• We value your experience with Plesk during 2025
    Plesk strives to perform even better in 2026. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2025.
    Please take this short survey:
    https://survey.webpros.com/
  • On Plesk for Linux mod_status is disabled on upgrades to improve Apache security.
    This is a one-time operation that occurs during an upgrade. You can manually enable mod_status later if needed.

Control Panel - forgot password feature

Z

Zevo

Guest
I've had some targeted attempts to gain access to the Plesk control panel. These attempts are targeting specific users who have access to the control panel for their email. They have requested passwords using the control panel, which are in turn sent to the legit recipient.

My question: is there a log file that would show these requests (not the login itself like you can find in the action log). I'd like to see where these requests are coming from...I suspect a disgruntled employee.

Thanks.
 
If you know the approximate time the mails were sent (look at the headers) then you can probably correlate it to an http request in /usr/local/psa/admin/logs/httpsd_access_log
 
You must log in or register to reply here.

Similar threads

A
Question Plesk Admin - Bad Bot protection
Replies
4
Views
2K
Alban Staehli
A
G
Question Plesk Panel Extremely Slow and Shows White Screen Despite Server Resources Being Idle
Replies
2
Views
2K
HHawk
HHawk
K
Forwarded to devs No password reset for additional admin accounts
Replies
2
Views
2K
Kaspar
K
T
Issue After moving subscription, users receive message "Your subscription was removed", Cannot create new webspace.
Replies
2
Views
3K
thespark
T
S
Resolved Roundcube - remove option to change inital password
Replies
4
Views
5K
seqoi
S
Back
Top