Security improvement: Replace PHP crypt() with password_hash() and MD5 with a stronger hashing algo (like BCRYPT) (see https://github.com/hestiacp/hestiacp/issues/895). But would replacing MD5 break the ability to migrate between CPs?
Antivirus scan of the base system (e.g. rkhunter) and user files (e.g. using inotify-tools’ inotifywait with ClamAV’s clamscan & Sophos Free sweep)
Migration scripts from other CPs to HestiaCP. User Skamasle at Github has migration scripts from cPanel, DirectAdmin and CWP to Vesta (see https://github.com/Skamasle)
Note: I’m posting here so we can first discuss / brainstorm. Once we have discussed them here, we can move to opening some issues at Github.
Well, HestiaCP is FOSS and IMHO definately deserves to be listed in Wikipedia (note: which unfortunately has a very strong US-centric bias in certain categories), along other CPs:
considering that other comparable CPs like Webmin, ISPconfig, Kloxo, Ajenti etc and of course the 3 big commercial ones (cPanel, Plesk and Directadmin) all have their own page in Wikipedia.
offer a restricted shell (e.g. rssh or GNU rush) which allows rsync & git
RSSH has been part of Hestia
Maybe we should consider to add GNU rush For Debian 10 / Ubunutu 20.04
Please create a issue for it
improve firewall (ipset lists, hashlimit, fail2ban etc)
Ipset list has been added in 1.2.0
How ever development power is limited…
use rspamd instead of amavis
add WHMCS module (see Vesta’s one)
See http://vestacp.com/docs/#how-to-install-whmcs-module
Probably will work fine for Hestia as the api is almost the same. Please try and if not maybe you could help and fix bugs…
use AppArmor for more of the exposed apps (Exim, Bind, Nginx, Apache)
apparmor-utils is installed on Ubuntu don’t know why it is missing in Debian
create a Wiki (on Github)
We are currently working on the improvement on the website and http://docs.hestiacp.com
create a new article on Wikipedia about HestiaCP
Go ahead…
Backup (borg+borgmatic, rsnapshot)
How ever development power is limited…
If you can/want to make improvements please go a head you may always create a pull request for any improvements…
Currently we are working on the the release of 1.2.0 fixing the last bugs/issues. After that Website, Documentation and many more are on the waiting list.
I added monitoring and log-viewer as #4 (instead of replacing SpamAssassin with rspamd, which I think would be of benefit mainly for busy HestiaCP servers with thousands of e-mails per day).
Antivirus scan of the base system (e.g. rkhunter) and user files (e.g. using inotify-tools’ inotifywait with ClamAV’s clamscan & Sophos Free sweep)
Migration scripts from other CPs, e.g. user Skamasle at Github has migration scripts from cPanel, DirectAdmin and CWP to Vesta (https://github.com/Skamasle)