After having installed ISPconfig 3 a couple of times, I'd say the defaults aren't correctly chosen, and somewhat outdated; We're living 4 years post Snowden by now. For people using nginx without apache, for example, I'd say always default to SSL/TLS only, so - redirect to https should always be enabled, - spam and virus filtering should default to ON and default to sieve into the Junk folder which should be created for Maildirs by dovecot. - Let'sEncrypt and SSL should be enabled by default, and be allowed for Clients (the Limits tab). - Always enable SPDY or its followup rather, http2 It would save us so much clicking and tabbing for each new Client/Site/Mailbox etc. For some customers I've installed froxlor a couple of times, this has really good options for admins to pick the defaults. ISPconfig should have that too.