• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:

    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Question Plesk Term Passwords

Ahmet CAVUSOGLU

New Pleskian
Server operating system version
Ubuntu 20 LTS
Plesk version and microupdate number
18.0.50
Hello, is there a system in Plesk Panel that obliges users to change their passwords such as e-mail, panel?
 
There is not forced password change in Plesk. If you believe that this would be an important feature, please vote for any of these feature requests:
If you would like to see a forced password update term for the panel login, please create a new feature request. However, I remember that research has shown that such forced password updates are useless in terms of security. Don't remember the source though.
 
Thank you for your support Peter, the topic you mentioned is important I will keep in mind. If there is the situation you mentioned, it would be appropriate to increase the difficulty of the password instead of renewing the password. Please correct me if I'm wrong. In my opinion, in the case of a continuous attack, part of the password will be decrypted in a certain time.
 
You are right that it is easy to decrypt passwords today, even longer onces, because a lot of computing power is available from some graphics adapters. But when you have Fail2Ban activated in Plesk, this will stop attackers after very few attempts (configurable), so there is no way that brute-forcing can succeed against a Plesk panel.
 
Back
Top