DirectAdmin is lagging behind competitors (or slowly dying)

[dutchdeveloper]

Hello directadmin,

I've been using directadmin for years now and i loved it but now i don't see much different for the past years.
DirectAdmin is lacking features that competitors already have.

For software that you need to pay for you would expect more updates and features.
And recent example is the layout it should be up and running before summer we are now almost 6 months further and it's still not done.

The layout should be done much earlier, it's not hard to make an layout responsive these days so whats going on ?

About the features and lack of security what directadmin is way behind on this.

For example why aren't these headers set on default now you have to manually set these headers for every domain:

Header always set Strict-Transport-Security "max-age=31536000; includeSubdomains;"
Header set X-Content-Type-Options "nosniff"
Header set X-XSS-Protection "1; mode=block"
Header set X-Frame-Options "DENY

Im missing secure mailbox connections on default, setting up new domain accounts should be accessible on https on default with lets encrypt.


An secure firewall should be there like 'ConfigServer Security & Firewall'
dkim, dmarc and TLSA should be added on default for each domains

The ipv6 address isn't added on default to the spf record only ipv4

Im missing an page where you can easily find all the directadmin plugins like npm or what firefox, chrome or even cpanel has.

Hope this can help to make directadmin beter.

Best regards,
Danny

 

[ikkeben]

Hello directadmin,

I've been using directadmin for years now and i loved it but now i don't see much different for the past years.
DirectAdmin is lacking features that competitors already have.

For software that you need to pay for you would expect more updates and features.
And recent example is the layout it should be up and running before summer we are now almost 6 months further and it's still not done.

The layout should be done much earlier, it's not hard to make an layout responsive these days so whats going on ?

About the features and lack of security what directadmin is way behind on this.

For example why aren't these headers set on default now you have to manually set these headers for every domain:

Header always set Strict-Transport-Security "max-age=31536000; includeSubdomains;"
Header set X-Content-Type-Options "nosniff"
Header set X-XSS-Protection "1; mode=block"
Header set X-Frame-Options "DENY

Im missing secure mailbox connections on default, setting up new domain accounts should be accessible on https on default with lets encrypt.


An secure firewall should be there like 'ConfigServer Security & Firewall'
dkim, dmarc and TLSA should be added on default for each domains

The ipv6 address isn't added on default to the spf record only ipv4

Im missing an page where you can easily find all the directadmin plugins like npm or what firefox, chrome or even cpanel has.

Hope this can help to make directadmin beter.

Best regards,
Danny

Hello we are using DA also a long time, are you a hosting company?
Or a DA ADMINIstrator?
Have you ROOT access to the BOXES?

PLUGINS please don't have as much of them as with competitors a lot of freedom is gone and also a lot of extra BUGS or to late security.
Only the most important, for the "Apps" you have softac...and so on they support DA

Security UPDATES there is DA one of the fastest in my view!


You can read howto's wiki's and docs use forums earch for many of you questions there are settings you can do with root acces ofcourse , that kind of defaults you ask is only what you set in the config, that you or your hoster have to do yes or no with installation and or template parts, then they are default!
IN a lot of situations people don't have and can't use these things, Therefore use web search, not every hoster has ipv6 , not every website/cms can have and works with the setting you write and so on.

So and important as some DA HOSTERS they want to manage the servers and or ask extra money for some configurations as still for example even LETSENCRYPT SSL install you have to pay them for, that's their income for some mostly cheap hosters, so you as custommer can decide to have cheap and less....

Some hoster are good with managed DA servers some aren't, good ones for example are here active in Forum!

So it is important to have these options to config and set them, and yes you can all so very flexible as most of the panels aren't!

Agree that the most parts you say are seemly important things to do at setup and initial install, but pleae let resellers and webadmins be free in what the yes or no want. ( both is possible now and for a long time ago)

THE THEME If you have a or more licences you can have the them allready, but yes you right that is 1 point... maybe;

Secure firewall parts are there and for example also CSF is there as plugging for DA so??
You don't need CSf as default, only that you can use for example CSF and yes you can if setup correctly.

I.m missing howto to setup / use some frameworks and co and some other docs howto's i don't have in my head right now.
DOCKER, Freestack howto's and so on

I see as SERVERADMIN with root access the plugins in DA panel, and can use them out of DA so don't understand that part. ( firefox chrome aren't panels)

So if your HOSTERS has installed it then ask you Hoster for the defaults you desire, if you did it yourself you missed some parts maybe. ?

If you want more extra security have a look at CloudLinux DA ?

Ofcourse you have to take care of own setting all to make in Custom, so updates don't overwrite them, that is also at this way seemly flexible mostly.

OK a idea for future request.
Is that Serveradmin could make some more default domain templates even some made/set already, that Domainusers and so on can choose from with a flexible (own text).. choicebox, in the new template??? So you ( domainusers) can tick some futures yes or no.

Such flexible things future could then be the difference for good SERVERADMINS and DA Hosters to handle and set for their users

I mean such thing as for the custombuild plugin off SMTALK already is in such way for some config domain parts???

 

[zEitEr]

As for plugins, I guess Danny means a market place, where you can find all available plugins: free or paid. As of now there is no a market place, so you can search only the respective sub-forum here.

 

[ikkeben]

As for plugins, I guess Danny means a market place, where you can find all available plugins: free or paid. As of now there is no a market place, so you can search only the respective sub-forum here.

Yes if so he is right there i think, you have to search and not all are updated/ working anymore

 

[MaXi32]

The ipv6 address isn't added on default to the spf record only ipv4

This still happen in 2021. ipv6 won't be added by default for new install (even your system is fully compatible with IPv6). Currently, I'm able to overcome this by using API to automatically add all ipv6 addresses after DA installation. There are few documentations that show you how to enable Ipv6 but those steps need to be included in the setup script if DA installation found that the server is fully compatible with ipv6 or give user choice to enable ipv6 or not. It's a bit pain if you frequently install and need this ipv6 enabled for testing purpose.

 

[factor]

those steps need to be included in the setup script if DA installation found that the server is fully compatible with ipv6 or give user choice to enable ipv6 or not

sounds like a feedback request. Definitely wouldn't want this to be default though.

 

[Richard G]

Definitely wouldn't want this to be default though.

Me neither as we don't use ipv6 and there are some ipv6 issues which can occur with LE in certain cases using ipv6.
However, it might be added as a switch option during setup, but that would indeed be something for a feedback request.

 

[LawsHosting]

And just think, years ago they said we're running out of IPv4 IPs and IPv6 would be everywhere!