• Hi, Pleskians! We are running a UX testing of our upcoming product intended for server management and monitoring.
    We would like to invite you to have a call with us and have some fun checking our prototype. The agenda is pretty simple - we bring new design and some scenarios that you need to walk through and succeed. We will be watching and taking insights for further development of the design.
    If you would like to participate, please use this link to book a meeting. We will sent the link to the clickable prototype at the meeting.
  • Our UX team believes in the in the power of direct feedback and would like to invite you to participate in interviews, tests, and surveys.
    To stay in the loop and never miss an opportunity to share your thoughts, please subscribe to our UX research program. If you were previously part of the Plesk UX research program, please re-subscribe to continue receiving our invitations.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.

Question Hotlinking protection and Woocommerce transactional mails

Denis Gomes Franco

Denis Gomes Franco

Regular Pleskian
Almost a year ago I posted this: Input - Making hotlink optional in Wordpress websites

TL;DR: If hotlinking protection (which is highly recommended by the toolkit) is enabled, then Woocommerce's transactional emails won't show the store logo when viewed by the customer.

So today I was wondering if this specific use case was fixed (if that was possible at all) in any updates since then. I mean, it would be nice to have hotlinking enabled without causing issues to the store logo in emails. To this day I am not enabling this on my sites so it won't cause any problems but due to this problem I can't make Plesk fix all security issues in all sites at once, I have to manually apply security settings on each site individually so it won't turn on the hotlinking protection.

My suggestion for this is to display a checkbox somewhere to make hotlinking optional, that way we could fix security issues for all sites in one click without turning on hotlinking protection.
 
Hey @Denis Gomes Franco,

It seems that putting hotlink protection to the list of security measures was an oversight on our part. We're planning to move this option out of security measure list to make sure nobody else is confused by its presence there. We might add some configuration options for this feature in the future, too. Hope this helps.
 
Hey @custer , hotlinking protection in itself is good, but it causes the problem I mentioned before, so moving it out or making it completely optional would be great, thanks.
 
Hey @Denis Gomes Franco, you might have seen that we've moved out Hotlink protection from Security screen to the Tools area in WPT 5.6 release. Moreover, in the latest WPT 5.7 update released yesterday we've also added some customization options. Let us know if you have any feedback on that.
 
You must log in or register to reply here.

Similar threads

H
Hotlink Protection - Chrome
Replies
1
Views
2K
Evgeny
E
M
Question Plesk Email Security Pro - 421 4.3.2 Service shutting down, closing channel - Mails are stuck in the queue
Replies
16
Views
1K
Raul A.
R
M
Issue Outgoing Mail Control is always 0
Replies
1
Views
256
MarketPC
M
Z
Question Woocommerce, Redis, PHP Settings - Newbie questions
Replies
5
Views
11K
Zakky
Z
Lrnt
Question Proxy/Secured HTTP & WS requests to avoid CORS
Replies
1
Views
685
Lrnt
Lrnt
Back
Top