Skip to content

The HTTP/2 and SSL for all Extension implemented on WHD.usa hackathon

License

Notifications You must be signed in to change notification settings

slonolet/ext-security-advisor

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

99 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Apache 2 Join the chat at https://gitter.im/plesk/ext-security-advisor

Security Advisor

The Plesk Security Advisor solves three important aspects of running web sites:

  • setup free SSL certificates for all domains with Let's Encrypt (existing certificates will be kept)
  • switch all WordPress sites to https only by changing urls in WordPress and adding redirect rules to .htaccess
  • switch all websites to HTTP/2 for improved security and performance
  • scan server for vulerabilities and report them
  • offer updates for outdated packages

How things started

When speaking to a lot of WordPress users on WordPress meet-ups and WordCamps, it turned out that everybody knows that their sites should use SSL only, but many Wordpress users do not know how to actually configure their server correctly. For sure, there are tons of blog articles describing how to switch your WordPress site to https by using the plugin "Better Search and Replace" - but honestly, that has to be easier! And configuring Let's Encrypt for several domains is complicated and effort that nobody wants to do manually. Why not just turn it on with one click? That was our motivation for creating an extension for Plesk at the WHD.hackathon of the largest hosting conference "World Hosting Days". And some colleagues from Datagrid Systems were so excited about the idea that they directly joined our hackathon team and suggested adding a vulnerability scan to make Plesk users aware of vulnerabilities and mitigations.

This is how we started!

If you want to contribute, just do a pull request and we'll review your changes.

We are happy for every contributor since we care a lot for making the internet a safer place!

Contributing

Use the virtual machine with the prepared Plesk installation:

vagrant up

Login URL: http://localhost:8880

Credentials: admin / changeme

About

The HTTP/2 and SSL for all Extension implemented on WHD.usa hackathon

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages

  • PHP 74.2%
  • CSS 18.7%
  • Shell 5.2%
  • Vim Script 1.1%
  • HTML 0.8%