• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Question How to show logs for webmail.DOMAIN.com subdomain? Log section shows only logs for main domain

J

jmar83

Regular Pleskian
Server operating system version
Debian 10.13
Plesk version and microupdate number
18.0.66 Update #1
How to show logs for webmail.DOMAIN.com subdomain? I have a problem with roundcube webmail (shows me a http 403 instead to list the mails in the web GUI)

Log section shows only logs for main domain, but not for subdomains so it seems...

Thank you very much for your feedback(s).

1736218519799.png
 
Hmmm... yes, now i disabled the OWASP Webapp firewall on global settings (which means webapp firewall generally disabled) and now it works.

So: How to exclude the problematic rules for webmail.domain.com but not for domain.com?

And: So it seems, i can't use custom domain settings (on URL https://my-server.com:8443/smb/web/web-server-settings/id/[WEBSITE_ID]) because the domain is locked (not "disabled", otherwise i would not be able to use the mail system anymore)
 
UPDATE:
now i saw that domin.com/roundcube is not present - and also not domain.com/webmail. my system uses webmail.domain.com
 
Where are you trying to add the rule, please? It should be under Custom directives in Tools & Settings > Web Application Firewall (ModSecurity) > Settings rather than the domain/subdomain itself.
 
Thank you very much for your feedback. So: What do i need to add here to exclude OWASP webapp firewall for webmail.domain-a.com, webmail.domain-b.com, webmail.domain-c.com, ...
1736310862185.png
 
so i already said, on my plesk server roundcube is NOT on domain.com/webmail - it's on webmail.domain.com. (and no, i changed nothing on default configuration. i don't know on which plesk version roundcube is on /webmail URL path?)
 
For this particular rule it does not matter what domain/subdomain you are using. The default webmail URI should start with /roundcube/, which is what the rule is aimed at. However, it looks like you are using NGINX-based ModSecurity rule set. So, let's try blocking the rule causing the issue. Please check /var/log/modsec_audit.log for any ModSecurity entries matching webmail.domain.com. If there are any matches you can locate the rule ID and disable it as per this guide.
 
ok so now i changed to apache based modsec ruleset, not the apache config intrustions was saved but they are red and it still does not work

1736435569288.png1736435598969.png
 
If the issue is ModSecurity related, it possible for the request to be blocked excluding 'roundcube' from the URI. This is something that you should be able to verify in the logs. Could you please check /var/log/modsec_audit.log for any entries matching webmail.domain.com?
 
There is a list somewhere in the WWW with all rule IDs i have to disable (but i don't have the URL yet, need to search it) - so please just explain me to to apply there rules for domain webmail.domain.com... (on the main domain page, these subdomain does not seems to apply when i configure it on apache "custom settings")
 
(The rule IDs are useless when i can't apply them in plesk GUI... so i firstly need to know how to apply them before i search for that rule IDs... otherwise, its a waste of time i.m.o...)
 
now i asked ChatGPT for the rules / config instructions... but when i apply them on custom domain settings, i just get an error message
 

Attachments

  • Unbenannt.png
    Unbenannt.png
    55.6 KB · Views: 2
Last edited by a moderator:
So you see, the domain is locked for some reasons (which means website is not available anymore, but mail system still works)

So i think, the apache custom settings will not match anymore when the domain is locked - right? And also because of that the instructions config will result on a error AH00526
 
I think the problem is "by design" in Plesk so it should be fixed/solved by the Plesk developer team - right!?
 
You must log in or register to reply here.

Similar threads

G J Piper
Resolved SSL It! Let's Encrypt Not Issuing Certificate on MX-only Domain
Replies
8
Views
559
G J Piper
G J Piper
Polli
Issue Subdomain show wrong DNS entrys but is reachable
Replies
3
Views
769
scsa20
scsa20
P
Question Getting X-Forwarded-For IP address from behind a nginx proxy server
Replies
4
Views
2K
philglau
P
C
Question Plesk with Cloudflare Proxy DNS Records and Letsencrypt..
Replies
0
Views
962
cpulove
C
C
Question How can I secure my Mail with Letsencrypt next to Cloudflares Origin Certificate in Plesk?
Replies
4
Views
1K
cpulove
C
Back
Top