Product Improvements: Autonomous
12 results found
-
Unlock 200 Characters Limit When Setting Header Rules in the Web Rules UI
Currently, we cannot fully migrate our existing Content Security Policy because it exceeds 200 characters. The policy we intend to implement is over 600 characters long. While we could use a plugin to achieve this, adding one solely for this purpose would be redundant. This limitation is blocking our transition from a Hybrid Stack to a Lightning Stack.
1 vote -
Do not disclose server versions in error messages
The version of Apache (Debian) server is disclosed in when attempting to browse to a WordPress endpoint as an unauthenticated user on our web application.
The message reads:
Forbidden
You don't have permission to access this resource.
Apache/2.4.63 (Debian) Server at [domain] Port 80An attacker could use the information provided to attempt to identify vulnerabilities with the application.
We recommend you prevent the server version from being disclosed in error messages.
3 votes -
Autonomous - have a good solution for spam form submissions
We are getting spam submissions on our gravity forms. We have a checkbox captcha but it's not stopping them. We have gravity forms zero spam that's classifying them well but we really need to block them at the source. Normally, with a VPS or Cloudways Flexible, I can create some WAF rules via Cloudflare that are very effective, but I can't do that with Autonmous. Plus, cleantalk is not a good solution as once it misclassified a bunch of valid submissions as spam costing a client of mine alot of money, and I've actually lost them as a client because…
2 votes -
Give customers the option to download access and error logs
Give customers the option to download access and error logs; currently they are only browsable via console.
3 votes -
Hourly or Custom Backup Schedules
we should be able to have hourly incremental backups in place at least, instead of just 2x per day. Otherwise, we have to rely on 3rd party plugins and spend yet even more money on top of an already expensive platform.
2 votes -
Allow server wide compatibility check for upgrading packages to all apps in server
Allow a service to check server wide if apps in the server will be compatible with upgrading packages like PHP and MariaDB.
This service can be very useful for agencies.
We would pay for this for time to time and this will help us maintain high security and features on our servers.1 vote -
Add malware protection to autonomous sites.
Would be even better if it were free
7 votes -
Auto Block Suspicious IPs
Seems like that would be excellent feature request for cloudways to develop and system that checks the IPs against https://www.ipqualityscore.com/ip-reputation-check and then blocks any bad actors or Suspicious IPs
that's what AI is built for!2 votes -
Allow to have a different api secret key for team members
Otherwise the account owner must share the main api secret key and that key have full access to all apis including the permission to create new team members, changing permission and so on because via api the team member can impersonate the account owner.
3 votes -
Being the app id an incremental id, we are able to make a list of all the platform customers
It should use a different app id (random or other algorithm) instead an incremental one, otherwise I can easily check all the appxxx.cloudwayssites.com and build a customers enumeration.
3 votes -
Allow SAML SSO for organizations
In this day and age it's critical that SaaS platforms support SSO SAML or OAuth to minimize the number of passwords that users must remember.
2 votes -
I need a secure key
Best high security
1 vote
- Don't see your idea?