, This statement might be a bit confusing. First of all, OCSP related issues concern all web servers, at least in theory and - in most cases - also in practice. Plesk essentially comes with two flavors of web servers : Apache and stand-alone Nginx. Nginx can be a stand-alone...

@Bitpalast There is no certainty of the presence of causality. These error messages seem to pop up in the same period that error notifications are received due to failing OCSP Stapling, but that does not necessarily mean that there is a relation between these two issues. In fact, the PUM...

@Sebahat.hadzhi This is a "workaround" and NOT a solution. In fact, @Bitpalast was right by stating that it is a bug. The error notifications resulting from nginx are the result of failures related to the OCSP Must Staple extension, as can be deducted from May 7, 2025 Prior to this...

@TimReeves, The config settings in drweb_handler.conf are or should be barely relevant. The config settings in drweb32.ini should be relevant. Can you check that you have in drweb32.ini the following entries 1 - LogFileName = syslog 2 - SyslogFacility = Daemon and please note that...

@TimReeves I think that you should have a look at /etc/drweb/drweb32.ini and make sure that OutputMode = Quiet Also have a look at this : DRWeb logging to console If it is not OutputMode settings, then there might be some other culprits. Also, the recommendation to reinstall Plesk Antivirus...

@realaaa@ I think that we have to avoid misunderstandings. The FTP client is essentially the "source", connecting to a "target" - the FTP server. To be precise, the "source" is actually a server upon which the FTP client resides - when referring to the "source", it is both the server and the...

@ItsPerona After reinstalling systemd-resolved service, it is not recommended to edit /etc/resolv.conf directly, as @Raul A. indicated already. Please contact stratoserver first and ask them for the correct DNS resolvers that have to be added. When knowing the correct resolvers, then...

@ItsPerona First of all, you should check the status - run the command : resolvectl status If the appropriate services are not running, then you should start them and inspect the contents of the resolv.conf files. Again, you should be aware of the fact that many files might be missing or...