We’re thrilled to announce the release of Plesk Obsidian 18.0.70, our Anniversary Edition. It’s a milestone made possible by our incredible community. To celebrate, we’ve added a little surprise: type DISCO in your Plesk panel and see what happens!
Let’s dive into what’s new, improved, and exciting in this special release.
Panel & Hosting Enhancements
Stronger Security
We’ve introduced rate-limiting for login attempts to help protect your servers from brute-force and DDoS attacks. To configure this feature, add lines following the pattern below to the panel.ini file:
[security]
bruteforceProtection.enabled = true ;Enables or disables brute force protection.
bruteforceProtection.rateLimit = 5 ;The number of failed access attempts allowed by an IP address.
bruteforceProtection.rateLimitPeriod = 300 ;The rate limit period in seconds.
New Windows CLI Utility
Plesk for Windows now includes a new command-line utility that lets you manage server components directly from the CLI, making server management faster and more efficient. To see help on the utility usage, run the following command:
plesk bin components –help
Cloud-Ready Upgrades
Plesk images are now based on Ubuntu 24.04 LTS across major cloud platforms: Microsoft Azure, Google Cloud, DigitalOcean, AWS & Lightsail.
Explore the latest Plesk cloud images for more details here.
Small Improvements, Big Impact
- Accessibility Upgrade: The installer and interface now scale up to 200% for better visibility.
- Performance Boost: Task Manager now queries fewer tasks at once and cleans up in batches reducing CPU and RAM usage.
- Smarter QCOW2 Images: More space-efficient, scalable, and secure. More information can be found here.
- Custom Backup Validation Period: Now configurable via panel.ini using the backupsValidationPeriod option. It is set to 7 days as a default.
- Secure by Default (Linux): TLS is now enabled out of the box.
- Optimized PHP Settings (Linux): Default PHP-FPM performance settings are now enforced for better stability and speed. See here for more details.
Deployment Changes & Deprecations
- Windows BIND DNS support has been removed due to security and maintenance concerns.
- Servers still using BIND must switch to Microsoft DNS to upgrade to 18.0.70.
Stability & Fixes
Thanks to your feedback, we’ve resolved dozens of bugs to make Plesk even more reliable and efficient.
Security & Component Updates
Linux:
- ModSecurity: v2.9.9 (fixes CVE-2025-47947)
- PHP (sw-engine): v8.4.6
- Courier Suite: Updated to latest versions
- libarchive: v2.3.2
Windows:
- ASP.NET Core: v9.0.5 & v8.0.16
- PHP (plesk-engine): v8.4.7
- OWASP ModSecurity CRS: v4.14.0
- MailEnable Standard: v10.52
- Node.js: v20.19.2
Before You Upgrade
As always, we strongly recommend backing up your server before upgrading. For full details, visit the official release notes here.
Stay informed about the latest features and improvements by visiting our official Plesk What’s New page.
Thank you for being part of our journey. Let’s continue to grow securely, efficiently, and with a little bit of disco!
No comment yet, add your voice below!