• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Resolved Pre-Onxy Server Hardening (CIS Benchmark)

W

Walter

Basic Pleskian
I will be using Debian or Ubuntu server to deploy a new instance of Onyx. Here are some questions regarding steps to harden my OS before loading Onyx or additional software...

1. CIS Benchmark: Does Plesk Onyx support a server OS that has been pre-hardened with the CIS benchmark? Are there any particular settings I need to avoid?

Specifically I'm asking about the particular sections of CIS Benchmark relating to:

Network configuration
TCP Wrappers
Disabling uncommon network protocols
System File Permissions
User and Group Settings

2. SELinux / AppArmor: Does Plesk/Onyx support one or both of these security apps with the Onyx product?
 
I created a support ticket with Plesk and received the following statement, "The server hardening as per DISA or CIS benchmarks should not cause any issues with Plesk operations normally."
 
You must log in or register to reply here.

Similar threads

D
Issue The file /opt/psa/admin/htdocs/login.php is part of Plesk distribution. It cannot be run outside of Plesk environment.
Replies
0
Views
3K
Deveoo
D
custer
Important Removing deadweight in Plesk Onyx 17.8
Replies
3
Views
8K
Laurence@
Laurence@
J
Plesk Onyx – Designed for Vultr.com
Replies
0
Views
3K
Joerg Strotmann
J
E
How to migrate your services to a server managed by Plesk Panel
Replies
1
Views
3K
Kingsley
Kingsley
J
Plesk Onyx – Designed for Vultr.com
Replies
0
Views
3K
joerg
J
Back
Top