Hi, I'd like to suggest a new feature to server owner's security, to block other domains visibility from whois services. at the moment, anyone can go to any whois service (i.e. http://reverseip.domaintools.com) and by typing domain name, or the IP address can check what other domains are hosted on this server. i think, to privacy of users and server owners, this is a lack. it may be just an additional feature, but i'm sure people would love to see this as an option to disable this from public view.

If I do not have enough space on the disk to restore from backup then it should disable the UI restore button and send an email or warning to scale up the disk space.

Please add the ability for main/primary account holders to force TFA use for all Team Member accounts. Not having this capability (or the ability to see TFA status on Team Member accounts) is a significant security hole, of the type that could lead us to migrate away.

Simply free malware removal like a lot of other hosting companies are doing. Not everyone can pay for a good security plugin. It could be only included on certain plans, but it's an important service that everyone would appreciate to some extent.

Add Linode Block Storage option for purchasing additional disk space

https://www.linode.com/products/block-storage/

A configuration option for same site session cookies in PHP.ini.Implementation of same site session cookies in PHP servers can avert CSRF attacks.

Applicable to PHP 7.3 and onwards
See https://www.php.net/manual/en/session.configuration.php (session.cookie_samesite)

Hi. You should develop a GitHub Action for a better automatic deployment, like Netlify's (https://github.com/marketplace/actions/netlify-deploy) since it's a more reliable way than using webhooks and custom PHP.

I'd like to have the abiity to implement the following headers on NginX and Apache so I can convince my clients they can pass Header Security Test in conjunction with PCI/DSS. The following are recommendations.

NginX Headers
addheader X-Frame-Options "SAMEORIGIN" always;
addheader X-Xss-Protection "1; mode=block" always;
add_header X-Content-Type-Options "nosniff" always;

Apache Headers
Header always set X-Frame-Options "SAMEORIGIN"
Header always set X-Xss-Protection "1; mode=block"
Header always set X-Content-Type-Options "nosniff"

Referrer-Policy: strict-origin-when-cross-origin

I would like more memory with the cost of buying extra cpu or disk space.

A solution would be to offer Digital Ocean Memory-Optimized Droplets.

Any plans to bring a Lite Speed web server function? I love using CloudWays, but I'm limited by this lack of availability. Thoughts? Plans?

Quite simply, when viewing a long url in the Console Analytics it is not possible to copy or load the URL in question.

see the example below
https://www.dropbox.com/s/dq1pz9gdb54n8w9/Screenshot%202020-09-28%20at%2014.15.25.png?dl=0

Rackspace offer Office 365 plans... since cloudways is a partner for email, would be awesome to extend this relationship to include the office 365 offers (preferably at a discount rate!).

https://www.rackspace.com/microsoft/office-365/pick-your-plan

For offline first mobile apps

This feature is a must, I'm surprised it hasn't caught on any attention. I have a server with 25 applications each one for different clients. I have to keep a log of how much each client has to pay every month or year. If we could do this directly in Cloudways it would be great.

When the server provider has scheduled maintenance planned, Cloudways should notify server admin (via cloudways bot & email?) that scheduled maintenance is planned, including timescales and servers affected.

it is much more professional for us to let our clients know that downtime is likely rather than our clients to contact us complaining of application downtime.

For debugging Magento 2 stores the Xdebug is invaluable.

Magento 2.4 will only support PHP 7.3 and 7.4.

We need a solution for running Xdebug on newer PHP versions.

It's great that Bot Protection blocks traffic that meets Cloudways' predefined criteria automatically, but there is other "bad" traffic that continues to get through. It would be helpful to be able to manually block specific traffic that is malicious to our apps. Similar to the "whitelist" function already in place, it would be great to have a second option to blacklist them.

Adam from WPcrafter. Website takes forever to load the backend always hated it. I wanted sheer performance.

But now I deleted the server and the trial expired so that caused a bad experience as I had 2 days left and really your trial should be longer.

I rate it Cways 4 out of 5. I don't remember telling me that deleting my server will kill my trial.

You guys can do better on that one and work for implementing a 30 day trial (or reseller option etc.).

When we batch orders on ShipStation the callback to the server to change the order status within WooCommerce is not working.

This started happening after Bot Protection was turned on.

I understand we can turn Bot Protection off.

It would just be nice to be protected and to allow ShipStation to change the order status in the application at the same time.