Set the compression for web pages

,

In the following we show you how you can set the compression of a website on our fully managed servers.

There are several options available to you:

  • Disabled
  • Gzip
  • Brotli
  • Brotli + Gzip

Compression with Brotli + Gzip is the default setting to compress smaller files directly when the website is delivered.Brotli is a newer type of compression developed by Google as an alternative to Gzip, Zopfli and Deflate. Google’s case study of Brotli has shown that the compression rates are up to 26% lower than other compressions and the CPU usage is also lower.
The server and the browser (visitor) must be compatible to Brotli and use an encrypted connection via https to benefit from compression.

If your website is delivered with Brotli compression, you can test on here.

You can see the compression levels of Gzip and Brotli for example here.

Set minimum TLS version

,

You can set the minimum TLS version for each website on our fully managed servers.

Various vulnerabilities have led to experts recommending long ago to disable all versions of SSL and TLS 1.0 (this has always been the default setting on our servers). Meanwhile, websites should no longer be reachable with TSL 1.1, but at least support TLS 1.2.

To set the minimum TLS version, you just have to go to ISPConfig and select the “Minimum TLS version”:

 

Every modern browser supports TLS v1.2, most also TLS v1.3, but since the latter version is still considered experimental, it is a good idea to set the pages to TLS v1.2. If you want to be absolutely sure that your site can be reached with an outdated browser, you must choose TLS v1.1.

To test the SSL settings of your site, you can use one of the two links:

https://www.ssllabs.com/ssltest

https://internet.nl/

Backup-Now for websites and database with ISPConfig

,

You can have automatic backups created on our fully managed servers. Now you also have the possibility to manually trigger a backup of a website or a database.

Backup-Now

You can use it, for example, to back up the database before you make major changes to your project. If something goes wrong, you can restore the freshly created backup.

When you start a manual backup, the oldest backup is deleted afterwards.

Configuring Backups in ISPConfig

You can find the settings for the backups in the Backups tab of your website.

You can set the number of backups to be saved under “Number of backups” between 1 and 10.

You can set the interval to different values:

  • Automatic backups inactive
  • Daily
  • Weekly (every Sunday)
  • Monthly (on the 1st of each month)

If you choose “Automatic Backups inactive”, only manual backups are created via Backup-Now.

Start Backup-Now

To start a manual backup, you just have to click on the button “Backup website now” or “Backup database now” to switch from grey to blue and then save the settings:

 

Until a backup is complete, you cannot trigger another manual backup:

After the backup is complete, you will find the backup as usual under “Existing Backups”.

By the way, you can recognize a backup created by Backup-Now by -manual in its name.

 

Datalog History

,

On our Managed Mail Servers and the Full-Managed Servers you can track and undo changes made in ISPConfig.

However, only the settings are written back and not the contents of websites or similar. For example, if you have deleted a website you can only restore the “basic structure” – the contents of the website have to be restored from backups.

Show Datalog History

You will find the menu item “Show Datalog History” under “Monitor”.

 

The history then looks something like this:

When you select an entry, the corresponding activities are displayed and you have the possibility to undo the change:

 

 

Enhanced spam check for mailboxes

,

On our managed mail servers and full-managed servers you can not only set greylistening for each mailbox to on and off for the spam check, but also for RBL, SPF and spoofing.

SPF and RBL are automatically activated for new mailboxes, greylistening and spoofing are disabled by default.

What do these spam checks do in detail?

SPF

The owner of a domain can specify which servers are allowed to send mails. If delivery via another server is attempted, the mail can be rejected directly. This happens in particular with spam mails if the sender in a mail is forged. Unfortunately, there are also postmasters who define these specifications incorrectly or simply forget to add a new server.

It can also lead to problems with the SPF check if mails are sent via an external mail gateway beforehand.

RBL

Our mail servers check incoming mail across one or more lists of servers that have recently sent spam. Connections from “spam spinners” are rejected directly.

Greylistening

At the first connection the sending mail server gets a message that it should try again in a few minutes. This can reduce spam, but is not always optimal for mailboxes that are used for direct communication with customers. Otherwise it can happen that the customer sends a mail and then you have to explain that the reception can take up to 5 minutes.

If a mail server has passed the other checks on the second attempt, its IP is on a whitelist and mails sent later arrive without greylistening.

Spoofing

Email spoofing refers to the forgery of the email header so that the message gives the impression that it has a different origin or source. Spam distributors often use spoofing to get the recipients of the email to open the message so that they respond to its content.

Set individual checks

Log on to your server in ISPConfig and select the mailbox for which you want to customize the SPF, spoofing, or RBL check.

 

Monitor your server

,

You always have full access to the monitoring of your managed server and can view the data directly in your browser, via your smartphone or an add-on from Firefox / Chrome.

Depending on the monitoring value there are two limit values Warn and Crit. If yours is exceeded, the display changes to orange (Warn) or red (Crit). You can adjust the limits directly in ISPConfig on your managed server..

If the state changes, you will receive a mail after a certain time. You will get the notification if the status changes to OK, Warn or Crit.

Content

Set limit values

top

Log into ISPConfig on your Managed Server and open the “Tools” in the upper right corner. Under Managed Server on the left side you can set the monitoring.

To adjust the values, select one of the checks and then define the limits. For the mail queue it looks like this:

If there are 20 to 29 mails not yet sent on your server, the status changes to Warning. If 30 or more mails have not yet been sent, the status changes to Critical.

Browser

top

Just open the URL https://monitor.schaal-it.net for monitoring in your browser and log in with your access data.

Smartphone APPs

aNag for Android

top

Grab aNag from the the playstore and start the App.

You can freely choose the name – it only serves to distinguish between different instances.

The other data are:
Instance type: Icinga/Nagios (HTML)
URL: https://monitor.schaal-it.net/cgi-bin/
Username: Your Username
Password: Your Password

easyNag for iPhone & iPad

top

You can download and install easyNag here.

You can use the settings for Android for the individual values.

Add-On for Firefox and Chrome

For Firefox you can use the current version of imoin.

imoin

top

Install the add-on in Firefox via Add-Ons or in Chrome via this Link and set up access:

Version: Nagios Core 4.0.7+
URL: https://monitor.schaal-it.net
Username: Your Username
Password: Your Passwort

Update PHP versions (automatically)

,

On our managed servers you can view the versions of the additional PHP version directly in ISPConfig. If a new version is available, you can update the PHP version or use the “Auto-Update” function. With Auto-Update” enabled, the PHP version will be updated as soon as a newer version is released.

additional PHP versions

Additional PHP versions can be installed in addition to the PHP version of the operating system and then used for individual web pages. PHP versions 5.6, 7.0, 7.1, 7.2 and 7.3 are available on our managed servers. The ionCube loader is always installed with all versions.

Which versions are additionally installed always depends on the operating system of the respective server. For Debian Jessie PHP 5.6 is not an additional version, while for Ubuntu 18 PHP 7.2 is not an additional version. Which versions you see on your server for updates depends on the respective server – the screenshots may look different for you.

show additional PHP versions

Log in to ISPConfig on your server and click on “Tools” in the upper right corner and then “Manage PHP Versions” in the lower left corner. You will be shown the installed versions:

 

You can see at a glance which versions are not updated or whether an installation is currently being updated.

 

 

If an update is available, you will be shown the button “Update” and can immediately start the update. You also have the option to automatically update a version. All you have to do is check the box “Auto-Update” and save the settings.

 

GDPR Plugin for ISPConfig

,

With our ISPConfig GDPR Plugin we have developed an enhancement that allows you and your customers to sign online contracts for data processing.

As an admin, you also have the option of generating agreements or other contracts directly and send them to the client.

You can also export all data stored for a customer in ISPConfig to generate information about the stored data. Of course, every client can also do this himself.

Try the GDPR Plugin for free

You can download the plugin here and test it for 14 days for free. As a license you simply use “TRIAL”.

If you want to use the GDPR Plugin afterwards, you need a license.

Installation

Download the plugin to your server, unpack the archive and change to the directory ispconfig-gdpr.

If you haven’t installed the ionCube load yet, you can do it either with the script install_ioncube.php or manually for all PHP versions and modes.

php -q install_ioncube.php

We have only tested the script on Debian 7-9 and Ubuntu 14-18 so far. If you are using CentOS for example, you may have to install the ionCube-Loader manually

For the manual installation we recommend to use https://www.howtoforge.com/tutorial/how-to-install-ioncube-loader/

If the ionCube-Loader is installed, you start the installation:

php -q install.php

After that you only have to log in to ISPConfig as admin and activate the module GDPR for the user admin (under System / CP User / Edit User). Then log off once and log on again.

Update

Just start

/usr/local/ispconfig/server/scripts/gdpr/gdpr_update.sh

You can also download the current version, unpack the archive, change to the ispconfig-gdpr directory and then call php -q update.php.

Features of the GDPR Plugin:

  • Automatic generation of order processing (GDPR) contracts by a client
  • Automatic generation of order processing (GDPR) contracts by the admin for a client
  • Generated order processing (GDPR) contracts are saved directly as PDF files
  • Ability for the client to revoke an existing agreement
  • Upload option for the admin to provide additional contracts / data for a client
  • Support of several companies
  • Individual templates for generating contracts
  • Individual templates for sending email
  • Ability to store contracts and other data on the hard disk or directly in the database
  • Export function for the data stored for a client (PDF or XML)
  • The GDPR Plugin is integrated in ISPConfig and can be accessed via the ISPConfig Admin/Client Login
  • Standard PDF templates for companies

License

The ISPConfig GDPR Plugin is an extension to ISPConfig and is not subject to the BSD license.

One license costs 80,00 EUR (95,20 EUR incl. 19% Tax) and includes updates for one year after activation of the license.

Customers who already have a license and want to receive further updates after one year can extend the “update time” for another year for 40.00 (47.60 EUR incl. 19% Tax).

Manual

You can download the manual for free here.